IRC Log for #openid on 2008-03-31

Timestamps are in UTC.

  1. [00:05:06] <SerajewelKS> what happens if the tables for associations etc don't exist?
  2. [00:05:15] <SerajewelKS> will it create them or is the secret CREATE TABLE buried somewhere :)
  3. [00:05:37] <SerajewelKS> keturn: i may do that after i get this working -- i'd rather do it The Right Way first and verify that stuff is working first
  4. [00:08:02] <SerajewelKS> oh and is there some reason that the consumer takes a good minute or two to process a login?
  5. [00:08:39] <keturn> woah. that's *after* returning from the openid provider?
  6. [00:09:08] <flaccid> maybe thats without GMP ?
  7. [00:09:32] <SerajewelKS> i have no clue
  8. [00:09:41] <SerajewelKS> flaccid: this is PHP5, stock debian package, so no clue
  9. [00:10:34] <SerajewelKS> oh and it's not creating any tables, it just fails with OpenID authentication failed: Server denied check_authentication
  10. [00:10:37] <flaccid> keturn: does the process talked about use the math processing?
  11. [00:10:54] <keturn> Debian didn't start building their PHP with GMP until very recently, so if you're running stable, it might not have it
  12. [00:11:06] <SerajewelKS> i don't see any new tables in the db. it does have permissions to do so.
  13. [00:11:07] <flaccid> i've had the libs fail to create tables many times. i thought that was meant to be fixed up but
  14. [00:11:14] <keturn> flaccid: to some extent... but a minute or two is still a long time
  15. [00:11:15] <SerajewelKS> keturn: it is stable, but i'm not sure how i would check
  16. [00:11:48] <flaccid> serajew check if you have php gmp support installed/enabled, and if not install it
  17. [00:12:05] <SerajewelKS> flaccid: yeah, uhm, that's the part i'm not sure how to do...
  18. [00:12:20] <flaccid> there should be a debian package
  19. [00:12:45] <SerajewelKS> searching for 'php gmp' doesn't give anything relevant
  20. [00:13:08] <keturn> the other weird thing is that it shouldn't even be attempting check_authentication unless it failed to establish an association, so there might be something else going on
  21. [00:13:25] <flaccid> my search returns a lot of relevency
  22. [00:13:26] <keturn> what provider are you testing against? are there log messages?
  23. [00:13:29] <SerajewelKS> well i didn't write the library :)
  24. [00:13:32] <SerajewelKS> flaccid: in stable?
  25. [00:13:45] <SerajewelKS> keturn: MySQLStore, and i'm not sure where the log would be
  26. [00:13:46] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  27. [00:13:55] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  28. [00:14:21] <keturn> your server's error.log, maybe
  29. [00:14:31] <keturn> SerajewelKS: I mean which OpenID are you trying to log in with
  30. [00:14:47] <SerajewelKS> keturn: www.chrishowie.com, which delegates to myopenid.com
  31. [00:14:50] <flaccid> well there is http://packages.debian.org/search?searchon=names&keywords=php5-gmp
  32. [00:14:51] <SerajewelKS> keturn: it worked fine with the file store
  33. [00:14:57] <flaccid> otherwise install manually
  34. [00:15:23] <SerajewelKS> flaccid: yes, for testing and unstable. which you can't just throw into a stable install.
  35. [00:15:55] <flaccid> yeah its already released in some debian derived distros. so i apologise. install it manually.
  36. [00:16:42] <SerajewelKS> i'm a bit more concerned that it's not creating the tables at all
  37. [00:17:11] <flaccid> i still have that bug as well. i guess you could post to the mailing list?
  38. [00:17:14] <keturn> maybe you do need to call createTables on the store
  39. [00:19:03] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  40. [00:19:28] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  41. [00:20:54] <SerajewelKS> calling createTables made authentication work at least
  42. [00:21:03] <SerajewelKS> still slow, chatting up #debian for gmp
  43. [00:23:32] <flaccid> cool
  44. [00:25:42] <SerajewelKS> anyone know offhand which version of php5 gmp first showed up in?
  45. [00:26:12] <keturn> it's been available as an option for quite some time
  46. [00:26:25] <SerajewelKS> a compiled-in option or a module option?
  47. [00:26:28] * lulurun (n=lulurun@KHP059136017144.ppp-bb.dion.ne.jp) Quit (Read error: 110 (Connection timed out))
  48. [00:26:36] <SerajewelKS> that is to say, could i build the module by itself?
  49. [00:26:50] <keturn> I'm not sure
  50. [00:27:31] <keturn> but I guess the debian testing package is a seperate module, so probably
  51. [00:29:04] <SerajewelKS> well, multiple debian binary packages can be built from the same source package
  52. [00:29:25] <keturn> yeah, it does look like it's built from the php5 source package
  53. [00:32:22] <SerajewelKS> yay, i love build dependencies -_-
  54. [00:33:42] <SerajewelKS> hmm, the apache2 module is built with --with-gmp...
  55. [00:33:47] <SerajewelKS> not sure if that's significant
  56. [00:33:57] <flaccid> yes you can build the mod, which is what i suggested before
  57. [00:34:36] <SerajewelKS> without building the rest of php too?
  58. [00:35:04] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  59. [00:35:29] <flaccid> not sure to be honest. i didn't have to re-compile php or apache2 on freebsd, i could just add the mod, but they are probably build with dif flags to debian
  60. [00:37:40] * illustir (n=alper@s55912056.adsl.wanadoo.nl) Quit (Read error: 104 (Connection reset by peer))
  61. [00:38:17] * illustir (n=alper@s55912056.adsl.wanadoo.nl) has joined #openid
  62. [00:38:32] <flaccid> which dist is this called serajewlks?
  63. [00:38:40] <SerajewelKS> debian
  64. [00:38:56] <SerajewelKS> weird, gmp is in debian/modulelist
  65. [00:39:18] <flaccid> which dist version
  66. [00:39:32] <SerajewelKS> stable (etch)
  67. [00:39:52] * xpo_air (n=xpo@bgl93-2-82-226-41-47.fbx.proxad.net) Quit ()
  68. [00:40:51] * shigeta (n=shigeta@124.32.114.226) has joined #openid
  69. [00:40:56] <flaccid> hmm i can't really find any more info
  70. [00:41:19] <SerajewelKS> me either
  71. [00:41:21] * xpo (n=xpo@bgl93-2-82-226-41-47.fbx.proxad.net) has joined #openid
  72. [00:41:48] <flaccid> but dpkg -l | grep php5-gmp returns nothing?
  73. [00:42:17] <SerajewelKS> of course not, apt-cache search php5 gmp returns nothing
  74. [00:42:48] <flaccid> well if its in mod list then it must of been build with the support, just add the module
  75. [00:43:07] <flaccid> so probably need to recompile anyway if its deps are not installed
  76. [00:44:28] <flaccid> so i guess php5_5.2.5-3
  77. [00:45:38] * illustir (n=alper@s55912056.adsl.wanadoo.nl) Quit (Read error: 104 (Connection reset by peer))
  78. [00:45:52] * illustir (n=alper@s55912056.adsl.wanadoo.nl) has joined #openid
  79. [00:46:08] * miyagawa (n=miyagawa@monster.bulknews.net) has joined #openid
  80. [00:46:08] <jibot> miyagawa is Tatsuhiko Miyagawa, the author of Plagger <http://plagger.org> and works on Vox <http://www.vox.com> in Six Apart.
  81. [00:46:12] * illustir (n=alper@s55912056.adsl.wanadoo.nl) Quit (Read error: 104 (Connection reset by peer))
  82. [00:46:47] * illustir (n=alper@s55912056.adsl.wanadoo.nl) has joined #openid
  83. [00:46:52] <SerajewelKS> flaccid: shrug, ` find / -iname \*gmp\* 2>/dev/null` doesn't show anything php-related
  84. [00:48:48] <flaccid> which php5 version is installed?
  85. [00:49:21] * lulurun (n=lulurun@219.106.248.145) has joined #openid
  86. [00:50:10] * xpo (n=xpo@bgl93-2-82-226-41-47.fbx.proxad.net) Quit ()
  87. [00:53:59] * SvenDowideit (n=SvenDowi@twiki/developer/SvenDowideit) Quit (Remote closed the connection)
  88. [01:02:08] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  89. [01:07:16] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  90. [01:07:50] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  91. [01:08:02] * illustir (n=alper@s55912056.adsl.wanadoo.nl) Quit ()
  92. [01:08:52] * nininini36 (n=lulurun@219.106.248.145) has joined #openid
  93. [01:11:54] * flaccid (n=flaccid@124.189.84.12) Quit (Read error: 104 (Connection reset by peer))
  94. [01:12:41] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  95. [01:23:49] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  96. [01:26:09] * lulurun (n=lulurun@219.106.248.145) Quit (Read error: 110 (Connection timed out))
  97. [01:28:55] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  98. [01:29:44] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  99. [01:32:45] * _keturn (n=acapnoti@pdpc/supporter/sustaining/keturn) Quit (Read error: 110 (Connection timed out))
  100. [01:34:53] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  101. [01:39:49] <SerajewelKS> flaccid: 5.2.0-8+etch10
  102. [01:48:17] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  103. [01:53:22] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  104. [01:53:53] <SerajewelKS> well it looks like the chances of getting gmp on this box and staying on debian stable are basically 0
  105. [01:58:56] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  106. [02:01:06] <keturn> are we sure that the slowness is cpu-bound? it's the same slow with filestore and sqlstore, and it's using 100% of a cpu in that time, not just waiting for network or something?
  107. [02:01:30] <keturn> (if so, gmp probably helps, otherwise that's probably the wrong tree)
  108. [02:04:01] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  109. [02:04:15] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  110. [02:04:27] * nininini36 is now known as lulurun
  111. [02:07:19] * _keturn (n=acapnoti@pdpc/supporter/sustaining/keturn) has joined #openid
  112. [02:09:20] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  113. [02:09:41] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  114. [02:11:06] * a9913 (n=a9913@unaffiliated/a9913) has joined #openid
  115. [02:14:44] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  116. [02:16:51] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  117. [02:21:56] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  118. [02:22:04] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  119. [02:22:14] * a9913 (n=a9913@unaffiliated/a9913) Quit ("Leaving")
  120. [02:27:09] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  121. [02:54:13] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  122. [02:59:17] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  123. [02:59:45] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  124. [03:04:53] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  125. [03:05:05] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  126. [03:14:12] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  127. [03:14:23] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  128. [03:24:42] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  129. [03:26:48] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  130. [03:33:17] * priidu_ (n=aa@sa-84-52-5-209.saturn.infonet.ee) Quit (Connection timed out)
  131. [03:40:42] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  132. [03:41:12] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  133. [03:46:20] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  134. [03:46:39] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  135. [03:58:13] * stub (n=stub@ppp-58-8-15-155.revip2.asianet.co.th) has joined #openid
  136. [04:00:34] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  137. [04:01:16] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  138. [04:01:54] <SerajewelKS> does JanRain use sessions during authorization?
  139. [04:05:45] <SerajewelKS> and if so, does it use some kind of namespacing to ensure that my variables don't clash with it?
  140. [04:10:21] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  141. [04:11:13] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  142. [04:12:49] <PibbRelay> <Shade> (Shade) @SerajewelKS: I'm not seeing any namespacing in the online source code (http://openidenabled.com/files/php-openid/repos/2.x.x/), and I don't recall seeing any when I was looking through the code yesterday.
  143. [04:16:18] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  144. [04:16:53] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  145. [04:39:32] <SerajewelKS> well, i got it using openid -- http://layla.chrishowie.com/~chris/tasks/
  146. [04:42:34] <PibbRelay> <Shade> (Shade) I just tried it, your Consumer recognized me - congratulations, it works!
  147. [04:43:11] <SerajewelKS> woot
  148. [04:43:18] <PibbRelay> <Shade> (Shade) (It's annoying when it works for you, but then breaks for everyone else. I suspect a version mismatch was responsible.)
  149. [04:43:37] <SerajewelKS> was responsible? did it not work?
  150. [04:44:18] <PibbRelay> <Shade> (Shade) For mine breaking with other users, when I had gotten a version-1.1 library working.
  151. [04:44:25] <SerajewelKS> ah
  152. [04:44:56] <PibbRelay> <Shade> (Shade) Since my Provider was version 1.1, this seemed fine. I upgraded it to version-2, and started seeing better results.
  153. [04:46:23] <PibbRelay> <Shade> (Shade) Apparently, while the version-2 Consumer is backward-compatible with the version-1.1 Provider, the version-2 Provider isn't backward-compatible with the version-1.1 Consumer.
  154. [04:49:09] <PibbRelay> <Shade> (Shade) Question about the login information in the upper right of your page, SerajewelKS: it says "(55)" right after my Identity. Is this my unique ID in the user database? Or just some relic of the printed-to-user debugging information that was left in there?
  155. [04:54:23] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  156. [04:58:07] <Kaell> whats the deal with all the <Shade> (Shade) stuff?
  157. [05:02:20] * illustir (n=alper@s55912056.adsl.wanadoo.nl) has joined #openid
  158. [05:03:11] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  159. [05:03:15] <PibbRelay> <Shade> The first time I tried to help out someone from OpenID_IRC_Relay, bicster referred to me as 'PibbRelay', so I assumed that my ID here must not be going to IRC, and began posting my handle at the beginning of every message when conversing with anyone from OpenID_IRC_Relay.
  160. [05:03:49] <PibbRelay> <Shade> I've stopped now because, from your description, I assume that information is showing up okay :)
  161. [05:05:23] * illustir (n=alper@s55912056.adsl.wanadoo.nl) Quit (Client Quit)
  162. [05:11:03] <Kaell> ah, makes sense
  163. [05:11:09] <SerajewelKS> is it just me or is myopenid.com terribly slow
  164. [05:11:44] <Kaell> pretty slow, yeah
  165. [05:11:50] <Kaell> if its going to load at all
  166. [05:11:56] <SerajewelKS> i wonder why
  167. [05:13:07] <SerajewelKS> what providers do you all use? i was smart and delegated to it, so i might switch to another provider.
  168. [05:13:08] <Kaell> i have an openid account at myopenid.com
  169. [05:13:08] <Kaell> i dont really use openid much though
  170. [05:13:08] <Kaell> as in, at all
  171. [05:13:24] <SerajewelKS> heh
  172. [05:13:49] <Kaell> i just gave a lecture on why openid is so bad
  173. [05:13:58] <SerajewelKS> really?
  174. [05:14:09] <Kaell> yep
  175. [05:14:12] <Kaell> about a week ago
  176. [05:14:29] <SerajewelKS> summarizable?
  177. [05:14:31] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  178. [05:15:20] <Kaell> extreme phishability, no trust at the foundation of it to allow for trusted authentication / authorization
  179. [05:16:03] <SerajewelKS> phishability extending to out-of-band verification too?
  180. [05:17:02] <Kaell> i'm not sure really what you're refering to, but its mostly at the user-RP interaction
  181. [05:17:41] <Kaell> the practice of trusting untrusted relying parties to forward you to your identity provider, which you first specify the location of, is a horrendous practice
  182. [05:18:31] <PibbRelay> <Shade> @Kaell: if you think THAT'S bad, Google for OpenID+CSRF.
  183. [05:22:02] <PibbRelay> <Shade> I'm not vulnerable to it because my users can't do anything but request pages anyway - there's no mechanism in place for them to add another ID to their account, and in any case I'd insist on treating them differently based on the risks of someone else compromising their computer at that location.
  184. [05:23:09] <PibbRelay> <Shade> Or, rather, I'm vulnerable but practically speaking there's nothing to gain from such an exploit.
  185. [05:27:20] <PibbRelay> <Shade> The phishing is something I only see as possible (setting aside, for a moment, the question of whether someone is even paying attention to the FQDN up in their browser's URL field) if the login box that pops up partially covers the URL field, and in any case I shouldn't be getting a login box when I'm redirected to my IDP - it's siege.org's phpMyID implementation, with $paranoid mode enabled, so it first asks me whether I want to
  186. [05:28:47] <SerajewelKS> i'm still not sure how you'd execute a CSRF attack
  187. [05:28:59] <SerajewelKS> based on the description i see, you need access to a victim's account already, no?
  188. [05:29:17] <PibbRelay> <Shade> No.
  189. [05:29:32] <PibbRelay> <Shade> I bookmarked a couple of good pages explaining this, let me copy in the URL's:
  190. [05:30:09] <SerajewelKS> http://www.gnucitizen.org/blog/hijacking-openid-enabled-accounts/ does a horrible job explaining how it works
  191. [05:30:16] <Kaell> it looks like an XSS variant?
  192. [05:31:01] <PibbRelay> <Shade> Here's the first one: http://shiflett.org/articles/cross-site-request-forgeries
  193. [05:31:17] <Kaell> SerajewelKS - thats the one i was reading
  194. [05:31:23] <Kaell> its not very clear how it actually occurs at all
  195. [05:32:21] <PibbRelay> <Shade> And the second one: http://www.owasp.org/index.php/Top_10_2007-A5
  196. [05:33:40] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  197. [05:34:26] * priidu_ (n=aa@sa-84-52-5-209.saturn.infonet.ee) has joined #openid
  198. [05:34:47] <SerajewelKS> ah i think i see what happens now
  199. [05:35:04] <SerajewelKS> attacker sets up a form that looks like it does something, but instead adds the attacker's openid to the victim's account?
  200. [05:35:15] <SerajewelKS> from a possibly unrelated site
  201. [05:36:49] <PibbRelay> <Shade> Yes, that's essentially it.
  202. [05:37:50] <PibbRelay> <Shade> Or uses an image with src=(the GET string to do so), which you may not even notice as you're browsing through their cute-kittens site.
  203. [05:38:27] <PibbRelay> <Shade> And, if they have a sufficiently large collection of kittens (and those kittens are sufficiently cute), it may even monopolize your attention long enough for them to steal/destroy all your data.
  204. [05:38:48] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  205. [05:38:57] <PibbRelay> <Shade> @Kaell: have you read anything on zero-knowledge proofs? They require communication, which is tricky when you're talking about establishing a secure foundation FOR communication. I'm not too concerned about OpenID lacking trust at "the foundation", so long as it's possible to integrate any desired level of trust before authentication/authorization completes.
  206. [05:39:04] <Kaell> kitties!
  207. [05:39:47] <Kaell> i have, yes, i read a very interesting article in ACM publications which covered the topic some, in its application to federated identity systems
  208. [05:41:03] * flaccid (n=flaccid@124.189.84.12) has joined #openid
  209. [05:42:50] <Kaell> Establishing and Protecting Digital Identity in Federation Systems, by Abhilasha Bhargav-Spantzel, Anna C. Squicciarini, and Elisa Bertino
  210. [05:43:29] <Kaell> it had some pretty poor grammar as i dont believe they're native english speakers, but had some good info and ideas, including ZKPs application to FedID systems
  211. [05:47:09] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  212. [05:48:08] <SerajewelKS> i wonder if something better than openid could be created for distributed identification
  213. [05:48:29] <SerajewelKS> IMO the only inherent vulnerability is DNS spoofing, all others exist in implementations
  214. [05:48:42] <PibbRelay> <Shade> Such as SRP? http://srp.stanford.edu/whatisit.html
  215. [05:51:04] <PibbRelay> <Shade> For the question of whether Grandma is paying attention to her FQDN - it's a conundrum I've given some thought to, but the best I came up with was "If a stranger comes up to your door and says 'Hi, my name is Joe and I am with your bank, I need to verify your credentials.' - would you tell him? Of course not. Now, when it comes to the internet, those letters at the top of your screen show you who is telling you something. Whateve
  216. [05:51:28] <Kaell> SerajewelKS - there are MANY such efforts underway to create federated identity systems, of varying degrees of openness
  217. [05:51:47] <Kaell> thats actually what i did my presentation on, a survey of federated identity systems
  218. [05:52:14] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  219. [05:52:34] <SerajewelKS> openid seems kind of kludgy, but it seems ok to me, as long as you trust your provider and know how to look for phishing attempts
  220. [05:52:38] <Kaell> and there are also meta-systems to group the various systems together (including OpenID)
  221. [05:52:47] <Kaell> so a single sign on for single sign ons, heh
  222. [05:53:12] <Kaell> openid is fine, if you are a knowledgable user aware of security implications and how to manage them
  223. [05:53:21] <Kaell> it is not a good solution for your grandmother
  224. [05:53:38] <SerajewelKS> maybe
  225. [05:54:03] <SerajewelKS> what if an identity provider had a downloadable app performing out-of-band authentication/authorization?
  226. [05:54:16] <SerajewelKS> preventing phishing from even working
  227. [05:54:37] <SerajewelKS> though i suppose stupid people will enter their login stuff whenever they're asked by any form with a padlock, eh?
  228. [05:55:17] <Kaell> yep, password security alone is not sufficient for a united identity for managing access to tons things
  229. [05:55:43] <SerajewelKS> that's one reason i use ssl auth for myopenid.com
  230. [05:55:46] <SerajewelKS> reasons*
  231. [05:56:35] <SerajewelKS> it'd be cool to have e.g. a palm app do auth over a serial cable, keeping the ssl certs in itself
  232. [05:56:41] <Kaell> certificates are one decent method, but they dont allow you to just use a public terminal
  233. [05:57:05] <SerajewelKS> and some desktop app to relay the requests. so the computer never sees anything it can repeatedly authenticate with. that would nullify all phishing and keylogging/etc attacks.
  234. [05:57:08] <Kaell> i think we're going to need hardware keys as second factor authentication
  235. [05:57:20] <SerajewelKS> nod, like a palm or other smart device
  236. [05:57:28] <Kaell> yes, but much much much smaller
  237. [05:57:49] <Kaell> like the super-mini-micro flash thumb drives
  238. [05:58:00] <Kaell> theyre like pocket lint, heh
  239. [05:58:00] <SerajewelKS> eh i guess, i'd rather it be something that can tell me "hey, this site is asking to use your openid" etc instead of just a dongle
  240. [05:58:10] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  241. [05:58:14] <Kaell> hrm
  242. [05:58:18] <SerajewelKS> also with my palm i'd only need one device, and i'm pretty sure i'll always have it with me
  243. [05:58:42] <SerajewelKS> the smaller things get the more apt i am to lose them
  244. [05:59:20] <SerajewelKS> of course with a dongle you don't have to worry about low battery :)
  245. [05:59:43] <SerajewelKS> your palm dies, you gotta charge before you can check your account balance
  246. [06:00:06] <Kaell> that sounds like a bad idea, and one people wont adopt
  247. [06:00:15] <SerajewelKS> how so?
  248. [06:00:31] <Kaell> people dont want to lose access to their life because a battery ran out
  249. [06:00:37] <Kaell> they also dont want to carry a pda everywhere
  250. [06:00:57] <SerajewelKS> i'm not suggesting it be the only option, just one of them
  251. [06:01:28] <Kaell> ok
  252. [06:01:29] <SerajewelKS> i would carry a backup dongle just in case, for example, but i would prefer not to use it when i don't need to
  253. [06:01:35] <PibbRelay> <Shade> @Kaell: get energy-efficient enough, and the dongle can power itself with your own bioelectric field :)
  254. [06:01:42] <SerajewelKS> since a device like a palm can provide more feedback
  255. [06:03:35] <PibbRelay> <Shade> That would actually be one circumstance where a single point of failure would NOT be a bad idea - if you aren't powering your dongle anymore, it really SHOULDN'T be cooperating with authentication attempts anymore, because at that point you're probably DEAD ;)
  256. [06:10:42] * eburcat (n=eitanb@77.125.35.177) Quit (brown.freenode.net irc.freenode.net)
  257. [06:10:42] * forsaken (n=eric@c-71-62-234-185.hsd1.va.comcast.net) Quit (brown.freenode.net irc.freenode.net)
  258. [06:10:42] * ianloic (i=yakk@glub.dreamhostps.com) Quit (brown.freenode.net irc.freenode.net)
  259. [06:10:42] * flaccid (n=flaccid@124.189.84.12) Quit (brown.freenode.net irc.freenode.net)
  260. [06:10:42] * Peng (n=mnordhof@fl-71-52-8-96.dhcp.embarqhsd.net) Quit (brown.freenode.net irc.freenode.net)
  261. [06:10:42] * stub (n=stub@canonical/launchpad/stub) Quit (brown.freenode.net irc.freenode.net)
  262. [06:10:42] * CGamesPlay (n=cgames@allegro/user/CGamesPlay) Quit (brown.freenode.net irc.freenode.net)
  263. [06:10:42] * PibbRelay (n=supybot@nat/janrain/x-07ae31f45790bc8f) Quit (brown.freenode.net irc.freenode.net)
  264. [06:10:42] * benj3one (n=ben@adsl-75-41-185-190.dsl.spfdmo.sbcglobal.net) Quit (brown.freenode.net irc.freenode.net)
  265. [06:10:42] * Mitsurugi (n=Nightmar@55.Red-83-34-102.dynamicIP.rima-tde.net) Quit (brown.freenode.net irc.freenode.net)
  266. [06:10:42] * idnar (i=mithrand@unaffiliated/idnar) Quit (brown.freenode.net irc.freenode.net)
  267. [06:10:42] * TedThibodeauJr (n=Thud@c-76-119-195-179.hsd1.ma.comcast.net) Quit (brown.freenode.net irc.freenode.net)
  268. [06:10:42] * lopnor (n=lopnor@nat.soffritto.org) Quit (brown.freenode.net irc.freenode.net)
  269. [06:10:42] * noccy (i=noccy@c-d22ee055.61-3-64736c10.cust.bredbandsbolaget.se) Quit (brown.freenode.net irc.freenode.net)
  270. [06:10:42] * michelp_ (n=michelp@69-30-72-119.dq1sf.easystreet.com) Quit (brown.freenode.net irc.freenode.net)
  271. [06:10:42] * jibot (i=andy@208.78.244.32) Quit (brown.freenode.net irc.freenode.net)
  272. [06:10:42] * lulurun (n=lulurun@219.106.248.145) Quit (brown.freenode.net irc.freenode.net)
  273. [06:10:42] * pfak (i=peter@crash.pfak.org) Quit (brown.freenode.net irc.freenode.net)
  274. [06:10:42] * ricky (n=ricky@fedora/ricky) Quit (brown.freenode.net irc.freenode.net)
  275. [06:10:42] * Acro (i=acro@unaffiliated/acro) Quit (brown.freenode.net irc.freenode.net)
  276. [06:10:42] * VxJasonxV (n=jason@xmms2/troll/VxJasonxV) Quit (brown.freenode.net irc.freenode.net)
  277. [06:10:42] * SerajewelKS (i=devnull@unaffiliated/serajewelks) Quit (brown.freenode.net irc.freenode.net)
  278. [06:10:42] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (brown.freenode.net irc.freenode.net)
  279. [06:10:42] * michelp (n=nmichelp@69-30-72-119.dq1sf.easystreet.com) Quit (brown.freenode.net irc.freenode.net)
  280. [06:10:42] * priidu_ (n=aa@sa-84-52-5-209.saturn.infonet.ee) Quit (brown.freenode.net irc.freenode.net)
  281. [06:10:42] * Leonidas (n=leonidas@unaffiliated/leonidas) Quit (brown.freenode.net irc.freenode.net)
  282. [06:10:42] * darix (i=darix@irssi/staff/darix) Quit (brown.freenode.net irc.freenode.net)
  283. [06:10:42] * shigeta (n=shigeta@124.32.114.226) Quit (brown.freenode.net irc.freenode.net)
  284. [06:10:42] * miyagawa (n=miyagawa@monster.bulknews.net) Quit (brown.freenode.net irc.freenode.net)
  285. [06:10:42] * ido (n=ido@unaffiliated/ido) Quit (brown.freenode.net irc.freenode.net)
  286. [06:10:42] * keturn (n=kevint@pdpc/supporter/sustaining/keturn) Quit (brown.freenode.net irc.freenode.net)
  287. [06:10:42] * donomo (n=donp@donk.personaltelco.net) Quit (brown.freenode.net irc.freenode.net)
  288. [06:10:42] * l0gic (n=l0gic@cdr03-84-91-9-173.netvisao.pt) Quit (brown.freenode.net irc.freenode.net)
  289. [06:10:42] * _keturn (n=acapnoti@pdpc/supporter/sustaining/keturn) Quit (brown.freenode.net irc.freenode.net)
  290. [06:10:42] * Chaz6 (n=chaz@pix.vendia-kollegiet.dk) Quit (brown.freenode.net irc.freenode.net)
  291. [06:10:42] * GabeW (i=gwachob@pdpc/supporter/professional/GabeW) Quit (brown.freenode.net irc.freenode.net)
  292. [06:10:42] * bish0p (n=bishop@pdpc/supporter/active/bish0p) Quit (brown.freenode.net irc.freenode.net)
  293. [06:13:59] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  294. [06:13:59] * flaccid (n=flaccid@124.189.84.12) has joined #openid
  295. [06:13:59] * priidu_ (n=aa@sa-84-52-5-209.saturn.infonet.ee) has joined #openid
  296. [06:13:59] * stub (n=stub@canonical/launchpad/stub) has joined #openid
  297. [06:13:59] * _keturn (n=acapnoti@pdpc/supporter/sustaining/keturn) has joined #openid
  298. [06:13:59] * lulurun (n=lulurun@219.106.248.145) has joined #openid
  299. [06:13:59] * miyagawa (n=miyagawa@monster.bulknews.net) has joined #openid
  300. [06:13:59] * shigeta (n=shigeta@124.32.114.226) has joined #openid
  301. [06:13:59] * michelp_ (n=michelp@69-30-72-119.dq1sf.easystreet.com) has joined #openid
  302. [06:13:59] * SerajewelKS (i=devnull@unaffiliated/serajewelks) has joined #openid
  303. [06:13:59] * Mitsurugi (n=Nightmar@55.Red-83-34-102.dynamicIP.rima-tde.net) has joined #openid
  304. [06:13:59] * eburcat (n=eitanb@77.125.35.177) has joined #openid
  305. [06:13:59] * jibot (i=andy@208.78.244.32) has joined #openid
  306. [06:13:59] * pfak (i=peter@crash.pfak.org) has joined #openid
  307. [06:13:59] * idnar (i=mithrand@unaffiliated/idnar) has joined #openid
  308. [06:13:59] * Chaz6 (n=chaz@pix.vendia-kollegiet.dk) has joined #openid
  309. [06:13:59] * CGamesPlay (n=cgames@allegro/user/CGamesPlay) has joined #openid
  310. [06:13:59] * forsaken (n=eric@c-71-62-234-185.hsd1.va.comcast.net) has joined #openid
  311. [06:13:59] * GabeW (i=gwachob@pdpc/supporter/professional/GabeW) has joined #openid
  312. [06:13:59] * ricky (n=ricky@fedora/ricky) has joined #openid
  313. [06:13:59] * PibbRelay (n=supybot@nat/janrain/x-07ae31f45790bc8f) has joined #openid
  314. [06:13:59] * TedThibodeauJr (n=Thud@c-76-119-195-179.hsd1.ma.comcast.net) has joined #openid
  315. [06:13:59] * benj3one (n=ben@adsl-75-41-185-190.dsl.spfdmo.sbcglobal.net) has joined #openid
  316. [06:13:59] * Peng (n=mnordhof@fl-71-52-8-96.dhcp.embarqhsd.net) has joined #openid
  317. [06:13:59] * Leonidas (n=leonidas@unaffiliated/leonidas) has joined #openid
  318. [06:13:59] * ianloic (i=yakk@glub.dreamhostps.com) has joined #openid
  319. [06:13:59] * ido (n=ido@unaffiliated/ido) has joined #openid
  320. [06:13:59] * keturn (n=kevint@pdpc/supporter/sustaining/keturn) has joined #openid
  321. [06:13:59] * Acro (i=acro@unaffiliated/acro) has joined #openid
  322. [06:13:59] * donomo (n=donp@donk.personaltelco.net) has joined #openid
  323. [06:13:59] * lopnor (n=lopnor@nat.soffritto.org) has joined #openid
  324. [06:13:59] * l0gic (n=l0gic@cdr03-84-91-9-173.netvisao.pt) has joined #openid
  325. [06:13:59] * noccy (i=noccy@c-d22ee055.61-3-64736c10.cust.bredbandsbolaget.se) has joined #openid
  326. [06:13:59] * VxJasonxV (n=jason@xmms2/troll/VxJasonxV) has joined #openid
  327. [06:13:59] * michelp (n=nmichelp@69-30-72-119.dq1sf.easystreet.com) has joined #openid
  328. [06:13:59] * darix (i=darix@irssi/staff/darix) has joined #openid
  329. [06:13:59] * bish0p (n=bishop@pdpc/supporter/active/bish0p) has joined #openid
  330. [06:15:05] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  331. [06:16:15] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  332. [06:28:32] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  333. [06:28:58] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  334. [06:46:21] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  335. [06:48:19] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  336. [06:53:24] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  337. [06:53:45] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  338. [06:58:51] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  339. [07:00:47] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  340. [07:05:55] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  341. [07:07:09] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  342. [07:17:52] <SerajewelKS> someone should write a pam module that authenticates against openid :)
  343. [07:20:13] <SerajewelKS> SSO with openid on linux boxes
  344. [07:20:28] <SerajewelKS> = really cool and possibly really stupid
  345. [07:21:14] <PibbRelay> <Shade> Try this for stupid: I just got a mental flash of Linux running on your toaster, and using your OpenID for single-sign-on.
  346. [07:21:22] <PibbRelay> <Shade> I think I need to get sleep :)
  347. [07:22:04] <SerajewelKS> You have inserted untrusted bread. Please enter an authorized OpenID to force toasting:
  348. [07:23:00] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  349. [07:39:07] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  350. [07:57:06] * michelp_ (n=michelp@69-30-72-119.dq1sf.easystreet.com) Quit (brown.freenode.net irc.freenode.net)
  351. [07:57:06] * jibot (i=andy@208.78.244.32) Quit (brown.freenode.net irc.freenode.net)
  352. [07:58:51] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  353. [08:03:58] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  354. [08:09:21] * michelp_ (n=michelp@69-30-72-119.dq1sf.easystreet.com) has joined #openid
  355. [08:09:21] * jibot (i=andy@208.78.244.32) has joined #openid
  356. [08:09:37] * michelp__ (n=michelp@69-30-72-119.dq1sf.easystreet.com) has joined #openid
  357. [08:09:40] * michelp_ (n=michelp@69-30-72-119.dq1sf.easystreet.com) Quit (Excess Flood)
  358. [08:10:02] * jibot (i=andy@208.78.244.32) Quit (No route to host)
  359. [08:10:37] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  360. [08:10:50] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  361. [08:16:48] * stu1 (n=stub@ppp-58-8-9-250.revip2.asianet.co.th) has joined #openid
  362. [08:16:48] * stub (n=stub@canonical/launchpad/stub) Quit (Nick collision from services.)
  363. [08:17:08] * stu1 is now known as stub
  364. [08:21:57] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  365. [08:22:36] * SteveA (n=steve@canonical/launchpad/SteveA) has joined #openid
  366. [08:37:26] * nininini36 (n=lulurun@219.106.248.145) has joined #openid
  367. [08:50:49] * danieljohnlewis (n=danieljo@cpc5-oxfd2-0-0-cust8.oxfd.cable.ntl.com) has joined #openid
  368. [08:53:44] * xpo (n=xpo@bgl93-2-82-226-41-47.fbx.proxad.net) has joined #openid
  369. [08:55:33] * lulurun (n=lulurun@219.106.248.145) Quit (Read error: 113 (No route to host))
  370. [08:59:23] * nininini36 (n=lulurun@219.106.248.145) Quit (Read error: 110 (Connection timed out))
  371. [09:09:20] * hillsy (n=shhi2@npfit3.dh.bytemark.co.uk) has joined #openid
  372. [09:17:27] * lulurun (n=lulurun@KHP059136017144.ppp-bb.dion.ne.jp) has joined #openid
  373. [09:42:19] * a9913 (n=a9913@unaffiliated/a9913) has joined #openid
  374. [09:57:45] * a9913_ (n=a9913@unaffiliated/a9913) has joined #openid
  375. [10:02:32] * xpo (n=xpo@bgl93-2-82-226-41-47.fbx.proxad.net) Quit ()
  376. [10:04:57] * lulurun (n=lulurun@KHP059136017144.ppp-bb.dion.ne.jp) Quit (Read error: 110 (Connection timed out))
  377. [10:14:58] * a9913 (n=a9913@unaffiliated/a9913) Quit (Read error: 110 (Connection timed out))
  378. [10:15:18] * idnar (i=mithrand@unaffiliated/idnar) Quit (Read error: 110 (Connection timed out))
  379. [10:20:06] * idnar (i=mithrand@unaffiliated/idnar) has joined #openid
  380. [10:47:03] * a9913__ (n=a9913@unaffiliated/a9913) has joined #openid
  381. [10:47:19] * shigeta (n=shigeta@124.32.114.226) Quit ("Leaving...")
  382. [11:05:41] * a9913_ (n=a9913@unaffiliated/a9913) Quit (Read error: 113 (No route to host))
  383. [11:06:02] * stub (n=stub@canonical/launchpad/stub) Quit (Read error: 113 (No route to host))
  384. [11:10:55] * a9913_ (n=a9913@unaffiliated/a9913) has joined #openid
  385. [11:16:33] * a9913 (n=a9913@unaffiliated/a9913) has joined #openid
  386. [11:26:20] * a9913__ (n=a9913@unaffiliated/a9913) Quit (Read error: 113 (No route to host))
  387. [11:33:06] * a9913_ (n=a9913@unaffiliated/a9913) Quit (Read error: 113 (No route to host))
  388. [11:33:56] * a9913_ (n=a9913@unaffiliated/a9913) has joined #openid
  389. [11:38:03] * lulurun (n=lulurun@KHP059136017144.ppp-bb.dion.ne.jp) has joined #openid
  390. [11:51:37] * a9913 (n=a9913@unaffiliated/a9913) Quit (Read error: 110 (Connection timed out))
  391. [12:09:38] * xpo (n=xpo@nat/af83/x-0c0f5c3623838806) has joined #openid
  392. [12:24:21] * TedThibodeauJr (n=Thud@c-76-119-195-179.hsd1.ma.comcast.net) Quit ()
  393. [12:43:58] * danieljohnlewis (n=danieljo@cpc5-oxfd2-0-0-cust8.oxfd.cable.ntl.com) Quit ()
  394. [13:03:35] * prateek (n=anshu@pragyan.org) has joined #openid
  395. [13:04:05] <prateek> anyone any suggestions on implementing attribue exchange?
  396. [13:13:54] * TedThibodeauJr (n=Thud@ws2.openlinksw.com) has joined #openid
  397. [13:35:30] <PibbRelay> <samsm> (late but ...)
  398. [13:35:41] <PibbRelay> <samsm> Give your grandmother a key-driven openid provider, don't tell her the password.
  399. [13:35:52] <PibbRelay> <samsm> Kills portability and phishing in one swoop.
  400. [13:36:00] * a9913_ (n=a9913@unaffiliated/a9913) Quit ("Leaving")
  401. [14:21:14] * danieljohnlewis (n=danieljo@cpc5-oxfd2-0-0-cust8.oxfd.cable.ntl.com) has joined #openid
  402. [14:47:41] * patchsms (n=chatzill@c-68-61-133-242.hsd1.mi.comcast.net) has joined #openid
  403. [15:05:26] * illustir (n=alper@62.58.1.101) has joined #openid
  404. [15:21:52] * lopnor (n=lopnor@nat.soffritto.org) Quit (Read error: 110 (Connection timed out))
  405. [15:30:04] * illustir (n=alper@62.58.1.101) Quit ()
  406. [15:32:09] * illustir (n=alper@62.58.1.101) has joined #openid
  407. [15:32:52] * illustir (n=alper@62.58.1.101) Quit (Client Quit)
  408. [15:34:00] * forsaken (n=eric@c-71-62-234-185.hsd1.va.comcast.net) Quit (Remote closed the connection)
  409. [15:35:49] * lopnor (n=lopnor@nat.soffritto.org) has joined #openid
  410. [15:52:58] * michelp__ (n=michelp@69-30-72-119.dq1sf.easystreet.com) Quit ("Ex-Chat")
  411. [15:55:26] * patchsms (n=chatzill@c-68-61-133-242.hsd1.mi.comcast.net) Quit (Read error: 104 (Connection reset by peer))
  412. [15:55:35] * patchsms (n=chatzill@c-68-61-133-242.hsd1.mi.comcast.net) has joined #openid
  413. [16:13:46] * tjohns (n=tjohns@cpe-76-170-58-80.socal.res.rr.com) has joined #openid
  414. [17:03:35] * tjohns (n=tjohns@cpe-76-170-58-80.socal.res.rr.com) Quit ()
  415. [17:03:53] * danieljohnlewis (n=danieljo@cpc5-oxfd2-0-0-cust8.oxfd.cable.ntl.com) Quit ()
  416. [17:14:28] * benj3one (n=ben@adsl-75-41-185-190.dsl.spfdmo.sbcglobal.net) Quit (Read error: 110 (Connection timed out))
  417. [17:14:52] * benj3one (n=ben@adsl-75-41-185-190.dsl.spfdmo.sbcglobal.net) has joined #openid
  418. [18:03:07] * pvandewyngaerde (n=pvandewy@75.50-242-81.adsl-dyn.isp.belgacom.be) has joined #openid
  419. [18:19:56] * ianloic (i=yakk@glub.dreamhostps.com) Quit (Remote closed the connection)
  420. [18:39:23] * xpo (n=xpo@nat/af83/x-0c0f5c3623838806) Quit ()
  421. [18:41:58] * xpo (n=xpo@nat/af83/x-627c209814ede238) has joined #openid
  422. [18:45:34] * forsaken (n=eric@192.65.245.100) has joined #openid
  423. [19:04:23] * hillsy (n=shhi2@npfit3.dh.bytemark.co.uk) Quit ("Leaving")
  424. [19:17:42] * forsaken (n=eric@192.65.245.100) Quit (Connection timed out)
  425. [19:20:25] * benj3one (n=ben@adsl-75-41-185-190.dsl.spfdmo.sbcglobal.net) Quit (Read error: 110 (Connection timed out))
  426. [19:21:07] * benj3one (n=ben@adsl-75-41-185-190.dsl.spfdmo.sbcglobal.net) has joined #openid
  427. [19:24:13] * xpo_air (n=xpo@nat/af83/x-bdd4ae8ae5eea823) has joined #openid
  428. [19:24:36] * xpo (n=xpo@nat/af83/x-627c209814ede238) Quit (Read error: 104 (Connection reset by peer))
  429. [19:31:27] * SvenDowideit (n=SvenDowi@twiki/developer/SvenDowideit) has joined #openid
  430. [19:36:56] * xpo_air (n=xpo@nat/af83/x-bdd4ae8ae5eea823) Quit ()
  431. [19:38:21] * pvandewyngaerde (n=pvandewy@75.50-242-81.adsl-dyn.isp.belgacom.be) Quit (Remote closed the connection)
  432. [19:42:40] * a9913 (n=a9913@unaffiliated/a9913) has joined #openid
  433. [19:46:31] * priidu_ (n=aa@sa-84-52-5-209.saturn.infonet.ee) Quit (Remote closed the connection)
  434. [20:09:53] * xpo (n=xpo@bgl93-2-82-226-41-47.fbx.proxad.net) has joined #openid
  435. [20:14:43] * pvandewyngaerde (n=pvandewy@120.64-241-81.adsl-dyn.isp.belgacom.be) has joined #openid
  436. [20:52:38] * MrTopf (n=cs@pD9EBCD7F.dip.t-dialin.net) has joined #openid
  437. [20:57:31] * TedThibodeauJr (n=Thud@ws2.openlinksw.com) Quit ()
  438. [21:07:39] * Cody`macbook (n=Cody@74-129-166-74.dhcp.insightbb.com) has joined #openid
  439. [21:15:13] * a9913 (n=a9913@unaffiliated/a9913) Quit ("Leaving")
  440. [21:19:03] <PibbRelay> <Shade> I suppose she could bring her entire computer with her when she travels, but, unless it's a laptop, that doesn't seem likely.
  441. [21:19:49] <PibbRelay> <Shade> Portability could be restored by giving her a key-card or similar, but then anyone who mugged her would have her OpenID.
  442. [21:20:02] <PibbRelay> <Shade> Though - who's going to mug someone's grandmother?
  443. [21:50:06] * tjohns (n=tjohns@cpe-76-170-58-80.socal.res.rr.com) has joined #openid
  444. [21:56:43] * pvandewyngaerde (n=pvandewy@120.64-241-81.adsl-dyn.isp.belgacom.be) Quit (Remote closed the connection)
  445. [22:13:24] * patchsms (n=chatzill@c-68-61-133-242.hsd1.mi.comcast.net) Quit ("wanders off wondering ehy she is so masochistic")
  446. [22:55:29] * SteveA (n=steve@canonical/launchpad/SteveA) Quit (Remote closed the connection)
  447. [23:13:51] * MrTopf (n=cs@pD9EBCD7F.dip.t-dialin.net) Quit ()
  448. [23:14:40] * TedThibodeauJr (n=Thud@c-76-119-195-179.hsd1.ma.comcast.net) has joined #openid

These logs were automatically created by OpenIDlogbot on chat.freenode.net using a modified version of the Java IRC LogBot.