Week ending Sunday 2013/08/25

Monday 07:16 · FC 2: Single Point of Failure, i.e. Am I more or less likely to get hacked/blocked with Federated Login? [Original.]

Monday 10:59 · I'm writing about sign-in safety & by coincidence, my battle dot net account, unused by a couple years, has been stolen by someone. [Original.]

Monday 11:05 · Outstanding comment on the Federation Conversation from orcmid (who may also be @orcmid): [Original.]

Monday 11:15 · Glancing at my server logs… man, there are a *lot* of crawlers running out of AWS. Wonder what they all are? [Original.]

Monday 12:34 · This Federation stuff I'm ranting about? It’s not hypothetical; my battle . net account has been hacked: [Original.]

Monday 14:41 · @jeffsonstein @juhasaarinen See tools.ietf.org/html/draft-tbray-http-legally-restricted-status - I’ll keep refreshing & bringing adoption news to IETF. [Original, responding to @jeffsonstein.]

Monday 14:42 · @juhasaarinen That’s out of date. Just use the link without numbers: tools.ietf.org/html/draft-tbray-http-legally-restricted-status [Original, responding to @juhasaarinen.]

Monday 15:47 · @stshank I also namedropped Yahoo & Msft. We need an ecosystem, not just a red/blue option for everyone. [Original, responding to @stshank.]

Monday 23:42 · It’s gonna cost Cruz $100 to renounce his Canadian citizenship? I say let's give him a freebie. [Original.]

Monday 23:42 · @morrildl Just a rumor, I wouldn’t take it seriously. [Original, responding to @morrildl.]

Monday 23:46 · RT @thisisaaronland: can we send two GCHQ security experts to sunnyvale to destroy the hard drive with the 30 days of yahoo logos on it ? [Original.]

Tuesday 07:17 · Pamela has come back from retirement before. Wouldn't be too quick to say goodbye to Groklaw. [Original.]

Tuesday 07:29 · @brixen Yes. [Original, responding to @brixen.]

Tuesday 12:47 · Did I mention it was time to get out of the password business? beta.na.leagueoflegends.com/en/news/riot-games/announcements/important-security-update-and-password-reset [Original.]

Tuesday 13:05 · RT @aortenzi: @timbray It's amazing how wrong people do them, too. https://t.co/B4gZaL454v [Original.]

Tuesday 13:48 · Many in the biz knew pre-Snowden that the spooks were sucking up the whole Net. For example, me in 2005: [Original.]

Tuesday 17:02 · @guelo My opinion on the subject: [Original, responding to @guelo.]

Tuesday 23:17 · Irritating: Discover an interesting music, no way to buy it RIGHT NOW on this Internet thang. But anyhow, Valerie June is really good. [Original.]

Wednesday 00:50 · @lloydhilaiel It’s in the OpenID Connect spec these days, too. Obvious once you actually try to use this sort of stuff... [Original, responding to @lloydhilaiel.]

Wednesday 10:34 · Hey @cibc, your new Android app wants permission to read/write my contacts? Not upgrading, sorry, that’s unreasonable. [Original.]

Wednesday 10:34 · @cibc Yeah, but it wants permission to read/write contacts. That feels really wrong, my banking life isn’t my social life. [Original, responding to @cibc.]

Wednesday 10:41 · These are the permissions my bank's Android app is asking for. Are they crazy? Am I crazy? [Original.]

Wednesday 10:47 · @rbanffy Yep, except for Contacts [Original, responding to @rbanffy.]

Wednesday 10:47 · @ginatrapani I'm OK with the camera, not the contacts [Original, responding to @ginatrapani.]

Wednesday 10:49 · I’m OK with all of those @cibc app permissions except contacts. Camera, location, etc make perfect sense. But banking isn't social! [Original.]

Wednesday 10:58 · @rbanffy I disagree, but it’s a long argument around trust issues. [Original, responding to @rbanffy.]

Wednesday 11:13 · @ndw I’m OK with camera (capture a cheque image) and location (nearest ATM). Phone calls is silly but damaging. Social?!? Ewwwwwwww [Original, responding to @ndw.]

Wednesday 11:24 · @tgpraveen Take pictures of cheques & other financial docs, paper isn’t dead yet. I already do this for expenses at work. [Original, responding to @tgpraveen.]

Wednesday 13:14 · @stilkov Some of them were BS; E.g. that they had wires straight into the servers, etc. The WSJ is good on this one: online.wsj.com/article/SB10001424127887324108204579022874091732470.html [Original, responding to @stilkov.]

Wednesday 13:15 · A Federation Conversation backgrounder: Who’s Watching You? [Original.]

Wednesday 13:22 · @stilkov OK, that’s fair. But still, the basic nature & volume of what they were getting shouldn’t have been a surprise. [Original, responding to @stilkov.]

Wednesday 13:22 · @ndw The UX problems are REALLY hard, and too many people already blow through permission screens. But the idea is attractive. [Original, responding to @ndw.]

Wednesday 14:51 · So, there's BackboneJS and EmberJS and AngularJS and now I see MarketJS. Where’s PeaceJS, LoveJS, and HappinessJS I want to know?! [Original.]

Wednesday 15:20 · @pkedrosky @mattcutts We’re all about understatement. [Original, responding to @pkedrosky.]

Wednesday 16:34 · What a pleasant surprise; by email, a correction for a typo in a 10-year-old blog piece. Thank you Randall West! [Original.]

Wednesday 17:25 · Saying goodbye to Elmore Leonard by plugging three of his less-heralded but excellent books: [Original.]

Wednesday 23:57 · @JohnB email me [Original, responding to @JohnB.]

Thursday 00:14 · Bradley Manning’s post-sentencing statement: holdenweb.blogspot.ca/2013/08/bradley-mannings-post-sentencing.html [Original.]

Thursday 01:11 · Live coverage of #BoXilai trial: chinadigitaltimes.net/2013/08/bo-xilai-trial-liveblog/ [Original.]

Thursday 08:50 · @caseyf Why yaml? I thought the cool kids were all-JSON all the time these days. [Original, responding to @caseyf.]

Thursday 08:55 · . @cibc Thanks, but there are many for whom that Contacts permission is a red flag. [Original, responding to @cibc.]

Thursday 08:57 · My bank (@cibc) explains what they think they need all those Android permissions for: cibc.intelliresponse.com/public/en/index.jsp?interfaceID=8&requestType=NormalRequest&source=3&question=What%20are%20the%20permissions%20in%20the%20CIBC%20Mobile%20Banking%20app%20used%20for%3F&id=9071 Contacts is still a red flag. [Original.]

Thursday 09:02 · @caseyf Sounds plausible. It was on my mind that some languages are a little yaml-challenged but everyone can read json. [Original, responding to @caseyf.]

Thursday 09:12 · @caseyf You’re right, but please oh please no CSV. [Original, responding to @caseyf.]

Thursday 11:02 · How does biology explain the low numbers of women in computer science? www.slideshare.net/terriko/how-does-biology-explain-the-low-numbers-of-women-in-cs-hint-it-doesnt [Original.]

Thursday 11:13 · . @robUx4 @cibc A few of those seem bogus, actually. I suspect quite possibly just programmer error. [Original, responding to @robUx4.]

Thursday 13:29 · @JasonBJenkins Known bug, not sure if anyone’s working on it. [Original, responding to @JasonBJenkins.]

Thursday 13:30 · Scheier’s hypothesis on why Miranda was detained: www.theatlantic.com/international/archive/2013/08/the-real-terrifying-reason-why-british-authorities-detained-david-miranda/278952/ Horrifying, plausible. [Original.]

Thursday 13:48 · @jtauber Achievement unlocked! (I got mine in 1988) [Original, responding to @jtauber.]

Thursday 16:14 · Woah, just registering an app on Facebook and it asked if I wanted free Heroku hosting. Is this new? [Original.]

Thursday 19:43 · @tjohns We can look forward to the news report about a Fed SWAT team raiding your place for suspicious activity? [Original, responding to @tjohns.]

Friday 08:50 · @dhh The stake in the ground is pretty clear: googleblog.blogspot.ca/2013/06/what.html [Original, responding to @dhh.]

Friday 18:20 · RX100 M2 has no Lightroom lens presets? Pfui. [Original.]

Saturday 14:45 · Macroeconomics titan Paul Krugman tries his hand at tech blogging - On The Symmetry Between Microsoft And Apple: krugman.blogs.nytimes.com/2013/08/24/on-the-symmetry-between-microsoft-and-apple/?_r=1& [Original.]

Saturday 21:34 · Enku trailer: www.youtube.com/watch?v=JVf0NoqfN6w [Original.]

Saturday 21:38 · Some of Enku’s work: [Original.]

Sunday 23:14 · @duncan Try toasted-sesame-seed oil on broccoli, whether steamed or barbecued: www.tbray.org/ongoing/When/200x/2004/05/10/BrocBQ [Original, responding to @duncan.]

Sunday 23:57 · @duncan Watch out, sesame != toasted sesame oil. Both good, but for broccoli, need stronger flavor, i.e. toasted. [Original, responding to @duncan.]

author · Dad
colophon · rights
picture of the day
August 25, 2013
· Short-form (350 more)

By .

The opinions expressed here
are my own, and no other party
necessarily agrees with them.

A full disclosure of my
professional interests is
on the author page.

I’m on Mastodon!