Conversation:
Notices
-
@moonman There are multiple ways of solving this without using public key cryptography. I support using OpenPGP to sign your accounts etc, but there's a huge problem if you lose your keys (or someone steals them). Another approach is: 1. Get multiple accounts with multiple providers 2. Let each OnlineAccount publish that they are "owl:sameAs" (or sioc:account_of) a cer…
-
@verius In the case of a malicious server publishing false aliases neither of the other profiles you use (previously stored with remote nodes as verified/recognized as "yours") would acknowledge the newly added alias and thus the trustworthiness is low and it does not get (at least automatically) accepted. Or similarly to #OpenPGP where the only way you can trust someo…
-
@verius @jackmcbastard The methodology with a decentralised authorisation system doesn't require private keys and can rely solely on trustworthiness derived from a social graph.
-
@kevinmarks But rel="me" is only for HTML and microformats, right?
Oh and I'll get right on that stuff for !qvitter now :)
-
@kevinmarks http://status.hackerposse.com/url/9831 Since Qvitter doesn't output the profile as HTML (just a blank page which loads everything with #javascript), I put it in <head><link ...> Do you know if I can do h-card markup inside <head> or should I try to persuade @hannes2peer into accept outputting a (possibly hidden) h-card into <body>? (which increases load…
-
@kevinmarks PS. I love the fact that you have an image upload service focused on #SVG. Marvellous.
-
@hannes2peer Thanks, I'll remember that! But for now I think the rel="me" thing will do fine, I'll see what I can do about the h-card later this week.
-
@hannes2peer Phew, I thought you had uncovered my secret identity "Line 653".
-
@kevinmarks Minifying javascript is evil. No wonder Google suggests it!
-
@gjchen Yeah, minifying (if it's actually supposed to do any good) also makes the code unreadable by changing variable names to shorter ones, removing comments etc... Evil! Javascript is bad enough as it is in readable form.
-
@moonman I see a value in the fact that people have to tell others that "hey, I moved, you're welcome to follow me at my new place". That also lets the subscriber reconsider whether they actually want to continue subscribing. Not getting automatocally adjusted by some pseudosentient machine: http://cdn2.hubspot.net/hub/64283/file-2238801702-jpg/images/Wall-E-2-fat-humans.jpg
-
@mmn, interestingly, Google removed #JSMin from #Etherpad after acquiring it, not because of what it did but because of the "not for evil" clause in its #license ☺ http://wonko.com/post/etherpad-source-includes-jsmin /cc @kevinmarks
-
@kevinmarks Yeah, your point on loading time is valid :)
In digging through all this I noticed that I don't publish an hcard/h-card in the WebFinger response. I assume I should put it as rel="http://microformats.org/profile/h-card" since I want to publish microformats2 rather than the old rel="http://microformats.org/profile/hcard" that for example Diaspora mentions on https://wiki.diasporafoundation.org/Federation_protocol_overview#hcard
-
@mikael Yeah, as soon as we can get a fulltime client developer on the job, no problem. And we also manage to solve the problem with multiple keys + UI which noone's does since OpenPGP projects started trying. And we get people to stop using the web interface ;)
-
@litox ...but how do I know that your _new_ key is really _you_? :) Might as well be someone who hacked the server and just _says_ it's the new you!
-
@netmackan Minifying still makes debugging for endusers extremely hard. Even with webmaster tools etc. in the browser. :]
MMN-o ✅⃠
Joshua Judson Rosen
All Hacker Poesy content and data are available under the 