Slashdot Mirror

← Back to Stories (view on slashdot.org)

MyOpenID To Shut Down In February

Posted by samzenpus on from the end-of-the-line dept.

kriston writes with news about an email sent to myOpenID users letting them know that it will be shut down February 1, 2014. The email reads:" Hello,

I wanted to reach out personally to let you know that we have made the decision to end of life the myOpenID service. myOpenID will be turned off on February 1, 2014.

In 2006 Janrain created myOpenID to fulfill our vision to make registration and login easier on the web for people. Since that time, social networks and email providers such as Facebook, Google, Twitter, LinkedIn and Yahoo! have embraced open identity standards. And now, billions of people who have created accounts with these services can use their identities to easily register and login to sites across the web in the way myOpenID was intended.

By 2009 it had become obvious that the vast majority of consumers would prefer to utilize an existing identity from a recognized provider rather than create their own myOpenID account. As a result, our business focus changed to address this desire, and we introduced social login technology. While the technology is slightly different from where we were in 2006, I'm confident that we are still delivering on our initial promise – that people should take control of their online identity and are empowered to carry those identities with them as they navigate the web.

For those of you who still actively use myOpenID, I can understand your disappointment to hear this news and apologize if this causes you any inconvenience. To reduce this inconvenience, we are delaying the end of life of the service until February 1, 2014 to give you time to begin using other identities on those sites where you use myOpenID today.

Speaking on behalf of Janrain, I truly appreciate your past support of myOpenID.

Sincerely,
Larry


Larry Drebes, CEO, Janrain, Inc. "

78 comments

  1. Holy summarization, Batman! by Samantha+Wright · · Score: 5, Interesting

    You'd think this would be a great time to use that "read more" snip feature that's typical of reviews and interviews... or maybe this is a cue to start using Larry Drebes's signature everywhere?

    At any rate, it's a little sad to see this OpenID provider going because it means less diversity in the single sign-on landscape, which is the whole point. At least OpenID itself will still be around!

    Sincerely,
    Larry


    Larry Drebes, CEO, Janrain, Inc.

    --
    Bio questions? Ask me to start a Q&A journal. Computer analogies available for most topics!
    1. Re:Holy summarization, Batman! by ackthpt · · Score: 5, Insightful

      Also means you can look forward to identifying yourself through the services of a company known to track your information for marketing and other purposes.

      Yay. :-|

      --

      A feeling of having made the same mistake before: Deja Foobar
    2. Re:Holy summarization, Batman! by hcs_$reboot · · Score: 2

      Thanks Larry for providing a service I've been using for a long time.

      However, while it's not written in TFS, there may be another reason while myOpenID was not that popular: reliability?
      It is rather annoying when one cannot login to a bunch of sites because myOpenID is unreachable...

      --
      Slashdot, fix the reply notifications... You won't get away with it...
    3. Re:Holy summarization, Batman! by TheSeatOfMyPants · · Score: 3, Insightful

      It also means that since those networks generally don't let us log onto their networks using OpenID, we're stuck keeping track of which identity/account we used to log into each other website -- "let's see, did I use my user1 Gmail account, or was it the user2 Yahoo account, or maybe Facebook or...man, hope it wasn't site/service X, Y or Z because those don't even exist anymore...maybe I used Discus that time..."

      Especially as the big commercial data-mining services don't let us set up multiple identities/personal info/userpics so we can use whichever seems the most appropriate. (Yeah, what a shock...not.) I liked being able to control whether I'm "seatofmypants" or "[insert real name]" or something else entirely, not having Google decide (as it does on all of its connected properties, pissing me off) that I *must* be known by my supposed real name, not the one I actually chose to suit my personality or life.

      FWIW I use MyOpenID a couple of times each month, and haven't run into server problems.

      --
      Now mostly at Usenet:comp.misc & SoylentNews.org (it's made of people!)
    4. Re:Holy summarization, Batman! by kriston · · Score: 1

      No need to summarize. This is the total extent of the details available.

      --

      Kriston

    5. Re:Holy summarization, Batman! by gbjbaanb · · Score: 1

      indeed, they say the quality of slashdot editorial is going down....

      I liked myopenid as it didn't require me to have an account with the same people I used service providers (ie I keep my identity and my stuff-I-read separate). Now I guess I'll have to go with my Google account for even more stuff and have Google track me even more easily.

      I would have preferred the MyOpenID to be handed over to the community 'under new management' or similar instead of being closed. I'm having difficulty in finding a decent, independent, alternative.

    6. Re:Holy summarization, Batman! by xaxa · · Score: 2

      I barely use it, but there is OpenId Delegation, which allows you to use your own domain but delegate the authentication part to someone else.

      I have this:
      <link rel='openid.server' href='http://www.myopenid.com/server'/>
      <link rel='openid.delegate' href='http://MYNAME.myopenid.com/'/>
      <meta http-equiv='X-XRDS-Location' content='http://MYNAME.myopenid.com/xrds'/>
      on the root page of my domain, so my OpenId is http://mydomain/.

      Hopefully I'll be able to delegate to someone else (or run the OpenId stuff myself, if necessary).

      (I'd log into Slashdot with it, but I already have a very old account registered with the email address and can't be bothered to fix that.)

    7. Re:Holy summarization, Batman! by maple_shaft · · Score: 3, Informative

      Thanks Larry for providing a service I've been using for a long time. However, while it's not written in TFS, there may be another reason while myOpenID was not that popular: reliability? It is rather annoying when one cannot login to a bunch of sites because myOpenID is unreachable...

      A thousand times THIS.

      My first and only experiences with MyOpenID was for authenticating to StackExchange, but it was quite possibly one of the buggiest and most unreliable services I ever had the displeasure to use. It was nearly a laugh but really a cry. I switched and never looked back. I certainly am not surprised nor am I crying a river over their demise.

    8. Re:Holy summarization, Batman! by Anonymous Coward · · Score: 0

      I made a fake facebook account twice about a year apart. Both times I got an e-mail from facebook that they think I'm not who I claim to be (I put nothing in my profile other than age, real e-mail and fake first/last name) and disabled my account. My guess is that other people who've imported my e-mail address as a friend had my real name with my real e-mail. So any attempt to use my real e-mail with a fake name triggered something. So in order to have a fake facebook I'll first have to set up yet another fake e-mail address. :(

    9. Re:Holy summarization, Batman! by houghi · · Score: 1

      This being /. I am sure the people here should be able to run their own openID. I use for now still http://siege.org/phpmyid.php [DEPRICATED] and it still works fine for me for logging in on many sites, including this one.
      I have not looked, but I am sure others will be available or just re-write it to whatever you want.

      I have done the setup of the 2 pages myself because I do not want others to be tracing me.

      --
      Don't fight for your country, if your country does not fight for you.
  2. News For Nerds, Indeed... by Frosty+Piss · · Score: 0, Troll

    A little used system that few people even know about is shutting down.

    --
    If you want news from today, you have to come back tomorrow.
    1. Re:News For Nerds, Indeed... by Anonymous Coward · · Score: 2, Informative

      If you go to the OpenID site and try to sign up for an account you'll see that it's very much used...

      Still little known though...

    2. Re:News For Nerds, Indeed... by Narcocide · · Score: 5, Insightful

      A little used system that few people even know about is shutting down.

      Sure, but you shouldn't be so judgmental. The same thing has also likely been said of the likes of Usenet, and AltaVista. The same thing might easily be said about Slashdot one day. Those who live in glass houses should not throw rocks at glass houses.

    3. Re:News For Nerds, Indeed... by Anonymous Coward · · Score: 0

      Sure, but you shouldn't be so judgmental. The same thing has also likely been said of the likes of Usenet, and AltaVista. The same thing might easily be said about Slashdot one day. Those who live in glass houses should not throw rocks at glass houses.

      Usenet - A premier destination of the Internet in the 1990s.
      Alta Vista - The dominant search engine before Google.

      versus

      myOpenID - An OpenID provider used by thousands of people.

    4. Re:News For Nerds, Indeed... by Anonymous Coward · · Score: 0

      Usenet is probably still used by thousands of people. Thousands of people isn't really all that much.

    5. Re:News For Nerds, Indeed... by iamhassi · · Score: 2

      A little used system that few people even know about is shutting down.

      That's why this is News for Nerds, because only Nerds would have even heard of this service.

      --
      my karma will be here long after I'm gone
    6. Re:News For Nerds, Indeed... by Anonymous Coward · · Score: 0

      I think (I hope) that was his point. Alta Vista and Usenet were premier destinations with incredible histories, even after their heydays. myOpenID is not.

  3. Verbified by multiben · · Score: 1

    "End of life" is a verb now?

    1. Re:Verbified by Anonymous Coward · · Score: 1

      verbing of nouns is not recommended - it weirds the language

      Sincerely,

      Larry

      Larry Drebes, CEO, Janrain, Inc.

    2. Re:Verbified by MightyMartian · · Score: 2, Funny

      Yes, we must stop the Larrying of language.

      --
      The world's burning. Moped Jesus spotted on I50. Details at 11.
    3. Re:Verbified by Anonymous Coward · · Score: 1

      You made a right drebes of that one

    4. Re:Verbified by Anonymous Coward · · Score: 2, Insightful

      What rock have you been living under? I can assure you that "End of lifed" has been a common software development term for more than a decade. You've probably encountered it as EOL'd and mistakenly thought it meant "end of lined." (Either that or you haven't entered the workforce yet, because if you work for a company that produces software, I guarantee you that your company uses the term.)

    5. Re:Verbified by hawguy · · Score: 3, Insightful

      What rock have you been living under? I can assure you that "End of lifed" has been a common software development term for more than a decade. You've probably encountered it as EOL'd and mistakenly thought it meant "end of lined." (Either that or you haven't entered the workforce yet, because if you work for a company that produces software, I guarantee you that your company uses the term.)

      Of if you work for any company that owns EOL'ed equipment that you want to keep in service, you'll quickly learn that EOL is a fancy way of saying "Sure, you can buy a service contract for that - but it'll cost you. A lot. So much that you may as well buy a new one."

    6. Re:Verbified by Anonymous Coward · · Score: 0

      Well, the problem is E.O.L. itself. It's not catchy.
      "Sunset" means the same thing as "End of lifed" and is easier to verb and use in normal conversation.

    7. Re:Verbified by Anonymous Coward · · Score: 0

      The fact that one has heard of this term makes it no less irritating. It is a typical example of obnoxious business-speak.

    8. Re:Verbified by petermgreen · · Score: 2

      (note: details in this post are from memory and may be imperfect)

      I remember talking to someone who'd previously worked at a place which designed some kind of control hardware that was used by among others the mining industry.

      Unfortunately this hardware was becoming a pain to support, it was a somewhat obsolete design and also had a habit of catching fire from time to time so they wanted to encourage customers to move to newer designs. On the other hand they didn't want to discontinue it and leave customers in the lurch. So they decided to give their customers a not so subtule hint by doubling the price.

      It didn't work, customers kept buying them in nearly the same quantity as before so they doubled the price again.

      IIRC after a few doublings of price they decided that the product line was worth keeping going after all.

      --
      note: i'm known as plugwash most places but i screwd up registering that here somehow in the past and now can't register
    9. Re:Verbified by Anonymous Coward · · Score: 0

      We definitely need to CEO this conversation.

      Sincerely,

      Larry

      Larry Drebes, CEO, Janrain, Inc.

  4. Just to be clear by Anonymous Coward · · Score: 5, Informative

    This isn't the same as OpenID, the one run by the OpenID foundation. This is a random for profit company that I would wager not to many people have heard of. The company is still providing user integration software.

    1. Re:Just to be clear by Anonymous Coward · · Score: 1

      Well, they are a bit more than 'random for-profit company' in the OpenID world. They are one of the major software contributers and an important figure in the development of its implementation.

    2. Re:Just to be clear by Jonner · · Score: 5, Informative

      This isn't the same as OpenID, the one run by the OpenID foundation. This is a random for profit company that I would wager not to many people have heard of. The company is still providing user integration software.

      OpenID is an open standard which has been implemented by many sites, one of which is myOpenID. myOpenID was one of the earliest OpenID services. Lots of companies now provide OpenIDs for anyone with an account. However, the overall vision of having one OpenID with which one can log in to all one's online accounts hasn't happened. You can't use your Google account to log in to Facebook or your Microsoft account to log in to Twitter. It's not really surprising janrain is giving up.

  5. popular -> slow -> dead by Anonymous Coward · · Score: 1

    Want to login to some random site? Why not permanently associate that account with your Facebook, Google, Twitter, LinkedIn or Yahoo identity?

  6. I'd pay by DogDude · · Score: 1

    I'd gladly pay money for a similar service: maintain a consistent, yet anonymous online persona.

    I'd never user a free one though.

    --
    I don't respond to AC's.
    1. Re:I'd pay by lister+king+of+smeg · · Score: 4, Interesting

      The best to have way to do that would be to host your own openID server, in fact I have been looking at setting up an openid server for personal use on my home sever but there don't seem to be many actively maintained standalone and easy to administer openid packages out there. Anyone else on slashdot know of any or have any tips on setting up an openid server?

      --
      ---Saying gnome 3 is better than windows 8 not so much a compliment as it is damning with light praise.
    2. Re:I'd pay by CastrTroy · · Score: 3, Informative

      You don't even need to set up an OpenID server. Set up a url, put the delegate tags to point to some other server that handles all the delegation. When stackoverflow.com starting using OpenID for authentication, MyOpenID was their recommended provider. I read up a bit before signing up and figured out how to do delegation from my own domain name. Now that OpenID is shutting down, I could set up my own server, but I could also just point the delegate information to another OpenID server, or point it to StackExchange, which has become it's own OpenID provider.

      --

      Anthropic principle: We see the universe the way it is because if it were different we would not be here to see it.
    3. Re: I'd pay by robmv · · Score: 2

      Use OpenId delegation pointing to any provider, that way you use your domain but don't need to run any extra software. I used myOpenid before but only this way, I knew something like this could happen, now wait for the day someone forget to renew their domain and all accounts where people used a myOpenid URL and people forgot to switch to another provider could be compromised

    4. Re:I'd pay by lister+king+of+smeg · · Score: 3, Interesting

      You don't even need to set up an OpenID server. Set up a url, put the delegate tags to point to some other server that handles all the delegation. When stackoverflow.com starting using OpenID for authentication, MyOpenID was their recommended provider. I read up a bit before signing up and figured out how to do delegation from my own domain name. Now that OpenID is shutting down, I could set up my own server, but I could also just point the delegate information to another OpenID server, or point it to StackExchange, which has become it's own OpenID provider.

      I have thought of doing that but but then openID providers come and go as seen by the subject of this thread. Also I don't want to use others as they can be used by the provider to, effectively, track you web usage. As my goal is to be A) independent of others services and B) to not be tracked on the web using a openid referrer does not mesh with my goals.

      --
      ---Saying gnome 3 is better than windows 8 not so much a compliment as it is damning with light praise.
    5. Re:I'd pay by VZ · · Score: 1

      Have a look at SimpleID.

    6. Re:I'd pay by Anonymous Coward · · Score: 0

      But this (the fact that providers come and go) is actually the primary purpose of the delegation feature. When I first set up my identity years ago I delegated to MyOpenID. A while back I abandoned them because development had clearly ceases, and switch the delegation tags to Google's OpenID server. If Google stops supporting OpenID then the task is to find another. Of course, eventually there might be none left, but at that point I imagine the utility of having an OpenID identifier at all will be zero so who cares?

      (Arguably it already is zero; I've not actually logged in to something with OpenID for months.)

  7. Used google fu to figure out what myOpenID was... by pongo000 · · Score: 2

    ...and this is what I found:

    http://stackoverflow.com/questions/5301896/what-are-the-differences-between-openid-and-myopenid

    So my question: If myOpenID is "one of many providers," why does this rate an article of its own? Or am I missing the significance of the event?

  8. Re:Used google fu to figure out what myOpenID was. by Anonymous Coward · · Score: 1

    The significance is that myOpenID was the largest and most well-known dedicated OpenID provider*. If it's shutting down, that's arguably the beginning of the end for OpenID in general.

    *Many larger companies like Google and Microsoft also acted as providers, but pretty much as an afterthought.

  9. They roll with the punches by djhaskin987 · · Score: 2

    I think it's cool that the company didn't wine about their major cash cow going away. Instead, they went with the flow and are still in business. I wish other tech companies would do that too.

  10. Re:Used google fu to figure out what myOpenID was. by 93+Escort+Wagon · · Score: 1

    Yeah, I don't recall a Slashdot story from when getopenid.org shut down a year or two ago...

    --
    #DeleteChrome
  11. *shrug* by Anonymous Coward · · Score: 5, Informative

    <link rel="openid.server" href="http://www.myopenid.com/server">
    <link rel="openid.delegate" href="http://anoncoward.myopenid.com/">
    <!-- What this says is that this web page in question is owned by the owner of delegate (that is, anoncoward) and furthermore server (the OpenID provider actually) may be used to verify ownership of delegate.-->
    <!-- When you wish to change the OpenID provider, you simply change these two lines. At your own website. Thus you don't have to worry about either running your own OpenID server, or having one shutting down on you (as you can easily switch). -->

    1. Re:*shrug* by Anonymous Coward · · Score: 0

      Yeah, I'm glad I used delegation: While it's sad that MyOpenID.com is going away, I'm glad I won't need to go fuss over things like Stackoverflow accounts to update them.

      I just have to change the contents of "openid.my-registered-domain.tld/username" to delegate elsewhere or to handle authentication directly.

  12. Embrace and extinguish (anonymity) by aNonnyMouseCowered · · Score: 2

    "Since that time, social networks and email providers such as Facebook, Google, Twitter, LinkedIn and Yahoo! have embraced open identity standards."

    And now these companies by converging on this supposed standard (and other standards such as cellular phone numbers) have effectively extinguished anonymity on the Web. It just goes to show that you Don't have to Be Evil to do evil.

    Right now I'm trying to create a new Yahoo email address because some forum requires that I have a real email address, a permanent adresss that they can spam, rather than a throwaway 10-minute email address. But guess what, Yahoo wants me to surrender my cellphone number. For what? So the NSA can add a few more bytes to its data center?

    1. Re:Embrace and extinguish (anonymity) by TheSeatOfMyPants · · Score: 2

      I agree wholeheartedly -- and try using SpamGourmet for the address. It's ancient, but the vast majority of sites accept it, *no* messages over the limit you set per sub-address (sub1.user@, sub2.user@) can get through, and I've come to like it a lot more than the throwaway services. Otherwise, try using Mailinator with one of their alternate domains; they change those often enough that forums/sites rarely have the latest set of variants blocked yet.

      --
      Now mostly at Usenet:comp.misc & SoylentNews.org (it's made of people!)
    2. Re:Embrace and extinguish (anonymity) by vlueboy · · Score: 2

      It is depressing. When I started using the web, an email address was important, but you could post on guestbooks (gasp!) without being forced to give it up. Later, email became your login handle and password reset tool, so you were forced to give it up. Back then it was not so natural to create 4 or 5 addresses, and the mental burden was similar to being asked by a stranger what your cellphone number is.
      Now, you're like one question away from needing to give not your home number, but your PERSONAL number. It must be a cell because texts are a given. We all know how cell tech is built for GPS monitoring.

      Exposition done, I created a hotmail address for someone**. We had to give a phone number or a secondary email address. For older people who you're helping out, which happens to me often, this is a pain because they do not have one. Hotmail wanted a phone, and we were forced to give them THAT. I felt cheated. At least they let you give a non-cellphone number with a voice-based reset system.

      This morning I clicked on a link to open a Google App ID or something similar for work and they wanted to "verify" my identity to even let me read someone else's project. Google doesn't play around and they forced a cellphone-only choice. I imagine that in some poor countries, this becomes a pain. The depressing part is that people don't beat around the bush for identification steps. I declined, and every one of these traps makes me use Google less and less.

      **I don't know what happened to the ol' password-reset link of days past. That predates security questions, but the latter seem of dubious use because they're easy to guess and rarely customizable.

    3. Re: Embrace and extinguish (anonymity) by Anonymous Coward · · Score: 0

      Cellphone numbers are a strong selector. If they're US based, the NSA knows to ignore your data for their purposes and hand it off to the FBI or the other Four Eyes (UK/CAN/AUS/NZ) for processing. That keeps the NSA out of trouble. If you need a new account, get a disposable cheaphone and use it only for events associated with your pseudonym, preferably from a different cell tower than your home location. This will save your handler a great deal of time and effort reading your mail to determine if you're a citizen or not; the NSA thanks you in advance for your continued cooperation.

    4. Re:Embrace and extinguish (anonymity) by gbjbaanb · · Score: 1

      Hotmail wanted a phone, and we were forced to give them THAT

      no, wrong. Hotmail wanted a phone number, and I give them that... 08770 123456.
      Just like my email address for some places to get past the stupid: a@b.com works every time.

  13. Lots of people signed up from StackOverflow by SuperKendall · · Score: 2

    If myOpenID is "one of many providers," why does this rate an article of its own?

    When StackOverflow first was launched, you could only log in with OpenID I believe. MyOpenID was one of the more prominent providers, and so there are probably a lot of people that if nothing else still use myOpenID to log in to the realm of StackOverflow sites... thus worthy of note on a site like Slashdot in a way that other OpenID providers may not be.

    It's good to know, I use it myself for a number of sites - basically wherever I can. What would be really nice is if myOpenID handed off user accounts to some other OpenID provider on request...

    What I really do not want to do is use Facebook as an authentication provider since so many sites request permissions to do things on Facebook I do not want to let them do, and some site logins fail without those permissions.

    --
    "There is more worth loving than we have strength to love." - Brian Jay Stanley
    1. Re:Lots of people signed up from StackOverflow by vlueboy · · Score: 1

      I was looking for the Stackoverflow comment to post my concern* I never cared for openid until I found no other option to sign up and post a question there.
      What are we gong to use at Stackoverflow after myopenid croaks? I don't use SO enough to care going there to ask or looking through a faq.

      * Slashdot really needs a free-flow forum, because it's annoying having a question you can't ask elsewhere... or risk getting your question closed at the stackexchange sites. I've mulled this over before in another /. thread and the cons are that commercially Dice Holdings wouldsee it removing eyeballs away from the moderation and commenting on articles here.

    2. Re:Lots of people signed up from StackOverflow by Anonymous Coward · · Score: 0

      * Slashdot really needs a free-flow forum, because it's annoying having a question you can't ask elsewhere... or risk getting your question closed at the stackexchange sites. I've mulled this over before in another /. thread and the cons are that commercially Dice Holdings wouldsee it removing eyeballs away from the moderation and commenting on articles here.

      Isn't that what journals are for? (Although I don't seem to find the user journal links any more; did they remove them?)

    3. Re:Lots of people signed up from StackOverflow by nitehawk214 · · Score: 1

      When StackOverflow first was launched, you could only log in with OpenID I believe. MyOpenID was one of the more prominent providers, and so there are probably a lot of people that if nothing else still use myOpenID to log in to the realm of StackOverflow sites...

      Correct, and correct. It is the only thing I use OpenID for. StackOverflow is adding a way to have an alternate logon, so you can add one before myOpenID goes under for good.

      OpenID is a good enough sounding idea, that is relegated to complete failure by providers. Google, Yahoo, Microsoft and whatever other big account providers do not accept each other's (or any) OpenID; so you are stuck with separate accounts for everything anyhow.

      --
      I'm a good cook. I'm a fantastic eater. - Steven Brust
    4. Re:Lots of people signed up from StackOverflow by Anonymous Coward · · Score: 0

      Lots of drawbacks, starting with how they are a hole-in-the-wall system and not a way to gather attention by topic.
      I still see journal links on the line with the comment id links, iirc. They attract zero to 3 posts if you are not popular, and are not designed to be found readily. Forums rarely go unanswered like that

  14. missed opportunity by Anonymous Coward · · Score: 1

    Should have said you are shutting it down for undisclosed US Government reasons that your lawyer sitting next to you won't let you talk about.

  15. Re:Used google fu to figure out what myOpenID was. by edibobb · · Score: 1

    The significance is that the CEO sent a sad email out to all myOpenID users. I got one and don't remember ever using their service, although I imagine I did at some point.

  16. Meh- almost just acknowledgement of status quo by jensend · · Score: 1

    I liked the MyOpenID idea, and don't like the idea of using a Google or Facebook account across the web. But more than half of the time I've tried to log in with MyOpenID over the past two years, the site has been having technical trouble. A login system that does that could cripple your Internet experience. So I ended up moving to other options.

    1. Re:Meh- almost just acknowledgement of status quo by Skapare · · Score: 1

      They should have designed OpenID so that people can run their own identity servers. They sorta did, but it still requires going through a big provider that can track you. That was stupid.

      An alternative idea still requires a big provider, but at least logins do not need to go through them so there is no point of tracking you. That idea is to use signed certificate identities. The service you login into only needs to trust the CA that signed your identity.

      Or just don't worry about having a like identity, and just have web sites do a standard registration process that a browser module/plugin uses with your secure key ring that you put these identities (can be different at different sites) into. This can work better by having identities that work like those on StackExchange.

      --
      now we need to go OSS in diesel cars
    2. Re:Meh- almost just acknowledgement of status quo by BitZtream · · Score: 3, Informative

      ...

      Running your own openid server is rather simple if you're willing to install some packages.

      For fucks sake, a simple google search results in the following first link: http://wiki.openid.net/w/page/12995226/Run%20your%20own%20identity%20server

      --
      Persistent Volume manager for Kubernetes - https://github.com/dwimsey/openshift-pvmanager
    3. Re:Meh- almost just acknowledgement of status quo by lister+king+of+smeg · · Score: 0

      ...

      Running your own openid server is rather simple if you're willing to install some packages.

      For fucks sake, a simple google search results in the following first link: http://wiki.openid.net/w/page/12995226/Run%20your%20own%20identity%20server

      many of those listed on that page are either no longer actively maintained, hard to administer or requires a web server besides it making it even more work to set up and administer.

      --
      ---Saying gnome 3 is better than windows 8 not so much a compliment as it is damning with light praise.
    4. Re:Meh- almost just acknowledgement of status quo by Anonymous Coward · · Score: 0

      An alternative idea still requires a big provider, but at least logins do not need to go through them so there is no point of tracking you. That idea is to use signed certificate identities.

      You mean, client side certificates, as they are implemented in browsers since Netscape 3.0?

  17. Translation by Anonymous Coward · · Score: 0

    We've been ordered to turn all of our records over to the NSA, including any personally identifying information we may possess about you.

  18. No mention of their admin apathy by Dagger2 · · Score: 5, Interesting

    I received this email earlier today. It made no mention of the fact that generating new SSL certificates for certificate authentication on their website broke years ago, and nobody could be bothered to fix it. It's still broken, in fact. I'm guessing their decision to shut it down was more out of apathy than anything else.

    1. Re:No mention of their admin apathy by vlueboy · · Score: 1

      I received this email earlier today. It made no mention of the fact that generating new SSL certificates for certificate authentication on their website broke years ago, and nobody could be bothered to fix it. It's still broken, in fact. I'm guessing their decision to shut it down was more out of apathy than anything else.

      That's the problem with lack of paid Service Level Agreements. More realistically on the www, we reduce that statement to "the problem with free services."
      It is good and bad that almost all we do on the web is expected to be free. Even we can't be bothered to stop signing up for services, despite seeing more and more failures:
      1) stuff merging / bought by our ideological enemies (almost joined Instagram a month before their Facebook deal)
      2) stuff shut down with no warning (remember WHquestion a whole decade ago?? used it daily and suddenly saw a "sorry, we've closed, join Knowpost if you are still passionate about this". This is a risk at series streaming sites too)
      3) stuff or being nerfed / Yahoo'd into uselessness
      4) stuff just dissipates but never fully sunsets when a competitor overtakes it. Myspace and Friendster accounts.

      I tried my credentils at Friendster to check up on some profiles, like maybe an old crush or wo... just to find
      a) ALL my friend data and pictures were gone because some Korean MMO company bought it
      b) they wanted to sell me MMOs, ignoring the emotional annoyance they'd caused.

      Given some more years of this garbage, I'm just going to end up a luddite, because everything in the USA has an nsa-inside sticker now, and all my devices and OS's are compromised or assumed tainted in some way.

  19. Re:popular - slow - dead by smash · · Score: 2

    Oh why sure, I'd love to have my facebook hacked and every website I visit being exposed.

    --
    I run: Windows, OS X, Linux, FreeBSD. Just because you have a hammer, doesn't mean everything is a nail.
  20. Time to switch to Persona by Anonymous Coward · · Score: 0

    Too many corporations have perverted the OpenID standard to the point of exclusivity and not respecting my privacy.
    Mozilla's sign-in system is the only one left that does.

  21. StackExchange has own login now by SuperKendall · · Score: 1

    If you go to your account page, go to "My Logins" tab - there you can add a login with Google, Facebook, Login or many other options. StackExchange itself also has its own auth server so you just just create an account there if you prefer.

    I can't remember when it was, but some time ago I believe StackExchange prompted me to move away from only having the OpenID login, so they are basically all ready to go...

    --
    "There is more worth loving than we have strength to love." - Brian Jay Stanley
    1. Re:StackExchange has own login now by Anonymous Coward · · Score: 0

      Yeah I'm gonna create a username/password and then use StackExchange as my new delegated provider.

  22. Grumpy Old Man by Anonymous Coward · · Score: 0

    If there's one phrase that really brings out the GOM in me it's

    "I wanted to reach out"

  23. GPG-AUTH by Anonymous Coward · · Score: 0

    Never understood, why we can't use GPG public keys as logins. Why always reinvent the wheel ten-thousand times? :-/

    1. Re:GPG-AUTH by Shirogitsune · · Score: 1

      Because some people want lights and spinners on their wheels, apparently. :/

  24. Re:popular - slow - dead by Anonymous Coward · · Score: 1

    That's why I am very opposed to any chain-of-login service. I Do Not Want Facebook/Google/Twitter/NSA magic logins, and I don't want OpenID magic logins either. Never mind that an independent service like MyOpenID might be a less-onerous way to do follow-me logins, it is still a follow-me login. Don't simplify things for the data miners.

  25. I'm a user of it by Dr.+Evil · · Score: 1

    Created my account in January 2010, used it for a lot of stuff.

    Single sign-on turns into single point of failure... again.

    I'm sure as hell not going to use Google, Microsoft, Yahoo, LinkedIn, Facebook or whomever for single sign on. I have enough trouble trying to prevent people from sucking me into Google+ and keeping my Youtube account separate from my Gmail account. LinkedIn and Facebook already want to get into my email to "build my social network" further. None of these are trustworthy companies.

    I guess I'm going to have to add a dozen more passwords to my password database.

    1. Re:I'm a user of it by Anonymous Coward · · Score: 0

      If you planned ahead and delegated a URL under your control you can just change your delegation to a new provider and they are none-the-wiser as your URL remains the same. (I've been using Symantec (neé VeriSign) PIP for a while, which is one alternative to the social nets mentioned.)

      Also, I'm taking this retirement of myOpenID as a sign in favor that it is time for us all to jump ship to Mozilla Persona.

    2. Re:I'm a user of it by Jonner · · Score: 1

      Created my account in January 2010, used it for a lot of stuff.

      Single sign-on turns into single point of failure... again.

      I'm sure as hell not going to use Google, Microsoft, Yahoo, LinkedIn, Facebook or whomever for single sign on. I have enough trouble trying to prevent people from sucking me into Google+ and keeping my Youtube account separate from my Gmail account. LinkedIn and Facebook already want to get into my email to "build my social network" further. None of these are trustworthy companies.

      I guess I'm going to have to add a dozen more passwords to my password database.

      You're exactly right. When OpenID was getting started, I was quite hopeful that it would prevent lock-in and walled gardens. I used my myOpenID account. I also experimented with Google and Yahoo as providers. I was dismayed that while a number of small web sites were and are OpenID consumers, none of the big ones have allowed that. Eventually, I realized that's simply because it's not in the interest of a company with a large number of users to allow people to use outside accounts to log in. They know they can increase their power by restricting how users interact.

      I was similarly dismayed when Facebook implemented an XMPP (Jabber) service but didn't federate, defeating the primary strength of the Jabber system. I was happy for many years that at least Google was interested in interoperability, but they've now shown they're little different from Facebook, Microsoft, Twitter and all the other behemoths in that regard.

  26. Re:popular - slow - dead by smash · · Score: 1

    Exactly. Password reuse is bad, whether it's directly or via an authentication service.

    --
    I run: Windows, OS X, Linux, FreeBSD. Just because you have a hammer, doesn't mean everything is a nail.
  27. Hotmail least evil?! by aNonnyMouseCowered · · Score: 1

    I'm not sure. But I wouldn't be surprised. Actually I just managed to create a Hotmail address by providing a disposable email address and answering the trick, I mean security, question.

    As a soon-to-be-former Google fan, I find it quite sad that I'd now be recommending Hotmail (aka Live/Outlook) as the least evil service among the Big 3 email providers.