Sunday, May 31, 2009
Thursday, May 28, 2009
Password Mashement
person1: So you work in security.
X: Yes.
person1: What do you do for password management?
X: Me? For like logins or web or servers?
person1: The web.
X: I mash the keyboard a few times.
person2: what?
X: I mash the keyboard or play a tune a few times and let firefox and fs crypto take care of the passwords.
person1: Really?
X: Yeah if I'm at a computer that doesn't have my password I just have the site reset it and check my email.
person2: wow.
X: (shrug) everything else is client certs.
X: Yes.
person1: What do you do for password management?
X: Me? For like logins or web or servers?
person1: The web.
X: I mash the keyboard a few times.
person2: what?
X: I mash the keyboard or play a tune a few times and let firefox and fs crypto take care of the passwords.
person1: Really?
X: Yeah if I'm at a computer that doesn't have my password I just have the site reset it and check my email.
person2: wow.
X: (shrug) everything else is client certs.
Friday, May 22, 2009
How it all began...
Yesterday I had a doctor visit and had to have blood drawn. It seems every time I go to a doctor these days they are taking more blood from my internal tubes and not giving me back any of the clones. I tweeted about this to which I received the replies
@adamcecc: It's because you're the super soldier, and they are using your blood to make more serum?
@adamcecc: Are you sure they're not just really good at destroying the originals?
Personally I'd have to assume super soldiers are good enough at killing themselves, but I can't help think somewhere my blood is being used to give someone 30 extra lives at Contra.
I have a small fear of needles. Mostly I just don't like getting jabbed or injected. Being stuck with a needle doesn't hurt, the whole experience of being drained is just unpleasant. It seems no matter the amount of blood taken I become light headed for a spell, which makes me wonder how fast my bleed out time really is. On a lighter note the vampire who stole my life essence yesterday had a odd accent. Her accent was so off I inquired about where she was from, turns out she is an immigrant from Transylvania, Romania and has been taking blood for 9 years.
And this my child is how the vampire war began....
@adamcecc: It's because you're the super soldier, and they are using your blood to make more serum?
@adamcecc: Are you sure they're not just really good at destroying the originals?
Personally I'd have to assume super soldiers are good enough at killing themselves, but I can't help think somewhere my blood is being used to give someone 30 extra lives at Contra.
I have a small fear of needles. Mostly I just don't like getting jabbed or injected. Being stuck with a needle doesn't hurt, the whole experience of being drained is just unpleasant. It seems no matter the amount of blood taken I become light headed for a spell, which makes me wonder how fast my bleed out time really is. On a lighter note the vampire who stole my life essence yesterday had a odd accent. Her accent was so off I inquired about where she was from, turns out she is an immigrant from Transylvania, Romania and has been taking blood for 9 years.
And this my child is how the vampire war began....
Thursday, May 21, 2009
Super Hero Pattern
person1: IIW would likely have been a waste for you
X: yeah? how was it otherwise?
person1: I can see more clearly why you despise the OpenId/OAuth crew
X: :)
person1: It was good to verify what I thought about the identity technologies and space and fun to be in mountain view,but all of the useful conversations were with other CEOs or startups the sessions were very underwhelming
X: yar that's sad to hear
person1: apparently OpenId is a constant headache for implementers
X: and anything doing anything security related
person1: apparently OAuth had a workflow issue and needed to be tweeked last week
X: HA! "workflow issue" it's prob better i wasn't at the conference I'd have decked one of them
person1: I just assumed that people putting together a distributed security spec would be hard core crypto or hackers its more open web evangelists with sessions like "authentication without boring crypto"
X: So the crypto guys solved this problem in the 80s the hackers solved this problem in the 90s
X: the only thing I see these guys doing well is "wrong"
person1: it is huge marketing buzz to support "open" but if the spec is more concerned about how to get an XRD xml file onto a hosted blog then accidentally allowing anyone to request you make claims for them it is an issue but don't worry, these guys will save the day just in time, so they say http://informationcard.net/
X: so we'll call this the super hero pattern? My design is so corrupt it requires Batman to save it...
*X puts on a cape and cowl
X: yeah? how was it otherwise?
person1: I can see more clearly why you despise the OpenId/OAuth crew
X: :)
person1: It was good to verify what I thought about the identity technologies and space and fun to be in mountain view,but all of the useful conversations were with other CEOs or startups the sessions were very underwhelming
X: yar that's sad to hear
person1: apparently OpenId is a constant headache for implementers
X: and anything doing anything security related
person1: apparently OAuth had a workflow issue and needed to be tweeked last week
X: HA! "workflow issue" it's prob better i wasn't at the conference I'd have decked one of them
person1: I just assumed that people putting together a distributed security spec would be hard core crypto or hackers its more open web evangelists with sessions like "authentication without boring crypto"
X: So the crypto guys solved this problem in the 80s the hackers solved this problem in the 90s
X: the only thing I see these guys doing well is "wrong"
person1: it is huge marketing buzz to support "open" but if the spec is more concerned about how to get an XRD xml file onto a hosted blog then accidentally allowing anyone to request you make claims for them it is an issue but don't worry, these guys will save the day just in time, so they say http://informationcard.net/
X: so we'll call this the super hero pattern? My design is so corrupt it requires Batman to save it...
*X puts on a cape and cowl
Wednesday, May 20, 2009
I dare you...
adamcecc: I need to pop into town this summer see you folk
person1: Come on July 4th. I sent U an invite.
adamcecc: Going to a missle silo for the 4th
adamcecc: http://toorcamp.org/
person1: Naturally.
person1: RME (Rolling My Eyes)
adamcecc: ??
person1: I say RME: Because its a weird thing to do on July 4th.
adamcecc: I dare you find me one thing more American than a missile silo
person1: Ah
person1: Come on July 4th. I sent U an invite.
adamcecc: Going to a missle silo for the 4th
adamcecc: http://toorcamp.org/
person1: Naturally.
person1: RME (Rolling My Eyes)
adamcecc: ??
person1: I say RME: Because its a weird thing to do on July 4th.
adamcecc: I dare you find me one thing more American than a missile silo
person1: Ah
Subscribe to:
Posts (Atom)
