Slowly, more and more sites have supported login using OpenID.
The selling point of OpenID is that you can use one login to access varies sites. This is very convenient. But I am worried about losing the same passwords for all the OpenID supported sites I access. There are so many phishing activities going on to steal passwords. I need something that's not password-based.
I came across Certifi.ca which is a password-less OpenID provider using SSL certificate for public key-based authentication. The basic idea is that you store your public SSL certificate(public key) and the private key in your browser. Certifi.ca identifies you by your public key, and uses your public key to encrypt communication between your browser and itself. Your browser with the private key is the only one that can decrypt the communication. There's no password needed!
Reasons for choosing Deki Wiki:
- It's open source
- It has a suite of widgets and web Services mashing up contents. The mashup features are important because I want to bring in contents from other sites into the wiki
Tahoe Vacation Guide: Don't Book Your Skiing/Snowboarding Trip to Tahoe for Thanksgiving or Christmas NOW
It is early Nov. You are so ready to get head-start of your 2007-2008 skiing/snowboarding season by booking a trip to Tahoe for Thanksgiving or Christmas now. But you still see sunny weather in Tahoe area.
So should you bet or not?
Probably not because it's really a hit or miss whether mother nature will dump enough snow by Thanksgiving and Christmas.
In my past experience, most of time, there's not enough snow in Thanksgiving. Sometimes, there's not enough snow in Christmas. For example, last year was a really bad drought year in Tahoe, and the season didn't really get started until Jan.
OpenSocial ( Google + MySpace + Rest of the World ) VS. Facebook - Finally I Am Motivated to Try Social App Development
If you can't fight the biggest player. Unite others to fight him.
OpenSocial API, proposed by Google, and supported by popular social networks including hi5, iLike, Slide, LinkedIn, Plaxo, Ning, Bebo, MySpace and SixApart, but excluding FaceBook, are going live in any minute(supposedly to be open tonight).
The open API will have three parts(from Oreilly Radar
- Activity stream
Amazon S3 has been out for a while. And the competition is heating up in the storage as a service market.
S3 in general:
- 99.9% service level guarrantee (only have had SLA recently since Oct. 8th, 2007)
- no worry of hardware failure, data redundancy
- one and only one master secret key. I would like to be able to create separate secret key for different applications so if one application got compromised, other applications won't be compromised
- can't control bandwidth overage. Can be a real problem if your competitors are leeching your S3 bandwidth that you pay for every bit