From: Roman Shaposhnik <rvs@sun.com>
To: Fans of the OS Plan 9 from Bell Labs <9fans@9fans.net>
Subject: Re: [9fans] linux reinvents factotum, secstore ...
Date: Thu, 6 Aug 2009 18:39:28 -0700 [thread overview]
Message-ID: <EF228135-60F6-4820-92E4-CF630FA54B24@sun.com> (raw)
In-Reply-To: <ACE81E4B-E525-4549-89E8-8E8384CA1B94@storytotell.org>
On Aug 6, 2009, at 12:33 PM, Daniel Lyons wrote:
> It's easy for me to object to what they're coming up with but it
> would be hard for me to describe in detail how exactly factotum +
> all the other stuff encompass it, and I don't think that the paper
> we have on factotum or the section in nemo's book are sufficient
> either. As a devil's advocate, in my Mac keychain I have 13 keys
> related to file shares and 22 WEP keys. I have my SSH key on 24
> machines. Then I have 270 web form passwords or internet passwords
> in my keychain. Does factotum handle web passwords? I'm presuming
> not but I don't really know because I generally surf with Safari or
> Firefox outside Plan 9. I'm not complaining about the browser
> situation, I'm just saying, it seems to me that the average user
> probably has more website usernames and passwords than everything
> else combined. That's certainly the case with me. Could factotum be
> adapt to integrate with a browser and store web form secrets? If so
> that would be a compelling objection, since it looks like Firefox
> isn't going to start using their security framework anytime soon.
> And who can blame them? It already has a ton of dependencies and
> porting issues and this can only exacerbate it.
These are reasonable questions (and many of them have "yes" as the
answer ;-)) but I have a more
fundamental objection here: the desktop is just NOT the place for such
a functionality to originate from. The very
concept of a fixed desktop that resides on a physical piece of
hardware that you own feels so 20th century
to me. One way or the other the online identity issue is going to be
settled. For contenders, though, I'd
rather look at: factotum or things like OAuth.
I don't think there's a reasonable conversation to be had with folks
struggling to provide solutions
for taking the pain out of managing plain text passwords. The pain is
there for a reason.
Thanks,
Roman.
next prev parent reply other threads:[~2009-08-07 1:39 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2009-08-06 18:13 erik quanstrom
2009-08-06 19:33 ` Daniel Lyons
2009-08-06 19:38 ` erik quanstrom
2009-08-07 1:39 ` Roman Shaposhnik [this message]
2009-08-07 2:52 ` Daniel Lyons
2009-08-07 3:03 ` erik quanstrom
2009-08-07 4:38 ` ron minnich
2009-08-07 13:06 ` Ethan Grammatikidis
2009-08-07 17:34 ` Daniel Lyons
2009-08-07 17:37 ` ron minnich
2009-08-07 17:46 ` Daniel Lyons
2009-08-08 14:44 ` David Leimbach
2009-08-08 17:12 ` Uriel
2009-08-07 1:30 ` Roman Shaposhnik
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=EF228135-60F6-4820-92E4-CF630FA54B24@sun.com \
--to=rvs@sun.com \
--cc=9fans@9fans.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).