@maxdeviant sounds good until you realize the internet only works due to large centralized routing infrastructure :/
@cancel Good point. As with everything, there are tradeoffs with centralization and decentralization.
Personally, I like using things like Gmail because of the convenience factor. But when I hear stories of people getting banned from Gmail for no reason it makes me realize how boned I'd be if the same were to happen to me.
In this case there's a fairly simple fix of using Gmail with a custom domain, so you can transfer your email address should that happen, but it's not always so easy.
@maxdeviant Yeah, those are all partially centralized. Fully decentralized is usually so inefficient it ends up becoming a sticking point (see: bitcoin)
But I like the model of "friends are all on a server somewhere, and servers can communicate in some way if they want". No one company or government or whatever is in control, but it's not massively inefficient, either.
@cancel I wonder if this would work well for things like identity management?
So rather than "Sign in with Google" you run an identity instance for yourself, your family, your company, etc. Could leverage things like OAuth 2.0 in order to integrate easily with various services.
I'm sure something like this has to exist already, but I'm not privy to it.
@maxdeviant OAuth and "easy" are not usually words I put together without an odd number of negations between them.
@cancel I more meant from the standpoint of many services already supporting OAuth.
OAuth is far from easy (especially if you want to get it right).
@maxdeviant if we're aiming for a major change to stuff, I'd rather change it so that there are fewer things and that I don't have to sign in.
@cancel Could you expand on how not signing in would work?
It seems to me that it would rely on using non-shared services, having a strong trust network (e.g., I could use "cancel" as my handle to impersonate you, but why would I?), or creating services in such a way that authentication is not necessary (a commons?).
@maxdeviant services suck, I don't want more services :(
Theoretical example: ML spam detection on YouTube thinks I'm a bot then bans my YouTube account, which causes my Google account to be banned (yes this is really what happens) then I can't access 90% of my shit because of OAuth/ OpenID/whatever
@cancel @maxdeviant OpenID is separate from all other services, if your Google account got banned you could still log into other stuff connected to OpenID but anything using the Google OAuth token would obviously be borked. That said I also use a password manager so I just use the sites builtin account system same as you.
This doesn't work for some sites that decided to only use external identity providers (Google, Facebook) in lieu of rolling their own. I can't say I blame sites that go this route, as auth is very hard to get right.
I still currently have a SPOF in that most of these services are still tied back to a Gmail address.
@maxdeviant @drisc Though I've worked with many good managers. I guess the thing that I don't like the most (and which appears surprisingly often) is some configuration that leads to indirect management causing huge problems for other workers and no way to fix it from the position of the person actually producing the value.
To bring it back to our example, being forced to use some crappy software that the managers themselves don't use.
Merveilles is a community project aimed at the establishment of new ways of speaking, seeing and organizing information — A culture that seeks augmentation through the arts of engineering and design. A warm welcome to any like-minded people who feel these ideals resonate with them.