We know now that Mat Honan’s account compromise was due to bad policy at Apple for allowing account access, but this bit from Daniel Jalkut’s post about the situation holds true regardless:
One way to protect yourself is by declining to delegate authentication to third parties. When enrolling in a new service that offers Twitter or Facebook authentication, I usually go through the nuisance of creating a new account instead. That way I can choose a unique passphrase, and store that in my keychain. I prefer this to allowing numerous items to be implicitly added to my Twitter or Facebook “keychain.” Don’t put all your eggs in one basket, as they say. (Well, that’s what I’m doing with my keychain, but I am empowered to personally protect it and to back it up as I see fit.)
This is a strong argument against permitting multiple login “vectors” from social services to your web service. It’s a good idea to permit connecting to these services so your service can leverage things like contacts and posting access but a bad idea to permit authentication from these services.
And you should never use the same password twice across services. The last.fm/LinkedIn password craziness should have taught everyone that.
John Koetsier for VentureBeat:
As we reported before, Zynga executives and investors, including CEO Marc Pincus, sold over $500 million in stock just three months before. Pincus sold $200 million of Zynga stock, chief operating officer John Schappert sold $3.9 million, and chief financial officer David Wehner sold stock worth $4.6 million.
Every time Zynga’s execs open their mouths, they come off as jackasses. Part of the suit alleges that they basically burned their own employees on the IPO.
There’s lots of talk going on early this week about Twitter and their intentions towards third-party clients. Will they permit them? Will Tweetbot still be around in six months? How am I going to connect with other people if Twitter goes the Facebook route and makes me use official clients that aren’t as nice as the third-party ones I have now?
I was going to write a bunch of words about this, but in the end it comes down to something very simple.
Your blog has always loved you. Open—or at least agreed-upon and widely used—standards are not going to magically grow walls and keep you or others out.
WordPress. RSS. Comments. Pingbacks.
Digging deeper: PHP. MySQL. Apache/Nginx. Linux.
These things don’t belong to someone else. They don’t belong to a company that needs to please its investors. They don’t have reasons to keep you out or to stop you from doing what you want.
They belong to you. You use them to make great things. You contribute to them and make not only your stuff, but other people’s stuff, better. You use them to read others’ content and to enter the discussion. If your blog hasn’t been the center of your digital presence, why not?
Your blog has always loved you.
Chris Carter at Destructoid:
In a bizarre twist of events, Final Fantasy XIII-2 is getting Facebook support. By inputting your social network credentials in the game’s settings, you’ll be able to update your friends on your party structure, story progress, and other useless statistics.
Does anyone else think this is kind of backwards?
Wrong question. Look at this screenshot that accompanies the article:
The correct question is what is up with that dog in the lower-right?
A WordPress theme based on Twenty Eleven and inspired by the Facebook Timeline. See it here.