The Internet is at a dangerous inflection point. Facebook Connect is quickly creating a monopoly on identity. Sites are increasingly requiring Facebook logins now: Techcrunch comments and turntable.fm early access are two examples. And many more sites like TripAdvisor now promote Facebook over their own logins.
As a user the Facebook Connect experience is great. I see a familiar blue button, I click it, and I'm done. No creating an account, no coming up with a new username and password, no entering specific data. And it's not just a login, many Facebook integrated sites give me a better experience with access to my Facebook social network. For site owners the advantage of Facebook connect is clear: good user experience, less code to manage, and access to Facebook data.
The problem is that Facebook is creating a monopoly. That's a huge risk to every other company on the Internet. It's bad for users too, we're losing the ability to use pseudonyms online. And while Facebook's technical execution is excellent the company has demonstrated over and over again its willigness to act unethically towards their users. We don't want them controlling user identity.
There is a terrific technical alternative to Facebook Connect: OpenID. The tech works well and it's open, letting users and companies choose their identity provider. But despite some four years' headstart it's never succeeded in being adopted widely like Facebook Connect has. And while I like competing login systems like Sign in with Twitter, identity is too important on the Internet to let any proprietary solution dominate. Our ecosystem needs a productive open standard. I still think OpenID is sufficient, but I'm in a dwindling minority.
I'm at my Reed College reunion, reconnecting with old friends. We're all about 35 – 40. I've noticed there's a real difference in my conversations depending on whether we're connected via Facebook and Twitter or not. I post a lot online: folks who follow me already know I live in San Francisco, that I'm a pilot, that I was in Slovakia last year. It's a great place to start.
Before the Internet we had casual social information sharing. Christmas letters, alumni class notes, outright gossip. But online social networks make it way easier and more fulfilling, you can learn as little or as much about someone as you want.
The best thing has been meeting someone I haven't talked to in fifteen years, finding we have a lot in common, then making a point of finding them online while standing there with them. So we can stay in touch. Social media really works to keep a community together.
Apparently it's news to almost every web developer out there, but in the real world people's names have spaces in them. My name is "Nelson Minar". It is not "Nelson_Minar" or "NelsonMinar" or "NelsonM" or "Nelson397" or any of the other nonsense I have to use to work with some website who's decided to constrain names to some 1980s software-friendly character subset.
The hardest part of signing up for a new site these days is picking a unique user name. It's annoying to have to remember different names. And it's really obnoxious when my janked up UserName is also used as my display name. The right way to do logins right now on the Web is use email address as the login name and let the user choose their own display name which does not need to be unique. That's not ideal (email addresses can change) but it works pretty well. If you absolutely have to not use email as the login name, please at least let my login name have a space in it.
While I'm delivering the news, here's something for you ignorant American backwoods motherfuckers. Some people's names have "special characters" in them. Like François Rabelais or Björk Guðmundsdóttir or 艾未未. It's 2011; the only software that can't handle Unicode properly is Perl. (As if you needed another reason not to use Perl.) Stop limiting your code; there are only two languages that can even be written in ASCII.
Naïvely drawing 2500 SVG diagrams on the map is slow and cluttered. Mike came to my rescue and wrote a tiler for me so that I only render SVG when the location is visible. I also replaced the wind roses with simple circles when zoomed out too far. It'd be better to declutter by only drawing the most important weather stations at high zoom levels; I fear many people never realize they can zoom in on the map.
The station page is pretty simple: I had to cut a lot of planned features to meet my deadline. I've got code in development for filtering by month with animated transitions to show winds shifting over a year. Also plans for fancier histograms of wind speed, more airport data, etc. Lots to do here still, will be fun.
I've just launched a project I've been working on for awhile, windhistory.com. Check out the prevailing winds in California or see how strong the northeast winds are in Honololu. More tech details in a followup blog post.
Another Sony hack yielded a database of 1,000,000 plaintext passwords. Why does Sony have plaintext passwords? Because they're idiots and deserve to suffer a civil lawsuit. But Sony's negligence is security researchers' gain: check out this analysis of the password haul. The most astonishing result:
Two thirds of people with accounts at both Sony and Gawker reused their passwords.Passwords are a broken mechanism of authentication. They are weak, dangerous, and difficult for naïve users to use correctly. It's time to end passwords.
The SF Chronicle has a heartbreaking story about how a married gay couple of 19 years may be split up by US immigration.
Starting June 13, Makk, 48, faces possible deportation if he remains in the country illegally when his current visa expires. If he leaves, he would not be readmitted, the couple would be all but permanently separated and Wells, who has severe health complications from AIDS, would be left without his spouse and sole caregiver.They are legally married (in Massachusetts) but thanks to a federal law passed and signed by the Democrats their marriage has no status for immigration. The Australian in the story isn't even a second class citizen: he's no kind of citizen at all.
Woah: Silk Road is an Internet narcotics market. Visit the market via Tor, pay in Bitcoins, and receive your LSD by mail! The Silk Road web site only exists as a Tor hidden service, but you can sometimes see it (non-anonymously) via this proxy. On the public Internet, here's the founders' feedback thread on Bitcoin's forums.
I'm fascinated by how it works. I'm going to quote their "About" page in full, because I'm guessing it won't be online much longer.
Silk Road is an anonymous marketplace where you can buy and sell without revealing who you are. We protect your identity through every step of the process, from connecting to this site, to purchasing your items, to finally receiving them.I'm particularly struck by their statement they provide a BitCoin laundering service. I'd noticed BitCoins didn't seem particularly anonymous, here's proof that someone with a vested interest in real payment anonymity agrees.
Twitter just announced a Twitter enhanced Firefox. It lets you type @nelson in the address bar to go to my Twitter account or type #twitter to search for the #twitter hashtag.
You can do this in Google Chrome too.
The steps up above are awfully manual but work fine. There's probably a way to automate this installation in Chrome; I know there's a discovery protocol for websites to automatically add suggested searches.
Another option is the TwitterBounced extension.