Jason Karns's dashboard

Jason Karns marked one of Mike Busch's replies in Toobla as useful. Mike Busch replied to the problem "Password-related security issues".

Jason Karns reported a problem in Toobla on August 14, 2009 15:04:

Password-related security issues

When I created my account I received an email containing my password in plaintext. This has serious security implications. For one, it means you are sending my password across the internet in plaintext. Secondly, it means you are putting the security of your application in the hands of your users' email providers (not too many ways around this except for OpenID). Lastly, and what scares me the most, is that this implies that my password is being stored in your database in plaintext. All passwords should be salted and hashed so an attacker cannot retrieve my credentials by getting into your database.

Jason Karns shared an idea in Toobla on August 14, 2009 14:59:

OpenID Support

I'd like to be able to sign in with OpenID and avoid Yet Another Username/Password

Jason Karns reported a problem in Sidebar Creative on July 17, 2009 15:18:

Weave/Firefox 3.5 breaks OpenID login

The Weave extension for Firefox is attempting to broker the OpenID signon experience and is breaking OpenID signon.

Jason Karns replied on March 24, 2009 19:56 to the problem "YubNub address bar integration" in Songbird:

Any update on this issue?

Jason Karns reported a problem in Get Satisfaction on March 01, 2009 06:33:

Data is lost when completing a reply prior to logging in.

I have an account and I log in via OpenID (myopenid.com). If I start filling out a reply to another post and hit submit, it prompts me to login. I proceed to login using OpenID and when I get back to GetSatisfaction, my reply is gone and I have to type everything up again.

Jason Karns replied on March 01, 2009 06:28 to the problem "Songs play without sound and with an extreme velocity" in Songbird:

I'm experiencing the same problem. I'm using Version: Songbird 1.0.0, Build 860 (20081124135419) on Vista x64.

I've run the exorcist on my library and it isn't showing any missing tracks. Also, after it happens, I'm able to successfully play the songs it speeds through. (Once I've got it to stop and start playing normally again, even without restarting) However, I'm only able to get it to stop by using the pause button. Hitting next or previous causes Songbird to hang and require a force kill via the task manager.

Error console below:

Jason Karns asked a question in Brightkite on February 25, 2009 19:34:

Support OpenID as a Relying Party

It would be nice if I could log into Brightkite with my existing OpenIDs.

Jason Karns asked a question in friendfeed on February 25, 2009 19:16:

Support OpenID as a Relying Party

I would like to be able to log into FriendFeed with my existing OpenIDs.

A comment on the idea "OpenID-support for Delicious" in Yahoo!:

The strength of the password isn't really the weakest point in the security of Delicious. Rather, any weak email system is the weakest point. An attacker simply has to request a password reset and break into their email account. So Delicious is already trusting its security to all the email providers out there. Personally, I find MyOpenID much more secure than any webmail provider. I log into myopenid.com with an SSL cert. – Jason Karns, on February 25, 2009 19:05

Jason Karns started following the idea "Add OpenID support" in Delicious.

Jason Karns replied on February 25, 2009 18:56 to the idea "Add OpenID support" in Last.fm:

It's frustrating not being able to log in with my OpenID.

Jason Karns started following the idea "Add OpenID support" in Last.fm.

Jason Karns replied on February 25, 2009 17:53 to the problem "Gmail email/account as an OpenID" in claimID:

My Flickr OpenID and Yahoo ID aren't connecting, either:
http://www.flickr.com/photos/jasonkarns/
https://me.yahoo.com/jason.karns

Jason Karns reported a problem in claimID on February 25, 2009 17:47:

Gmail email/account as an OpenID

I can't seem to use my Gmail email as an OpenID. I've tried the following URLs, which are supposed to allow OpenID support using a gmail email:

https://www.google.com/accounts/o8/id (I've also tried replacing 'id' with my gmail id/email)
http://gmail.com
http://google.com
http://openid-provider.appspot.com/ja...

Are there known issues or workarounds for this (either on your side or Google's)?

Jason Karns asked a question in claimID on February 25, 2009 15:51:

hCard form is confusing.

The street, city, etc fields are after the Company field. Are the street, city, fields for my company or me?

Jason Karns asked a question in chi.mp on February 25, 2009 15:18:

Flickr OAuth access

When granting access to flickr, chi.mp requested access to my photostream (including private), the ability to upload, and edit. Isn't there a lower, finer-grain access level that chi.mp could request?

Jason Karns started following the idea "Be able to remove people from list" in Mr. Tweet.

Jason Karns started following the idea "Location-based suggestion" in Mr. Tweet.

Jason Karns shared an idea in Stuff and Nonsense Ltd. on February 18, 2009 16:35:

Allow 'bracketing' of tweets between CC license changes or updates.

It would be great if TweetCC could track the most recent CC license change. For instance, I tweet @tweetcc with a particular license A (at time X) so all subsequent tweets are under this license. Then I tweet @tweetcc a more restrictive license B (at time Y) which applies to subsequent (not previous) tweets. I can then later revert to the less restrictive license A (at time Z) with the final result being that tweets before time Z are unlicensed, between time Y and Z are more restricted (license B), and between X and Y (and after Z) are licensed under A.