Comments on: Getting Sloppy With Data/Passwords

By: Okay we need to swiften up with passwords | Blogging | A View from the Isle

Fri, 14 Nov 2008 13:56:17 +0000

[...] [From Getting Sloppy With Data/Passwords | Mark Evans] [...]

By: » Typo3 website accessed by unauthorised person! Change your passwords! » Tom Doyle :: TALK

Fri, 14 Nov 2008 11:51:59 +0000

[...] Getting Sloppy With Data/Passwords [...]

By: Getting Sloppy With Data/Passwords | Mark Evans | Voices | AllThingsD

Fri, 14 Nov 2008 08:01:44 +0000

[...] Read the rest of this post Print all_things_di220:http://voices.allthingsd.com/20081114/getting-sloppy-with-datapasswords/ SHARETHIS.addEntry({ title: “Getting Sloppy With Data/Passwords”, url: “http://voices.allthingsd.com/20081114/getting-sloppy-with-datapasswords/” }); Sphere Comment Tagged: Gmail, LinkedIn, Mark Evans, Mark Evans Tech, SocialMinder, Voices, data, passwords, privacy, security, usernames | permalink [...]

By: Richard Cunningham

Richard Cunningham — Thu, 13 Nov 2008 18:13:07 +0000

Sites like that do definitely do need user’s username/passwords for this type of thing otherwise they are limited to 100 requests/hour for everyone who visits the site which totally unworkable. You can even bust this limit just listing the friends of one user i.e. 100 request * 100 friends = 10,000 friends and people like Robert Scoble (http://twitter.com/scobleizer) have over 20,000 friends.

This started being the case when Twitter locked stuff down a lot more, details:
http://louisgray.com/live/2008/07/twitter-chokes-unauthenticated-api.html

They have been talking about oAuth for a long time now and those changes they made in July have made it much more needed than before.

For a site built on the API it’s amazing they haven’t implemented this by now. Flickr and Facebook have had similar systems for years now.

The problem affects sites like us (http://friendbinder.com) because people don’t trust us sometimes to look after their password. If there smart they’ll realize they don’t need to just trust the site owner not to miss use the data, but also that they are doing when it comes to security.

By: Louis Gray

Louis Gray — Thu, 13 Nov 2008 17:44:35 +0000

Twitterank is not to be scared of. What about FriendBinder or Twitter Karma or SocialToo and all those other sites that ask for the combo? The embarrassment is on Twitter, not the services.

This is the author: http://twitter.com/ryochiji

Not to be scared of.

By: Be Careful with Twitter Services | Twitterrati

Be Careful with Twitter Services | Twitterrati — Thu, 13 Nov 2008 16:03:37 +0000

[...] more, check out this post on my tech blog, Mark Evans [...]

By: tweetip

tweetip — Thu, 13 Nov 2008 15:46:04 +0000

1st Tweets Chart… http://tweetip.us/lkvhi