Announcing: Slashdot Deals - Explore geek apps, games, gadgets and more. (what is this?)

Thank you!

We are sorry to see you leave - Beta is different and we value the time you took to try it out. Before you decide to go, please take a look at some value-adds for Beta and learn more about it. Thank you for reading Slashdot, and for making the site better!

Sun Releases Open Source Tool for Project Liberty

CowboyNeal posted more than 12 years ago | from the forget-your-passport dept.

Sun Microsystems 113

ruisantos writes "After submiting the technical specifications for the project , Sun has finally launched an open source tool for its upcoming Sun ONE Identity Server version 6.0, the news can be found on CNET news."

Sorry! There are no comments related to the filter you selected.

so anyway... (-1, Troll)

Anonymous Coward | more than 12 years ago | (#4294989)

I says to Mabel... I says to Mabel...

Did I just waltz in here and get first post?

Re:so anyway... (-1, Offtopic)

Anonymous Coward | more than 12 years ago | (#4294998)

Slow Down Cowboy!

Slashdot requires you to wait 2 minutes between each successful posting of a comment to allow everyone a fair chance at posting a comment.

It's been 1 minute since you last successfully posted a comment

If this error seems to be incorrect, please provide the following in your report to SourceForge.net:

* Browser type
* User ID/Nickname or AC
* What steps caused this error
* Whether you used the Back button on your browser
* Whether or not you know your ISP to be using a proxy, or any sort of service that gives you an IP that others are using simultaneously
* How many posts to this form you successfully submitted during the day

* Please choose 'formkeys' for the category!
Thank you.

Re:so anyway... (-1, Flamebait)

Anonymous Coward | more than 12 years ago | (#4295003)

Mabel can't talk right now, she's got my dick in her mouth. Oh wait... come up for air honey... Okay, well, she says you can't waltz for shit. Try again, cheeseball!

Re:so anyway... (-1, Troll)

Anonymous Coward | more than 12 years ago | (#4295016)

I may not be able to waltz for shit, but I certainly beat your sorry pathetic ass to FP.

So suck my dick cheeseball

I love Microsoft! (-1, Troll)

Anonymous Coward | more than 12 years ago | (#4295068)

Boy, those guys at Microsoft sure know how to make great software. With palladium IIS will be unstoppable with full security.

Re:I love Microsoft! (-1, Offtopic)

Anonymous Coward | more than 12 years ago | (#4295313)

Here's a fine open source tool [goatse.cx] for ya

hi there! (-1, Troll)

Anonymous Coward | more than 12 years ago | (#4294997)

not first!

props to Mabel!

Oh come on (-1, Troll)

Drull (610112) | more than 12 years ago | (#4294999)

Does anyone even use SUN anymore? i mean really, take Unix for example. Then there's windows and linux, what percent is that? Add those two together and you have the differance about SUN. By the way, ok.

Re:Oh come on (0)

Anonymous Coward | more than 12 years ago | (#4295007)

Are you kidding? Go back to your leet college lab.

Re:Oh come on (0)

Drull (610112) | more than 12 years ago | (#4295017)

Excuse me? i didnt even finish high school, and i really hated my grade 8 gym teacher.

Re:Oh come on (1, Offtopic)

Arminius (84868) | more than 12 years ago | (#4295032)

If you ever get a FedEx package, thank Solaris for helping it to get to you.

Re:Oh come on (0)

Anonymous Coward | more than 12 years ago | (#4295113)

Overrated comment.

My brother works at fedex and they are turning into an all Windows shop. THey still have a few old sun and ibm boxen left but they are phasing them out. Most of the package tracking is done on NT boxes that retrieve the data from a Mainframe. Another Mainframe actually processes the orders but everything else is mostly NT.

Re:Oh come on (1)

Arminius (84868) | more than 12 years ago | (#4295152)

That is far from the truth. While they do use Windows CE terminals for some tracking, most of the the other stuff is Solaris. Weather, some scanning processing, and avation (ramp managment, flight tracking, ect) to name but a few applications that run on Sun boxes. I know I support the stuff.

Re:Oh come on (5, Interesting)

shaper (88544) | more than 12 years ago | (#4295357)

My brother works at fedex and they are turning into an all Windows shop.

This assertion is completely and utterly incorrect. It is so far from the truth that one might consider it a deliberate fabrication. Real core production FedEx systems revolve around serious IBM mainframe hardware. Nothing else really supports the necessary transaction volume. Many applications are front-ended by web interfaces running on lots and lots of Sun servers. And Sun boxes being phased out are being upgraded, not replaced. No one at FedEx seriously considers Windows for any core business application, server side. No way it could handle the volumes of data.

For example, one of our smallest non-core-business systems handles maintenance on our vehicles. We periodically look for an off-the-shelf system to buy. Vendors come in all bright and happy and tell us how wonderful their application is. It's easy to use and runs on nice commodity PC hardware under Windows. They tell us they have customers supporting fleets with several thousand vehicles with no problems. And they say it as if we should be impressed about someone operating fleets of 1, 2 or even 3 or 4 thousand trucks. We say, "Great! We have over 160,000 assets, over 60,000 of which are big rigs alone. We have more than 2,000 mechanics scattered over the globe performing 5,000-10,000 different repair actions on those assets every business day, year round, to keep them running. Those repairs generate 500-1000 potential vendor warranty claims per day which must be processed and filed as fast as they are created. And we must automate every possible part of the process chain that we can. Oh, and we need to retain all that data on-line for anywhere from 18 months to 5 years for various business and regulatory reasons. Can your system handle that?" And they look back with a deer-in-the-headlights look and promise to get back to us. And back we go to those old mainframes just chugging happily along, with nice spiffy web front-ends and feeding big honkin' data warehouses on Sun servers. And this is an example of one of the tiniest systems we have! Never mind about really important stuff like flight planning, scheduling or, heaven forbid, the Sort!

Oh, and we can't forget the millions of lines of custom COBOL that have been written and tailored to FedEx business processes. Code that would take some terrible amount of programmer-decades to re-engineer if we ever moved off mainframes.

Just because your delivery-truck driving brother uses a Windows PC at his station or strapped to his wrist does not at all mean that FedEx is in any way using Windows for anything other than client access. We use what makes sense, where it makes sense. For clients, at this point in history that's mostly Windows. For most everything else with really big requirements, Windows just doesn't make sense, whether for reliability, scalability or performance.

Re:Oh come on (1)

janda (572221) | more than 12 years ago | (#4295559)

To blockquote the original poster:

Oh, and we can't forget the millions of lines of custom COBOL that have been written and tailored to FedEx business processes. Code that would take some terrible amount of programmer-decades to re-engineer if we ever moved off mainframes.

You might just need to find somebody who's fluently compu-multi-lingual.

Re:Oh come on (1)

Reality_X (23422) | more than 12 years ago | (#4295643)

Just out of curiosity (I work for a courier company here in Sydney, Australia), what type of system does "the sort" run on? (We have "the sort" here too :-)

COBOL rehosting (1)

maitas (98290) | more than 12 years ago | (#4296769)

If COBOL code is what bothers you, and you like Sun servers, check:
http://www.sun.com/migration/mainframe/ind ex.html

I work for an automaker company (VW Mexico) and we migrate all our mainframe applications to Sun's UniKix platform.

The only hard part is 390 assembler code that needs to be completely rewrite. Fortunatelly we only hade few lines of it. COBOL code run with little change in Sun's E10000. It ends up been way faster and cheaper than the mainframe solution.

If your mainframe has 100 to 500 MIPS you will better try to buy the smallest Sun server that fits that computing power, to reduce even more maintenance costs. Maintanance for a E10000 was half of what we pay to IBM for his mainframe, too much for a Unix server if you ask me...

Sun claims that their new SF15K has 6400 mainframe MIPS... When IBM's G7 has 3000 MIPS. I don't now if that big difference is true, but a good Unix server seems to have comparable power to a mainframe at a lower price point.

The only big difference was the management of the Sun Server. Is not as "profesional" as it was for our mainframe. root account is own by to many if you asks me.. we did have some problems in the initial phase becouse of too many people doing to many things at the same time with root access.

But you better give it a try, at least.


I know of one. (0)

Anonymous Coward | more than 12 years ago | (#4295091)

Try openbsd's [netcraft.com] website.

Windows 95%, Linux .001% (-1, Troll)

Anonymous Coward | more than 12 years ago | (#4295093)

Are you a fucking moron? I'll answer it for you: Yes. Sun is the leading Unix varient in the corporate world.

I don't use Unix, in fact I use Windows XP, but one doesn't need to be a Unix expert to know that Sun Solaris is found in most unix shops in the real world.

Perhaps a better question is "Does anyone use Linux anymore?" I used to run it several years ago, when it was the "hip" thing to do, but I long ago wiped out that partition (I think I replaced it with Windows 2000 but I'm not sure). Some of my friends also tried Linux during the "roaring 90s" but none of them are using it anymore either.

Is Linux dead?

Solaris is terrible (-1, Troll)

Anonymous Coward | more than 12 years ago | (#4295000)

This new linux pc project from Sun is doomed to fail for one simple reason: Sun is horrible. Their track record for stability and security is poor to say the least. If I were a corporate purchaser, would I trust a Linux box from Sun or a Microsoft Windows XP powered desktop from an innovator like Dell? Come on Squareball, give it up.

Re:Solaris is terrible (-1, Troll)

Anonymous Coward | more than 12 years ago | (#4295135)

First off, even though SUN has been quite bad in terms of sucking the customer dry financially, at least their product was somewhat effective from my memories of Ultra Sparc 2 and SUN OS during my college days. Now they are moving to the drivel called linux which always fails my test and Core Dumps in front of my customer's eyes every time(Redhat 7.1 KDE GUI). I do have to say that I moved to Windows OS the moment I graduated from UC Berkeley, and I recommend everyone do the same.

Windows has always been the cost leader, producing products that are very high quality and selling them cheaply do to their incredible market share. Apple gouges the customer on technology that is 3-4 years behind the Windows-Intel world. SUN is equally bad, I mean just look at where their processors are(700-900mhz)!! And don't tell me that RISC processors and their related architecture are faster because clock speed doesn't count because it DOES!!! I have a ULTRA SPARC 3 that I got off of SUN's web site 6 months ago, and my Pentium 4 2.2GHz BLOWS IT OUT OF THE WATER in every benchmark I run!!! When my customers see the evidence, they stop complaining about Licensing 6 and are happy to sign up for software assurance. I then help them convert legacy Unix or God forbid Linux to the latest Microsoft Windows Solution.


Martin Marvinski, MCSE MCSD MS

dude i hate filling in the damn subject line (-1, Troll)

Anonymous Coward | more than 12 years ago | (#4295001)

suck my dick motherfuckers this is not the first post but linux kicks ass and rms is my dad gnue/linux i mean

Security (1, Troll)

I_am_Rambi (536614) | more than 12 years ago | (#4295006)

The Liberty Alliance Project is an effort to establish a universal online authentication system that serves as an alternative to Microsoft's proprietary Passport online ID system. Both efforts have the same goal: let people surf the Web without having to constantly re-enter passwords, names and other data at different sites.

The question is will Liberty Alliance Project be more secure than passport. Wait, who am I asking? Of course it will be better in security than M$. Who isn't?

Re:Security (1, Troll)

Jacer (574383) | more than 12 years ago | (#4295095)

not to troll, but this was modded up just because it was an microsoft, excuse me, an M$ flame

Re:Security (-1, Offtopic)

Anonymous Coward | more than 12 years ago | (#4295103)

Welcome to Slashdot, you must be new! My name is AC.

Re:Security (0)

Anonymous Coward | more than 12 years ago | (#4295374)

My, what a coincidence! My name is AC as well!

Re:Security (0)

Anonymous Coward | more than 12 years ago | (#4295132)

A Liberty security review performed at Sun is linked to from the IPL web page and is here [sun.com] .

Re:Security (0)

Anonymous Coward | more than 12 years ago | (#4295180)

Seen in the next version of Slash code:

if ($post_text=~/Microsoft (really )?(sux)/)

Sun is a bunch of fuckers (-1, Troll)

Anonymous Coward | more than 12 years ago | (#4295010)

The whine, whine, and whine, but when you step back and look ath the big picture, they are just a MS wannabe.

Hello (-1, Troll)

Anonymous Coward | more than 12 years ago | (#4295015)

I have a vibrating buttplug hooked up with a usb link to my computer. Does anyone know of a good linux device driver for vibrating buttplugs? Thanksees.

gnu/lib_buttsex0r (-1, Troll)

Anonymous Coward | more than 12 years ago | (#4295038)

Just download gnu/lib_buttsex0r 2.3 [goatse.cx] from your favorite mirror.

Asking gnu/slashdot users about buttsex is like asking mr t. about gold chains.

Re:Hello (-1, Flamebait)

Anonymous Coward | more than 12 years ago | (#4295044)

Yes. My hot throbbing manhood of love.

Huh? (4, Interesting)

Ctrl-Z (28806) | more than 12 years ago | (#4295018)

I don't get it. Is Sun ONE the same as the Liberty Alliance? The article that is referenced doesn't mention Sun ONE that I could see, just the Liberty Alliance.

I didn't even know that the Liberty Alliance was still around since Hailstorm kinda fell through.

I wonder if they're having much luck selling the idea to anyone. Microsoft sure didn't.

Re:Huh? (5, Informative)

arberya (176464) | more than 12 years ago | (#4295107)

The Liberty Alliance is a group of companies helping to define the specification. Sun propsed Project Liberty as an alternative to Passport. Sun have implemented the specification in their Sun ONE range of products. You will probably see Novell implement the specification within eDirectory as they are members of the alliance as well. As for selling the idea to anyone, it is not a matter of selling it, if you look at the specs it sells itself. Devolved identity management, no single company holding identity information, like Microsoft does with Passport.

Re:Huh? (3, Informative)

JediTrainer (314273) | more than 12 years ago | (#4295117)

I don't get it. Is Sun ONE the same as the Liberty Alliance?

Not quite. Sun ONE is the competitor to the Microsoft .Net framework (meaning, it's a suite of server and development applications, including the Forte suite of IDEs, compilers and your application/web servers and whatnot). Liberty Alliance seems to be competing against Microsoft Passport and all that 'secure' global user profile shtuff.

Re:Huh? (0)

Anonymous Coward | more than 12 years ago | (#4295119)

Gary? Whose Gary?!

Re:Huh? (1)

jarrell (545407) | more than 12 years ago | (#4295122)

Sun ONE is a particular combination of service software that sun has, and is principally a marketting thing. So, things like the Iplanet stuff, various ecommerce bits, etc, all fall under SunONE. It incorporates a bunch of stuff that's all largely based around open standards. The Liberty Alliance is a group, of which Sun is a founding member, which is producing a standard for a particular service. So, at some point the SunONE offering, if they've haven't moved on from that name, will likely implement the Liberty Alliance authentication standard as one of the features in the appropriate products, and might include the softare to manage the server side of it as a SunONE product.

Re:Huh? (3, Informative)

passthecrackpipe (598773) | more than 12 years ago | (#4295124)

Well, there is definetly a market for this kind of thing, it is just about the implementation. Basically, MS said: "give us all your data, you can trust us with it". Everybody fell over laughing, of course. That is why Hailstorm fell through.

The Liberty Alliance is saying: "We don't want your data, we just want to give you the tools".That there is a need for the concept of identity management stands beyond any doubt. How many website logins do *you* have? Exactly. However, how the respective organisation plan to hndle all the data, and plan to implement the concept is what really matters here. That is why the Liberty Alliance has a much better change of actually being used.

Of course, it is an extra kick in the face to MS that the first tool to come out is Open Source.....

Re:Huh? (1)

jsergent (139292) | more than 12 years ago | (#4295160)

This is the first open source implementation that we know of. There are other (non-open-source) implementations.

Re:Huh? (1)

passthecrackpipe (598773) | more than 12 years ago | (#4295179)

Ah - thanks, didn't know that. You see, even on /. you learn something new every day ;-)

can't wait to port it to FreeBSD (-1, Redundant)

Anonymous Coward | more than 12 years ago | (#4295022)

This should be cool to get running on FreeBSD.

Solaris is so good that even Theo likes it (-1, Offtopic)

Anonymous Coward | more than 12 years ago | (#4295029)

He sure does [netcraft.com] . He doesn't even trust his own os for his website. Thats sad. Lets here if for Solaris.

.NET or PHP (-1, Offtopic)

Anonymous Coward | more than 12 years ago | (#4295047)

Hope someone makes a .NET version or PHP version. Either one would be ultra cool.

.NET (1)

OppressiveGiant (558743) | more than 12 years ago | (#4295395)

passport? what?

Its not proper. (-1, Troll)

Drull (610112) | more than 12 years ago | (#4295049)

Well my view on this is somewhat subsided. How doe's the alliance affect consumer exchange throughout the business factory? EXACTYLY. SUN is doomed to become another windows CE and they know it, why else would they release this? Oh and might i add i am an expert. This will probably not affect most non front-end users, but the foreseable future is looking bright. The advances we find in science are totattly excusable, unlike SUN. Anyone ever play quake1? was it ever ported to work with SUN? well i dont know, but i do know this. Anyway, If anyone has any theory's about it please let me know. Ive got shorthands to go out and talk my bosses ear off, but he's busy with some day planner. In conclusion, SUN. Yes or no? I mean really. By the way, ok.

Sun stalling (1)

SystematicPsycho (456042) | more than 12 years ago | (#4295067)

after a few years swinging in and out of the open source community with hidden agendas, maybe Sun is serious this time?

Re:Sun stalling (0)

Anonymous Coward | more than 12 years ago | (#4295651)

It's a fashionable habit to bash UNIX companies on Slashdot.
However they employ people who worked for long years to create POSIX standards and Single UNIX Specification, which GNU/Linux are based on. Defining the API and the protocols may be as difficult or more difficult than writing the actual code...
Of course I certainly understand people who prefer free software vs. closed source and proprietary solutions (I do) but I find it disgusting to looki down on the people working in the UNIX companies.

Re:Sun stalling (1)

SystematicPsycho (456042) | more than 12 years ago | (#4295786)

And where was UNIX before linux stepped in? It was slowly losing popularity and was becoming less mainstream than ever. I think you missed a point, but UNIX companies bash each other and I am not looking down at anyone. I was listening to Scott McNealy speak on Fox Business the other day and I was certainly standing by what he said. Maybe you can call Sun's intervention with open source a debacle, or a success? Either way I think it's a chapter left wide open only now they are taking it more seriously.

Re:Sun stalling (0)

Anonymous Coward | more than 12 years ago | (#4295907)

where was UNIX before linux stepped in?

Being led by SunOS. Seriously.

You should study your Linux history. Linux used SunOS man pages from his University machines as an API reference when writting Linux. Why Sun? Partly because thats what was available, and partly because Sun was the dominant Unix in use at the time.

As it turned out, the SunOS API's were taken as the basis for POSIX, so it was a lucky move on Linus's part.

Re:Sun stalling (1)

SystematicPsycho (456042) | more than 12 years ago | (#4295992)

Hrmm, the question was in terms of where UNIX stood in general, not what was famous at the time, anyway you didn't respond to the rest of my reply Anonymous Coward.

What I was trying to get at is without linux unix was slowly losing common interest. Whether UNIX would be as popular now with or without linux is probably not so debatable, the answer is that it wouldn't be and even Sun has gone as far as admitting that linux has sparked interest in UNIX. Therefore, where was UNIX before linux?

Re:Sun stalling (0)

Anonymous Coward | more than 12 years ago | (#4296753)

Dude UNIX may have lost popularity among your friends and relatives but it was, is, and always shall be used among real compsci dept.'s and the rest of the universe can suck monkey cock.

Re:Sun stalling (1)

SystematicPsycho (456042) | more than 12 years ago | (#4296919)

*sigh* avoiding the question, posting anonymously and responding with some abuse.. enough of this incoherant drivel - you've proven a point in your own mind but have contributed anything to this thread. It's the choice of real compsci dept's .. so this means what??

Open source... (2, Interesting)

XTerm89D (609102) | more than 12 years ago | (#4295081)

Yes, this is open source software, but can anyone explain me the difference between a no-go commercial application and this, except that you have the 'source' ?

As I read in the license it's still 'Intellectual Property bla bla', 5 lines thereafter they define 'Commercial Use'...

What we need is Free Software, not crappy I-wanna-be-cool-but-am-GPL-scared software.

To me this is no better than (oh-the-horror) Microsoft Word

Re:Open source... (2, Interesting)

jsergent (139292) | more than 12 years ago | (#4295106)

The license, SISSL, is OSI approved, and the FSF considers it to be a free software license.

Re:Open source... (0)

bytes256 (519140) | more than 12 years ago | (#4295157)

so if it's not GPL it's crap?

great logic there

yeah boy is FreeBSD a stinking pile of crap, huh? and apache...man that thing sucks too doesn't it

at least they have the guts to give away the source...that sure as hell is better than nothing

Re:Open source... (4, Insightful)

passthecrackpipe (598773) | more than 12 years ago | (#4295162)

Well, not to start a flamewar or anything, but, as another poster pointed out, the SISL is an OSI approved license. Now, I quite agree with you that the GPL is the ultimate in Free Software licenses, but the provision of the GPL are not to everybodies taste. I too would be happier with the GPL, but as things stand today, this is bit better then no OSS license at all.Also, would you care to point out where the SISSL is incompatible with the GPL? or do the words "Commercial Use" just get your panties in a bunch?

SISSL is incompatible with the GPL (2)

yerricde (125198) | more than 12 years ago | (#4296357)

Also, would you care to point out where the SISSL is incompatible with the GPL?

From the License List at GNU.org [gnu.org] :

The Sun Industry Standards Source License 1.0 [openoffice.org] . This is a free software license, not a strong copyleft, which is incompatible with the GNU GPL because of details rather than any major policy.

A popular free office suite [openoffice.org] is licensed under SISSL and Lesser GPL, similar to the way Mozilla is licensed (MPL/LGPL/GPL). Unlike the OpenOffice.org suite, this Liberty implementation doesn't seem to also be under a GNU license.

Re:Open source... (2)

Dwonis (52652) | more than 12 years ago | (#4296464)

Quit complaining. While it is not copylefted software, it is still free software [fsf.org] .

Uh (3, Insightful)

yem (170316) | more than 12 years ago | (#4295087)

Why not just tell your browser to remember the login? Frankly I trust my computer a lot more than some corporation - Microsoft or otherwise.

Re:Uh (1)

Utopia (149375) | more than 12 years ago | (#4295176)

That doesn't work across sites.
You will have to register in every site.
Browsers only remember username/password information per site.

This is like Microsoft Passport.
You register just once and use your the same username/password across sites.

Re:Uh (1)

jsergent (139292) | more than 12 years ago | (#4295209)

Not quite. See the Liberty Alliance Project [projectliberty.org] web site for more information.

Re:Uh (1)

yem (170316) | more than 12 years ago | (#4295302)

Yeah I see - brain before mouth.. ;)

Re:Uh (0)

Anonymous Coward | more than 12 years ago | (#4295203)


Re:Uh (4, Insightful)

Diabolical (2110) | more than 12 years ago | (#4295492)

Yes... if that is the only computer you work with. But i have my personal systems at home, a system at work, when i'm visiting relatives i use their computer same when i visit friends. When i am on vacation i use a system in a cybercafe etc. etc. etc.

It would be nice if i could use the info on a centralized system. Mind you, i'm just talking about the info. Not about data accumulated from online buying etc.

This is where this system comes in, it allows to store information about a person on a central place while allowing online shops to hold on to their own info. MS Passport tries to gather all the info in one place, prefferably on their own servers.

Re:Uh-Smart Card. (1, Interesting)

Anonymous Coward | more than 12 years ago | (#4295744)

"It would be nice if i could use the info on a centralized system."

It's called a smart card. You go, it goes with you.
If you want something more there. Try a USB keychain device, with smart card features.

Re:Uh-Smart Card. (2)

Diabolical (2110) | more than 12 years ago | (#4296415)

Uhm. yes.. a smart-card might do it or USB keychain. Assuming the computers you work with have a way of reading those things... In most cybercafe's your not allowed to attach a device to their systems. Nor has everyone a smartcard reader. Not everyone is tech savy..

Re:Uh (3, Insightful)

awol (98751) | more than 12 years ago | (#4295836)

It's not just about allowing you to login, but one of the fundamental problems of the "internet" is the proof of identity. As more and more important services become online, it becomes more and more important to be confident that Jo Public is actually a) Jo Public and not Mary Citizen and b) The Jo Public of 23 Main Street Bigtown.

In meatspace, you prove identity by a "collection" of evidence from relatively trusted sources, a bank account, a gas bill and something with a photo. In the on line world being able to go to an online vendor and do a similar thing where you can prove that BANK A, utility co B and Company X all know about a Jo Public of 23 Main Street obviates the need for a "central" repository of identity, which, if you ask me, is a good thing (TM) (ie not having one is a good thing :-)

So in addition to the peoples points about using multiple machines (an excellent point by the way), proof if identity is the killer app INM(NS)HO.

Re:Uh (3, Insightful)

Sunnan (466558) | more than 12 years ago | (#4295898)

With this, you can do a lot of stuff you can't do with just browser remembrance. You're at a travel page booking a flight, and it can book the bus trip for you as well without you having to log in to the bus company.

But I agree that there are trust issues.

The other day, me and my friend Kreiger was thumbing through some dumb "technical" magazines while we were in a waiting room, and I saw the news that some phone company had joined the liberty alliance. "Cool," said I and began talking about how this could make sites easier to use, how it was more trustworthy and less evil than Hailstorm. He was saying kinda the same things you are, and I said "It's good for users".

Just minutes after that, we came upon an article about Intels new DRM-iniative. It was totally slanted! "Intel builds in protection against virii and hackers." What the...? I'm totally against DRM and the slant pissed me off! I began complaining loudly about it. Kreiger just looked at me, and said sarcastically:

"It's good for users."

What an eye opener. Paranoia against corporations is my philosophy from now on.

Hello point.... you missed it. (3, Insightful)

MosesJones (55544) | more than 12 years ago | (#4295946)

This isn't just about browsers, its about mobile phones, PDAs, servers, TVs, Set-top boxes, smart cards etc etc.

And its not just about Web content, its about authorisation systems as a whole.

A browser is just one very very small part of what Liberty could be used for. And while a browser remembers a password, it doesn't know who you are and cannot prove that you are that person.

Version 6.0? (1)

Utopia (149375) | more than 12 years ago | (#4295149)

Was there any other prior releases ?
What is point of jumping directly to 6.0

Re:Version 6.0? (1)

jsergent (139292) | more than 12 years ago | (#4295182)

IPL, the source code release that is linked to, is at version 0.1, not version 6.0. The original posting is not very clear. Note that IPL is not the same thing as Sun ONE Identity Server.

Re:Version 6.0? (2, Informative)

chrisbw (609350) | more than 12 years ago | (#4296135)

SunONE Identity Server 6.0 is the Netscape/iPlanet/SunONE Directory Server (LDAP directory) renamed. It's becoming more than just a directory server, since it becomes an identity and policy management server.


...Yeah? (0)

Anonymous Coward | more than 12 years ago | (#4295177)

Great, so if we ever decide this is a good idea, I guess we know who to look to

yes? (-1, Offtopic)

Anonymous Coward | more than 12 years ago | (#4295191)


Another competitor with better licencing (1)

arberya (176464) | more than 12 years ago | (#4295215)

Recent article on Linuxworld Apache & Plan9 [linuxworld.com] which describes another solution to identity management.

Re:Another competitor with better licencing (0)

Anonymous Coward | more than 12 years ago | (#4295249)

Plan 9 does not have a free software license; its license includes onerous IPR conditions. IPL's license is OSI-approved and the FSF recognizes it as free. (It's the same license that OpenOffice.org uses.)

Same data every time? Bad idea! (2)

Skapare (16644) | more than 12 years ago | (#4295257)

You should not be using the same password for all your sites, even if the authentication mechanism never lets the site server have the actual password. If this one password is exposed by your own accident or something, you've basically given whoever has it access to everything. You might as well hand them your wallet, too.

To track spamming leaks, I also give each place which gets my email address a different one. So there's another piece of information that needs to be different. Not everyone yet has the ability to do this, and not everyone will want to. But a lot of people will unless the spam problem gets solved (unlikely).

Anyway, I see major privacy risks in both Liberty Alliance as well as Passport, particularly in not letting people (easily?) control who gets what information.

Re:Same data every time? Bad idea! (1)

adb (31105) | more than 12 years ago | (#4295289)

On the other hand, when the machine you enter your passwords on is compromised, you only need to change one password...

GOod dAy, siR or mADaM, (0)

Anonymous Coward | more than 12 years ago | (#4295300)

It has come to my attention that joo are teh suxor.

Pls fx k thx bye.

Re:Same data every time? Bad idea! (2, Interesting)

zeugma-amp (139862) | more than 12 years ago | (#4295365)

There are two excellent tools that I use pretty regularly to keep track of passwords on websites and other services.

Password Safe [sourceforge.net] was origionally developed by Bruce Schneier of . It is open source now. [counterpane.com]

Gpasman [linux.org] is another alternative. I use it on my linux boxes.

I've found them invaluable for keeping track of passwords. Password Safe runs quite happily under wine, and has a tool built in to automatically generate excellent (i.e., almost unrememberable) passwords.

The Slashdot Effect: A new form of terrorism. (3, Funny)

Anonymous Coward | more than 12 years ago | (#4295299)

As an assistant member of the security team of a large fortune 500 company, I have discovered a new form of terrorism stemming from the deepest underground of the Internet. A site catering to hackers, communists and anti-Americans called Slashdot.org has created a new type of denial-of-service attack known as 'the Slashdot effect'. This attack has been used against what are seen as the enemies of the 'Open source movement' which include many large American companies such as Microsoft as well as many American media companies such as Time-Warner-AOL. The Slashdot Effect could have a potentially crippling effect on the American computer industry and I feel it is justified to offer my own advice on this problem.

What is the Slashdot Effect?

The Slashdot Effect (also known as Slashdotting) is a new form of denial-of-service attack stemming from the site Slashdot.org. Once they find a 'target' (whether it be a large media company or small personal homepage) the URL of the site is posted on the front page of Slashdot.org. Members of this site attempt as quickly as they can to follow these links and overload the target server. This causes the 'target' website to slow to a grinding halt before going offline. It can sometimes take days or even weeks for the site to recover from such a surge of traffic, and often the servers can be damaged beyond repair (that is, they cannot be fixed with a simple defrag!).

Who is normally the target of the Slashdot Effect and how is it done?

Many American companies have already been attacked by the Slashdot Effect. Targets often include news sites such as the New York Times as well as well as large American companies such as Intel. Sites that criticize the open-source movement are a prime target. For example, lets say an American media website such as the London Times does a review of a little known operating system known as Linux. Linux is an operating system developed by a hacker from communist Finland, which is based on code stolen from an American operating system known as Unix. It was created in cooperation with a communist group known as g.n.u. (Which stands for Glorified Novelty Unix) and is generally unusable by non-hackers. Obviously since it is such an archaic and unstable operating system compared to those made by American companies such as Microsoft it would get a bad review on the London Times. Once a Slashdot member discovers this honest review the URL would be posted on the front page of Slashdot.org. A flood of users would follow the link to the site and bring the server to a grinding halt. Since most of these users are terrorists they would probably have ads disabled using European hacking software. This would mean a potential loss of thousands of dollars worth of ad revenue. To top it off, members of Slashdot.org often plagiarize the articles and post it on illegal mirrors, furthering the loss of ad revenue. Members of Slashdot are rewarded for plagiarizing in the form of 'Karma', a form of hacker currency, on Slashdot.org.

What can I do to avoid the Slashdot Effect and how would I deal with it if it happened?

The easiest way to avoid the Slashdot effect is to refrain from posting anything about any open-source software, especially Linux. Focus your website on fine American companies such as Microsoft. You can also set up your server to reject any links from Slashdot.org, something many people have done. If you think your site is being attacked by the Slashdot Effect, contact the authorities immediately and report this act of terrorism. The penalties against hacker/terrorists are stiff and you can feel confident that the perpetrators of this terror will be punished in the harshest possible means.

by Anonymous Pancake

Re:The Slashdot Effect: A new form of terrorism. (1)

adhisimon (454632) | more than 12 years ago | (#4295411)

stupid moron joke, what damage can be repaired by a defrag??

Re:The Slashdot Effect: A new form of terrorism. (1)

some guy I know (229718) | more than 12 years ago | (#4296015)

Have you ever called Tech Support?

"Uh, so your password was rejected?
Have your tried defragging your hard disk?"

Can I run my own personal identity server? (4, Insightful)

goingware (85213) | more than 12 years ago | (#4295309)

So would this mean I can run the server on my home linux box, and store all my private information only on my own machine, in my own house, so that websites would query the server I am operating when I want to log in?

If so, then I might have some enthusiasm for it, and I imagine lots of others would as well.

If my identity data is to be stored by some commercial service, even a Liberty Alliance member, I'm afraid I have no plans to participate.

I won't use any website that requires me to sign up for Passport. I've done a lot of Windows development the last couple years, and I can well imagine it would be to my benefit to pay for M$' developer program, but my understanding is that it requires Passport to participate, so I won't have any part of it.

Even if I had my own personal server storing my identity, you can bet I will configure my firewall so it will only accept queries from sites I consciously want to have the information.

And would I need a static IP? (2)

goingware (85213) | more than 12 years ago | (#4295314)

One more thing... would I need a static IP to operate the server? I can get a domain name from dynodns.

My net connection is kinda primitive out here in the Maine sticks.

I can pay $70 a month for static IP dedicated dialup, which I think is excessive, but at some point I might have to do that. But I imagine most people who might want to run personal servers wouldn't want to pay to have static IP's.

Re:Can I run my own personal identity server? (2, Informative)

jsergent (139292) | more than 12 years ago | (#4295458)

Liberty version 1 is contingent on trust relationships negotiated out of band between identity provider and service provider.

Liberty version 1 doesn't make provisions for sharing personal information -- it only defines protocols for federation, single sign-on, federation termination, and logout.

See the Liberty architecture overview [projectliberty.org] (in the specs section on the Liberty web site) for more information.

WebISO? (2)

quinto2000 (211211) | more than 12 years ago | (#4295368)

what's wrong with Web Initial Signon (webiso nee` pubcookie)? it certainly works well in a University setting, and it might work well in other contexts.

Its name spells "piracy" to many companies (2)

yerricde (125198) | more than 12 years ago | (#4296391)

what's wrong with Web Initial Signon (webiso nee` pubcookie)?

When I first saw the name "WebISO", I got the impression "download ISOz [i.e. ISO 9660 CD-ROM images that probably infringe a copyright] over the Web". I bet more than one suit will pick up a software copyright infringement connotation [google.com] from that name.

Re:Its name spells "piracy" to many companies (0)

Anonymous Coward | more than 12 years ago | (#4296785)

Really? How many suits know what an ISO is? Much less any other aspect of warez culture.

Let us cooperate (1)

Gizzmonic (412910) | more than 12 years ago | (#4295377)

Because Sun has a lot to share with the Open Source Software community, especially those that travel around in airtight plastic balls.

Magical spell is ai-ai-poo!

Microsoft's worst fear coming to pass (1, Offtopic)

hillct (230132) | more than 12 years ago | (#4295381)

Whatever else you want to say about Bill Gates; he certainly is a visionary. He saw through the hype and while the rest of the world watched a pedjulum swing to favor OSS then commercial software, then OSS once again, he saw how OSS would mature to threaten Microsoft software dominence.

It's great to see that vision coming true as major corporate players are actually finding ways to leverage OSS as a competitive advantage, rather than simply sponsoring projects for PR value.

Bill may see threats around every corner, but he isn't often wrong about this stuff. It's great to see these threats actually manifesting themselves. Life is good!


Re:Microsoft's worst fear coming to pass (0)

Anonymous Coward | more than 12 years ago | (#4295401)

Visionary? Please. By the time his great visions come to pass, if they come to pass..

Well, let's just say I can keep on saying we'll one day be driving around in cars that don't use gasoline. And I'll be just as much of a visionary.

Gates is no visionary. He's a cold-hearted, calculating bastard, which is far more important to a successful business.

Re:Microsoft's worst fear coming to pass-Halloween (0)

Anonymous Coward | more than 12 years ago | (#4295807)

"Whatever else you want to say about Bill Gates; he certainly is a visionary."

"You've got to be willing to read other people's code, then write your own, then have other people review your code.
-- Bill Gates"

"Hardware must be paid for, but software is something to share.
-- Bill Gates"

Seems pretty "visionary" don't it?
Shame he couldn't take his own advise.

Good thing he has people to let him know the train is coming.
http://www.opensource.org/halloween/hallo ween1.php

Keep your passwords in a safe at night (4, Interesting)

goingware (85213) | more than 12 years ago | (#4295384)

I try to have different passwords at each website, but of course that is unmanageable. I have no trust in Microsoft Passport, and while I think Sun is more honorable in what they are doing here, I think such information as my online identity is too important to trust even to them.

I think the best solution is to store one's passwords under hard encryption, and keep the physical storage medium in a safe - a physical metal box with a combination lock - when not in use.

I'm not using it yet, but at some point I'd like to get a Palm or Handspring Visor just so I can use Keyring for PalmOS [sourceforge.net] (formerly GNU Keyring).

An alternative would be to put compact flash readers on all my machines and use a compact flash card.

Finally, there is WiebeTech's [wiebetech.com] FireWire KeyChain [wiebetech.com] , which stores up to 1 GB of data in a tiny package convienent to hold your metal keys and keep in your pocket.

The advantage of the PalmOS keychain is that it requires no software or hardware support on the computers it is used with, and it can be quickly moved from computer to computer. The advantage of compact flash and WiebeTech's product is that software support can pop the password onto the clipboard for you for convenient pasting into your browser.

Re:Keep your passwords in a safe at night (1)

WWWWolf (2428) | more than 12 years ago | (#4296858)

I'm not using it yet, but at some point I'd like to get a Palm or Handspring Visor just so I can use Keyring for PalmOS
...and I'm already using it, and I can say that while it's not as "convinient" as Passport or something, it's convinient enough. Highly recommended for all Palm users!

Formerly, I used gpasman, but since I used multiple computers and OSes, it was not fun. Then, I found keyring, and this is a perfect example of why I like my Palm =)

how come cowboy neal's posting (0)

keshto (553762) | more than 12 years ago | (#4295512)

quick...somebody think of a witty poll

Download 404 (0)

Anonymous Coward | more than 12 years ago | (#4295709)

The download link gives 404, you guys /.ted it again!

and under the irony category... (1)

painehope (580569) | more than 12 years ago | (#4296412)

/. wins first place. for running a microsoft visual studio .net ad w/ this story

seriously, this actually has a chance, look at the list of members/sponsors at : their website [projectliberty.org]

and the concept of a contiguous online identity is coming anyways, so someone has to offer an alternative to the crap microsoft has been plugging . i'm really looking forward to offering my family members who are just in love w/ what ms already offers something else, running on a secure(r) platform

Misconceptions (4, Insightful)

finkployd (12902) | more than 12 years ago | (#4296627)

There seems to be alot of misconceptions about Liberty. As I understand it, the framework allows you to "assert" your identity to a remote location by a trusted third party. Perhaps your trusted third party is your bank, or your University, or your ISP. You authenticate with them, then a packet of data asserting who you are is digitally signed by this trusted third party and sent to where ever. If the remote location trusts the third party to assert identities, then you are in.

This does not seem to be about having the same password on every site, or even having ANY password on a site. It is federated authentication (and possibly authorization, but I don't know how they would do that, possibly with SAML assertions).

Load More Comments
Slashdot Login

Need an Account?

Forgot your password?