Follow

The needs a workable non server based single login. Both and google gain advantage from there dominant closed tecnolagy.

grc.com/sqrl/sqrl.htm it's a cross over mainsteam project.

What other options are the currently to acheve this, I need to start to push something soon. Would be good to have a clear understaning first.

Would think this issue would be core to left agenders and would help to create "bridgeing" between a horizontal grouping.

@bob @aral what do you think on this subject and project?

Would this work pure non server based crossover mainstream login?

@Hamishcampbell This sounds similar to Magic Auth in Hubzilla or OpenWebAuth in zot6. The security of this particular scheme would depend on the authentication app and where/how the private key was stored on tge system. If the user can tap on an icon to login then an adversary could also create a bot to send a click signal, so whether this would work as a secure mechanism depends on specifics not described.

Getting the creators of web or p2p apps to all adopt a particular login system is also a tough problem, but it's a worthwhile problem to try to solve after a couple of decades of people claiming that passwords are dead and then proposing flaky and over-complicated alternatives (like yubikeys) or things which aren't secure (like biometrics) but feel like they might be.

@bob
@Hamishcampbell
I like WebAuthN. To create an account, you upload a publickey of a pair created uniquely for that provider. To log in, the service sends you a thing to sign

@bob

@Hamishcampbell
Yep, we need to push something... I like this one as its crossover mainstream ie. Its outside the tech/social ghettos that actavists/geeks are stuck in.

As you say trusting your device is not secure, but nothing is, can we get a workable compromise. This project is #4opens and could get us across the open/closed devide thus push the open side back into being relevant.

Sign in to participate in the conversation
Campaign

Founded on #4opens and moderated by an ethical code of conduct. Its a safe space for Campaigning and NGO groups to access their members via #openweb projects.

"We can't engage as communities, unless we have money. I can't even express how angry this makes me."
- an activist group using Facebook. People and organisations who feel this way are our initial targets.

We are launching two new Mastodon instances for activists and campaigners to aid communication of grassroot groups; putting social media back in our hands by providing a free, unfettered home for campaigners, NGO’s and activists to communicate among their peers and beyond.

This project is a way out of the restricted, algorithmic, for-profit mediation and commercialisation of communication we increasingly experience. If you do not pay to "boost" each post, a Facebook page will only reach 3-6% of members. This soon becomes an expensive drain on limited NGO and activist budgets.
Activists and campaigners alike are ready to shift their outreach away from the corporate social networks paid-per-view “walled gardens”.

Mastodon is the worlds largest free open source decentralised microblogging network; it’s thousands of unique, interconnected communities, filled with different people, interests, languages, and needs.
You’re free to join any community you like, or better yet, host your own, on your own terms. It remains possible for members of each to instance to interact with others.
There is no monopoly by a single commercial company, no ads, and no tracking.

We aim to help activism/campaigning groups to make this step now.

https://campaign.openworlds.info
https://activism.openworlds.info


A note on Security and Privacy - these take a somewhat different shape within the #openweb. Have a read about our thoughts on the matter.

How are OMN projects run?