@HerraBRE

This is noble. I'm curious how history and resolution of identities (from identity @ domain to resolving from a domain alone) would work.

Is it something that the #IndieWeb can play a role in? Having people own a domain, following others and taking ownership + reign that way?

@cwebber @fsfe

@HerraBRE @fsfe It's a good idea, and if it succeeded it would be of much help.

Though! I think DNS in general is a poor way to handle naming today and it would be good to move past it. But so much infrastructure is invested in it that that's not exactly a trivial proposal.

@cwebber Perfect is the enemy of good, right?

DNS is full of warts, but it's what we have today.

Giving people more autonomy within the systems we have today motivates me; I'm tired of waiting for the flawless replacements from the future.

But I'm not sure how to get this particular idea off the ground.

@HerraBRE Sure! DNS and SSL certificate authorities are the centralized systems that plague our decentralized systems and make them not very decentralized after all, but given that it's difficult to move people off them, providing improved spaces within them is still good. SSL CAs are an awful design, but at least Let's Encrypt has reduced the awfulness level a lot, and that's nothing to sneeze at. Doing so for DNS likewise could be very good.

@cwebber
This conversation is giving me vague OpenID flashbacks. Does anyone even use that anymore?
@HerraBRE

@frankiesaxx @cwebber I loved the ideals behind OpenID! Today all that is left is "sign in with Facebook/Titter/Google".

AFAIK, nobody bothers to support anything else.

@HerraBRE
Me too. I even had it!
@cwebber

@HerraBRE
You know what would be neat? An implementation that lets you have a global identifier that you can point to the server of your choice *and* syncing so you can switch to a different server without loss of account data and history.
@cwebber

@cwebber @HerraBRE Agreed. Too bad Namecoin kind of flopped. It would have made a great DNS replacement, especially on Tor / I2P.

@profoundlynerdy @HerraBRE No need for namecoin... a petnames system is better (but can include a namecoin-like system as an equal participant)

@cwebber @HerraBRE So, you think Namecoin itself is DOA as a means of name resolution?

@profoundlynerdy @HerraBRE I think Namecoin is really too much like DNS to be the *root* naming system. However that doesn't mean Namecoin, something Namecoin-like, or even DNS are entities that should not exist... to the contrary, we will always want naming hubs, but in a petnames system dns and namecoin are equal participants among many.

@m0n5t3r @HerraBRE @cwebber I had the same experience.

@cwebber @HerraBRE @fsfe unlike WINS and NetBIOS.

@gme What encryption keys?

@HerraBRE the encryption keys that protect the data while its at rest. i'm pretty sure hubzilla has that not sure about mastodon but wouldn't be surprised. @deaduperhero do you know?

@gme Doesn't matter, if you're moving the provider has to decrypt it and give you a copy of your data that you can work with.

Unless they refuse to give you your data, in which case you GDPR their assets. ;-)

@HerraBRE you're assuming the provider is in europe. i'm in the US and toot.zone is in Canada. I'm not complying with GDPR that I know of. Actually I haven't researched GDPR since I have no European presence.

@gme It's a red herring either way.

If your instance refuses to give you your data you're screwed (you may have legal recourse, maybe not).

If they cooperate, whether they store it encrypted or not is irrelevant, they just decrypt and give you data you can work with.

@HerraBRE We have a phrase here in the States that's very popular: "You can't squeeze blood out of a turnip." 😀

https://www.usingenglish.com/reference/idioms/squeeze+blood+out+of+a+turnip.html

@HerraBRE @Gargron are you doing any type of encryption of user data while its at rest? is there anything that would prevent an account from dynamically moving to a new hostname if a site goes down (transparently for the user)?

@ln4711 The goal here in part is to allow people to make use of shared infrastructure, without losing control over their identity.

So the target audience is largely non-technical.

Geeks can, and do, already do all of this.

@KrzysiekJ I have proposed exactly that to the Mastodon team on their account migration issue.

That was about a year ago, I don't think the idea got much love.

It might get more traction if it were easier (less geeky) for users to obtain their own domains for this purpose.

@daveross Yes, there have been a few attempts at this. I'm vaguely of the opinion that we already have DNS, and although it's flawed it's not going away any time soon...

DNS is already the identity layer of the web. E-mail, XMPP, the web, and the Fediverse - all rely on it.

We could improve things a lot without inventing new protocols, it's low hanging fruit we should pick.

@tethre You're right, the technology largely already exists. The NGO might not do much tech at all, maybe it would partner with existing providers and just explain and advocate.

But trying to get normal humans to understand that a domain (or subdomain) is a way to own their identity, and then getting service providers and software devs to respect that is still a big job that needs doing.

@clacke @cwebber What it buys you is that it can work today, with the software we are already using.

@clacke @cwebber but not all of them at once. The protocol is unchanged.

@clacke @cwebber Exactly!

@clacke @cwebber There is a chicken and egg problem here; supporting migration isn't considered important because migration is hard and the because the identity isn't portable anyway.

Making the identity part portable might help break that cycle.

Of course, there are also politics. People will sugar-coat it with talk about community and moderation, but the fact is a lot of people like the fact that user's cannot easily move from one instance to another.

That's a feature, if you like power.

@clacke @cwebber I disagree.

I don't see why moving the data is a prerequisite for moving the identity. Moving the identity would allow me to change instances and all my followers would still see me in the new place.

They might not see old data, but that's in many cases secondary.

@HerraBRE @clacke

> supporting migration isn't considered important because migration is hard and the because the identity isn't portable anyway.

Who said migration wasn't important? Is anyone claiming that?

Migration tools are some of the most commonly written tools written for the client-server APIs of fediverse servers..

@cwebber @clacke Hmm, here's today's take from a GNU social developer: https://social.umeahackerspace.se/notice/1872997

The Mastodon issue has been open for a year and a half. It's marked as high priority, but... oh well. I'm impatient. https://github.com/tootsuite/mastodon/issues/177

I'm happy to see a comment there that they now consider this the highest priority issue. The issue was open for a full year before they made that choice, but I shouldn't be looking the gift horse in the mouth, should I?

@HerraBRE @cwebber @clacke i am so confused how do you take a valuable feature and dismiss it as "individualistic" like all of my what.

@zash @clacke @HerraBRE Hubzilla has a nomadic identity design, though ultimately it boils down to your public key fingerprint being your canonical identity.

@kaniini @clacke @cwebber That's fantastic!

Is pleroma single-user or multi?

If multi, do you have an opinion on my suggestion that users are be supported in using (and actively encouraged to use) their own (sub)domain names?

@kaniini @cwebber @clacke My DNS idea is a proposal to facilitate portable identity. That is the point, so people can be known by an identifier that can point to various servers.

How do you define portable identity?

@kaniini @clacke @cwebber Oh. Wow, that's complicated!

How does that handle adversarial admins or instance-death?

I mean, one of the reasons I want to move might be that I just broke up with the admin and we're not on speaking terms. Or you know, any number of other messy human situations. How does this handle witches.town going permanently offline?

Is there a doc somewhere I can read instead of bugging you here?