I recently had a spirited discussion with someone about authenticating to various websites. I personally take the approach of making an explicit new identity for every service I sign up for — local logins only. I never user a "Social" login like twitter/facebook/google, etc to access a site.
My reasoning is:
For some background, I'm a ten year professional in Web Infrastructure, with Identity and Access Management making up a decent part of what I do. After pretty much being called an irresponsible professional and told that no identity information will leak due to the way OAUTH works, I thought I'd throw the question out to the community to get a feel for how you handle accounts to different websites, as well as the inherent tracking and security concerns thereof.
Bytram noted that we had a discussion on a similar topic a while back: Personal Privacy in a Surveillance World -- How Important is it? - SoylentNews
(Score: 0) by Anonymous Coward on Saturday August 08 2015, @03:18PM
My ICQ was permanently logged in. At a party a bitch (yes, a female geek with serious negativity and drug issues) turned my monitor on (yes yes this was back when w98 was cool) then proceeded to attempt to piss people off. Asshat.
Never leave your social accounts logged in.