[OpenID] OpenID and WordPress

Granqvist, Hans hgranqvist at verisign.com
Thu Jan 11 17:14:03 UTC 2007


Has anyone checked that code for SQL injection vulnerabilities?

(For example, line 197 in openid_module looks scary, but maybe 
I'm missing something.)

-Hans

> -----Original Message-----
> From: general-bounces at openid.net 
> [mailto:general-bounces at openid.net] On Behalf Of Dmitry Shechtman
> Sent: Thursday, January 11, 2007 1:33 AM
> To: 'Chris Messina'; 'Trei Brundrett'
> Cc: general at openid.net
> Subject: Re: [OpenID] OpenID and WordPress
> 
> > I've been banging on Matt for awhile and I know that his 
> reservations 
> > concern the largess of the libraries and his desire to have 
> a clean, 
> > efficient and small codebase in the libraries to manage.
> 
> I just had a look at the Drupal plugin developed by Bryght:
> 
> https://svn.bryght.com/dev/browser/openid/drupal-4.7
> 
> It seems that the Drupal guys had exactly the same 
> reservations, since this one doesn't rely on JanRain's 
> library. I didn't test it, but I found it to be just that ("a 
> clean, efficient and small codebase").
> 
> Why not reuse it?
> 
> 
> Regards,
> Dmitry
> =damnian
> 
> _______________________________________________
> general mailing list
> general at openid.net
> http://openid.net/mailman/listinfo/general
> 



More information about the general mailing list