[OpenID] OpenID and phishing (was Announcing OpenID Authentication 2.0 - Implementor's Draft 11)
ydnar at shaderlab.com
Fri Jan 19 21:59:57 UTC 2007
If Adobe supported OpenID in Flash, then sites could just use a Flash
OpenID login in any browser. It could do things (pop up an OpenID-
branded authentication dialog box, for instance) that a normal web
page or SWF file could not.
On Jan 19, 2007, at 1:05 PM, Marcin Jagodziński wrote:
> Flash plugin has above 95% market penetration (I know it has versions
> for all browsers), so plug-in can be a solution. And anti-phishing
> plug-in can be much easier to develop. It should be distributed by
> every OP and made as multiplatform as possible,
> There's of course a problem with "plugin phishing"...
> 2007/1/19, Jonathan Daugherty <cygnus at janrain.com>:
>> # OTOH, I think this religious attitude that says browser plugins are
>> # to be avoided at all costs is wrong-headed.
>> The attitude is the result of many of us admitting that firefox-
>> plugin-using users are a minority within a minority and that the
>> use a plug-in!" push ignores that fact.
>> Jonathan Daugherty
>> JanRain, Inc.
>> irc.freenode.net: cygnus in #openid
>> general mailing list
>> general at openid.net
> general mailing list
> general at openid.net
More information about the general