[OpenID] Trust + Security @ OpenID

Eddy Nigg (StartCom Ltd.) eddy_nigg at startcom.org
Fri Jul 20 00:56:26 UTC 2007


John Panzer wrote:
>
> If you use https throughout, the DNS attack will fail because 
> https://foo.blogspot.com can't present a valid certificate for 
> foo.blogspot.com.
Correct!

-- 
Regards
 
Signer:      Eddy Nigg, StartCom Ltd.
Jabber:      startcom at startcom.org
Phone:       +1.213.341.0390
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20070720/5e43bfad/attachment-0002.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 7282 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20070720/5e43bfad/attachment-0002.bin>


More information about the general mailing list