On 10/13/06, Drummond Reed <drummond.reed at cordance.net> wrote: > >So whether it's in the spec formally or not, I don't really care. But the > >spec MUST contain details on the precautions a RP should take. > > Yup.(Got that, editors?) http://openid.net/specs/openid-authentication-2_0-10.html#anchor38 Josh