[OpenID] authentication spoofing security challenge
Recordon, David
drecordon at verisign.com
Fri Dec 22 20:06:37 UTC 2006
Well has anyone checked to see if his Vox password is "password" yet? :P
--David
-----Original Message-----
From: general-bounces at openid.net [mailto:general-bounces at openid.net] On
Behalf Of David Nicol
Sent: Friday, December 22, 2006 2:24 PM
To: openid general discussion
Subject: [OpenID] authentication spoofing security challenge
The discusssion in
http://digg.com/programming/OpenID_is_growing_in_momentum
includes the following challenge:
> ok.. not to be a complete egomaniac here, really, but my openid is
> gavinengel.com (points to > Vox id provider, and no I did not have to
use any extra code like people keep referring to) I'm very interested if
anyone can post with my id on any livejournal page. I seriously doubt
you > could, I have as much faith in this authentication as I do in the
best of them.
Have at it, O vulnerability demonstrators!
_______________________________________________
general mailing list
general at openid.net
http://openid.net/mailman/listinfo/general
More information about the general
mailing list