OpenID homesite authorization spoofed
Johannes Ernst
jernst+openid.net at netmesh.us
Mon Oct 23 03:43:01 UTC 2006
On Oct 22, 2006, at 20:12, Alaric Dailey wrote:
> That there are catastropic holes in the system as it stands.
If you indeed believe so, I guess you owe us a step-by-step
description of what holes you are talking about ;-)
Also, are you referring to holes in the protocol specification (what
exactly?) or in a particular code base by one particular vendor or
project? If the latter, I trust the respective developers will fix
them in due time. Protocol holes would be worse ...
Cheers,
Johannes.
Johannes Ernst
NetMesh Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pastedGraphic.tiff
Type: image/tiff
Size: 1962 bytes
Desc: not available
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20061022/360b24ca/attachment-0002.tiff>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: lid.gif
Type: image/gif
Size: 973 bytes
Desc: not available
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20061022/360b24ca/attachment-0002.gif>
-------------- next part --------------
http://netmesh.info/jernst
More information about the general
mailing list