[OpenID] Fwd: OpenID Spoofing

Scott Kveton scott at janrain.com
Fri Jan 12 15:49:26 UTC 2007

Hi Dmitry,

> Now that we've established that by "OpenID spoofing" nobody meant anything
> more than plain phishing, I think I found a solution:
> http://blog.phpbb.cc/2007/01/12/external-authentication-and-otp/
> Any comments are welcome (first-timer moderation).

These are great solutions for phishing.  Thanks for sharing them Dmitry!

To save folks a lot of unnecessary reading (and hopefully continue the
discussion here), I can give a brief summary:

External authentication via IM/email/Skype/etc with one-time passwords.

- Scott

More information about the general mailing list