[OpenID] OpenID and phishing (was Announcing OpenID Authentication 2.0 - Implementor's Draft 11)
ydnar
ydnar at shaderlab.com
Fri Jan 19 21:59:57 UTC 2007
Interesting point.
If Adobe supported OpenID in Flash, then sites could just use a Flash
OpenID login in any browser. It could do things (pop up an OpenID-
branded authentication dialog box, for instance) that a normal web
page or SWF file could not.
Randy
On Jan 19, 2007, at 1:05 PM, Marcin Jagodziński wrote:
> Flash plugin has above 95% market penetration (I know it has versions
> for all browsers), so plug-in can be a solution. And anti-phishing
> plug-in can be much easier to develop. It should be distributed by
> every OP and made as multiplatform as possible,
>
> There's of course a problem with "plugin phishing"...
>
> Marcin
> http://openid.pl/
>
> 2007/1/19, Jonathan Daugherty <cygnus at janrain.com>:
>> # OTOH, I think this religious attitude that says browser plugins are
>> # to be avoided at all costs is wrong-headed.
>>
>> The attitude is the result of many of us admitting that firefox-
>> using,
>> plugin-using users are a minority within a minority and that the
>> "just
>> use a plug-in!" push ignores that fact.
>>
>> --
>> Jonathan Daugherty
>> JanRain, Inc.
>> irc.freenode.net: cygnus in #openid
>> cygnus.myopenid.com
>> _______________________________________________
>> general mailing list
>> general at openid.net
>> http://openid.net/mailman/listinfo/general
>>
> _______________________________________________
> general mailing list
> general at openid.net
> http://openid.net/mailman/listinfo/general
More information about the general
mailing list