[OpenID] Replacing all browsers isn't as hard as it might seem...

James A. Donald jamesd at echeque.com
Tue Jan 23 09:29:06 UTC 2007


Ka-Ping Yee wrote:
 >> So how about a smaller step that might have a decent
 >> payoff?
 >>     Password entry in chrome.
 >> If we can get users out of the habit of typing their
 >> passwords into arbitrary webpages, that'll be a
 >> serious blow against phishing.

Claus Färber wrote:
 > It does not matter how the password is entered as long
 > as it sent to the website in clear.

Both matter.  Password should not be sent in clear, and
it does matter how it is entered.



More information about the general mailing list