[OpenID] About securing my OpenID
Evan Prodromou
evan at prodromou.name
Tue Jul 3 13:23:19 UTC 2007
On Tue, 2007-03-07 at 10:59 +0300, Mostafa wrote:
> Hi, i sent long time ago asking about, what if i *trusted *some website
> *forever *, can any one, that don't have my openid login info , to use
> my OpenID in that website without my permission?
It depends on what you mean by "use" your OpenID. If you're asking
whether they can, for example, print your OpenID URL on a user page (see
my user page at Wikitravel: http://wikitravel.org/en/User:Evan - my
OpenID is printed right under the title) -- the answer is yes, they can.
But if you mean, can anyone use it to act as you on the Web site (post
comments as if you had posted them, for example), the answer is no. They
also can't use your OpenID to log into other Web sites.
-Evan
--
Evan Prodromou - evan at prodromou.name - http://evan.prodromou.name/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 4422 bytes
Desc: not available
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20070703/791f04e7/attachment-0002.bin>
More information about the general
mailing list