[OpenID] New OpenID Customer Research Activity
SitG Admin
sysadmin at shadowsinthegarden.com
Wed Sep 3 15:25:21 UTC 2008
>I worry. The service asks me to reveal my hotmail password (and username).
Very bad! http://adactio.com/journal/1357/
This would be misleading, too, associated with OpenID; the Digital
Domain article in the New York Times last month showed up on the
openid.net news page, described as highlighting a few common
misconceptions. I read the article and noticed a cringeworthy error
not mentioned in the openid.net entry:
"OpenID [...] ignores the security vulnerability inherent in the
process of typing a password into someone else's web site."
But maybe this isn't a *common* misconception. Let's try to keep it
from becoming one?
-Shade
More information about the general
mailing list