[OpenID] OpenID Discovery for Email like identifiers - Draft 0.1
SitG Admin
sysadmin at shadowsinthegarden.com
Thu Jun 4 23:49:21 UTC 2009
>I log in with <mailto:andrew at myemail.com>andrew at myemail.com, the RP
>sends an email to that address with a special subject line.
It would need to be a sufficiently random subject line, otherwise,
I'd take advantage of network lag to discover your XRD file myself,
and then spoof the response back immediately after requesting a
verification from the RP.
-Shade
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20090604/26208924/attachment.htm>
More information about the general
mailing list