Daevid Vincent wrote:
-----Original Message-----
From: Al [mailto:[email protected]]
Sent: Monday, February 01, 2010 12:09 PM
To: [email protected]
Subject: [PHP] OpenID
This is a bit off subject, but....
What is your opinion on OpenID?
Failed gimick.
Tried to resurface again about a year ago.
Still seems like failure.
++
Session ID hijacking is bad enough, it gives the malicious user access
to one resource.
OpenID hijacking gives the malicious user access to a ton of resources.
And what does a user do when their OpenID provider disappears?
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
