On Wednesday, February 8, 2012 1:23:10 AM UTC+8, Andrey Novoseltsev wrote: > > On Feb 7, 10:00 am, Jason Grout <[email protected]> wrote: > > > > Right now, we don't have a switch to require only OpenID logins, so we'd > > have to do that somehow. > > > > A huge plus of this is that passwords would no longer be transmitted > > insecurely, if I understand things correctly. > > > > Jason > > This would be wonderful, I don't think many users mind that someone > can look at their worksheets, but transmitting passwords insecurely is > very bad as they can be the same as for other accounts including > banking ones. Would it be possible to start new servers with OpenID > authorization out-of-the-box? > > On the other hand, will encrypted authentication and unencrypted work > have the issue of "connecting to an open session"? As outlined here: > > http://lifehacker.com/5672313/sniff-out-user-credentials-at-wi+fi-hotspots-with-firesheep > > > A somewhat related issue: can it be prohibited to see the list of > other users on the sharing screen? My university did not allow me to > create accounts for students automatically with their names as logins, > since nobody should be able to see who else is in the class and I > confessed that they might... >
for our class (with local nb servers) we authenticate students using their university logins via LDAP. (this hack has not made it into the sagenb source yet, but this is doable) It strikes me as odd that this cannot be done in your and other similar cases. (unless you talk about *sagenb.org accounts, not local server nb accounts) Dima > > Thank you! > Andrey -- You received this message because you are subscribed to the Google Groups "sage-edu" group. To view this discussion on the web visit https://groups.google.com/d/msg/sage-edu/-/Xu1mrQTdcmYJ. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/sage-edu?hl=en.
