> > http://scobleizer.com/2009/01/01/twitter-warning-your-data-is-being-sold/ > > It's true, OAuth doesn't really solve this problem, but the general public > thinks it does. Having some solution is better than none, and sometimes the > feeling of security is better for marketing apps than no security at all.
Maybe for apps, but not for users. A user that thinks he's secure and is not is far worse off than a user who's insecure and knows he isn't. If this makes people think about who they give credentials to -- OAuth or no -- then the experience will be a painful but useful lesson. -- ------------------------------------ personal: http://www.cameronkaiser.com/ -- Cameron Kaiser * Floodgap Systems * www.floodgap.com * ckai...@floodgap.com -- BOND THEME NOW PLAYING: "The World is Not Enough" --------------------------
