[development] OpenId open to phishing attacks.

Derek Wright drupal at dwwright.net
Wed Nov 7 08:23:09 UTC 2007


On Nov 6, 2007, at 10:58 PM, Augustin (Beginner) wrote:

> ...
> Solving the OpenID phishing problem
> http://simonwillison.net/2007/Jan/19/phishing/
>
> I'll look if the later can be implemented for Drupal in a few  
> months from now.

I just read through the original post and all the comments in that  
thread.  What, exactly, are you looking into implementing?  There are  
a wide range of different (conflicting) proposals in that thread,  
none of them clearly "solving" the problem.

-Derek (dww)




More information about the development mailing list