Re: [MLUG] OpenID

Email address obfuscation in effect -- please click here to turn it off.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: MLUG Members <EMAIL:PROTECTED>
Subject: Re: [MLUG] OpenID
From: Mike Miller <EMAIL:PROTECTED>
Date: Tue, 4 Dec 2007 00:28:55 -0600 (CST)
Delivery-date: Tue, 04 Dec 2007 00:29:16 -0600
Envelope-to: EMAIL:PROTECTED
In-reply-to: <EMAIL:PROTECTED>
References: <EMAIL:PROTECTED> <EMAIL:PROTECTED> <EMAIL:PROTECTED> <EMAIL:PROTECTED>
Reply-to: MLUG Members <EMAIL:PROTECTED>
Sender: EMAIL:PROTECTED

On Mon, 3 Dec 2007, ryan woodsmall wrote:

If you don't have all the keys to your own home, you never know who might come in. Even if someone just peaks in, your security is still compromised. Now imagine you have 100 houses, and they all use the same key. One slip and you're screwed.

Along the same lines - you have to trust the OpenID server company and you have to be sure they don't get hacked. It would be possible for the owner of the server to know how to access every account of every user on the system. Also, a DoS attack on the OpenID server would create mayhem.

Thanks for all the info. The more I think about OpenID, the more I wonder why a serious professional developing a web interface for secure data on a multimillion dollar contract would recommend it.

Mike

_______________________________________________
members mailing list
EMAIL:PROTECTED
http://mlug.missouri.edu/mailman/listinfo/members

References:
- [MLUG] OpenID
  - From: Mike Miller <EMAIL:PROTECTED>
- Re: [MLUG] OpenID
  - From: ryan woodsmall <EMAIL:PROTECTED>
- Re: [MLUG] OpenID
  - From: Mike Miller <EMAIL:PROTECTED>
- Re: [MLUG] OpenID
  - From: ryan woodsmall <EMAIL:PROTECTED>

Prev by Date: [MLUG] MPAA University toolkit
Next by Date: RE: [MLUG] MPAA University toolkit
Previous by thread: Re: [MLUG] OpenID
Next by thread: RE: [MLUG] OpenID
Index(es):
- Date
- Thread