Skip to content. | Skip to navigation

Sections

Personal tools

You are here: Home → wikidblog → MyOpenID Security fix

Recent entries: The Express Scripts Bounty admin Nov 14, 2008; Citrix on the need for two-factor authentication admin Nov 12, 2008; PCI expanding to Europe admin Nov 11, 2008; Embedding WiKID two-factor authentication in your Web application admin Nov 06, 2008; 50 Must-Have Open Source Tools for Security admin Oct 30, 2008

Recent comments: Re:Running the WiKID Two-factor authentication server on Ubuntu remix_tj Nov 16, 2008; Re:Embedding WiKID two-factor authentication in your Web application admin Nov 11, 2008; Re:Open source momentum and spending during the recession admin Nov 01, 2008; MTM vulnerable Kris Puri Oct 31, 2008; Re:Running the WiKID Two-factor authentication server on Ubuntu nowen Sep 26, 2008

2007/03/22

MyOpenID Security fix

Josh Hoyt has a preliminary notice about a security fix for MyOpenID. It's limited (at least on MyOpenID) to Safari users, so it's not a big deal. Josh considers it a flaw in the way Safari handles javascript security. But it is clear that OpenID is going through some growing pains as a protocol, which is natural and healthy. I'm impressed with the way the community is handling this vulnerability.

Category(s): Authentication Attacks; Information Security; Open Source

The URL to Trackback this entry is:: http://www.wikidsystems.com/WiKIDBlog/myopenid-security-fix/tbping

Add comment

You can add a comment by filling out the form below. Plain text formatting. Comments and Trackbacks are moderated.

Author (Required)

EMail (Required)

URL

Title (Required)

Comment (Required)

Remember your information on cookie?

Verification Code

This helps us prevent automated spamming.

Captcha Image

Categories: Security and Economics (80); Two Factor Authentication (134); Authentication Attacks (56); Phishing and Fraud (90); Miscellaneous (92); WiKID (71); Information Security (69); Strong Authentication (24); Open Source (35); Mutual Authentication (40); Transaction Authentication (12); Wireless, cellular, mobile devices (6); PCI (25)

Feeds and Bookmarks: Digg this!; Del.ico.us; Google; Yahoo bookmarks; Reddit; Spurl; Simpy

Start using WiKID today

Recent Changes: Token Clients Nov 18, 2008; Re:Running the WiKID Two-factor authentication server on Ubuntu Nov 16, 2008; The Express Scripts Bounty Nov 14, 2008; Download the WiKID Enterprise Server 3.2.5 RPMs Nov 12, 2008; Citrix on the need for two-factor authentication Nov 12, 2008; All recent changes…

Got Questions? Get Answers.