[Full-disclosure] OpenID. The future of authentication on the web?

[Valdis.Kletnieks at vt.edu]

On Mon, 24 Mar 2008 09:13:38 -0000, "Petko D. Petkov" said:

> Not always. I think complexity is the enemy of security. The simpler
> the system is the less chance to screw up, the more secure it is. It
> is much easier to secure a single port then a class B network, don't
> you think?

Not always - there's a *lot* of /16's out there that the answer is simply
"airgap it and be done".  On the other hand, trying to actually secure the
traffic that wanders by on port 80 is a bitch, given all the XSS bugs and bugs
in crappy PHP applications and so on...
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080324/b34a31b8/attachment.bin