The OAuth Security Advisory 2009.1 was posted on the OAuth site: http://oauth.net/advisories/2009-1
For more information on the attack: http://www.hueniverse.com/hueniverse/2009/04/explaining-the-oauth-session-fixation-attack.html No information has been withheld. The issue is now fully public. EHL --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to oauth@googlegroups.com To unsubscribe from this group, send email to oauth+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/oauth?hl=en -~----------~----~----~----~------~----~------~--~---