Presumably MyOpenID had fixed that previously, but had chosen not to share it with the community.
Regards, Dmitry =damnian -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED] Sent: Thursday, March 22, 2007 19:46 To: [email protected] Subject: Re: [security] MyOpenID -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 That is true the browser affected was safari but another OpenID server was vulnerable to the same sort of attack across multiple browsers. _______________________________________________ security mailing list [email protected] http://openid.net/mailman/listinfo/security
