Re: [security] [OpenID] Trust + Security @ OpenID

Thu, 19 Jul 2007 17:56:49 -0700 

John Panzer wrote:



If you use https throughout, the DNS attack will fail because 
https://foo.blogspot.com can't present a valid certificate for 
foo.blogspot.com.

Correct!

--
Regards

Signer:      Eddy Nigg, StartCom Ltd.
Jabber:      [EMAIL PROTECTED]
Phone:       +1.213.341.0390



Attachment:
smime.p7s

Description: S/MIME Cryptographic Signature


_______________________________________________
security mailing list
[email protected]
http://openid.net/mailman/listinfo/security






















					Reply via email to