[sldev] OpenID & SSL certificates
Argent Stonecutter
secret.argent at gmail.com
Mon Oct 1 19:45:54 PDT 2007
On 01-Oct-2007, at 20:17, Ryan McDougall wrote:
> Thats exactly why my second solution, which no one seems to be
> commenting on, is all about taking the burden off the user with all
> this
> OpenID, custom URL handlers, SSL certs rot -- where the complexity and
> thus chance of failure is high, and go to certifying the _Identity_ of
> the binary provider (so LL can sue, as you state).
You're not making it that much harder for a crook to hide... because
it's pretty hard for the kind of crook you're talking about to begin
with... and doing nothing to deal with scenarios that are actually
likely to happen. And at the same time you're requiring me, if I want
to download the source and build my own copy of the SL client to
connect to SL, to go through certification rigamarole every time I do
a test run?
More information about the SLDev
mailing list