[sldev] [Upcoming Changes] Website Viewer Authentication

Anders Arnholm Anders at Arnholm.se
Sat Sep 29 02:06:56 PDT 2007

Previous message: [sldev] [Upcoming Changes] Website Viewer Authentication
Next message: [sldev] [Upcoming Changes] Website Viewer Authentication
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 2007-09-28 at 15:10 -0700, Tess Chu wrote:
> Harold,
> 
> The authentications (to go inworld) are essentially one-shot
> capabilities and will be lost as soon as you log in.  If you are
> already authenticated on the website, which uses a cookie to remember
> your session, it is easy to re-connect.

And this definitely show how little security that can be gained... The
security is now openly in a cookie.




-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

Previous message: [sldev] [Upcoming Changes] Website Viewer Authentication
Next message: [sldev] [Upcoming Changes] Website Viewer Authentication
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the SLDev mailing list