http://digitalconsumption.com/Charles Darke's Personal Websiteen-gbTue, 23 Jan 2007 22:31:28 +0000Tue, 23 Jan 2007 22:31:28 +0000Copyright 2005-2006, Digital Consumption.600http://digitalconsumption.com/forum/A-simple-solution-to-OpenID-phishing-attacksI'm currently testing a simple fix to prevent phishing attacks on OpenID from malicious relying parties.<br><br>The idea is simple: I have a static IP address and so instead of asking for a password, I've modified an IdP to authorise by checking my IP instead of requesting a password. This has the obvious disadvantages of requiring a static IP and limiting you to posting from home. [Continued: <a href="http://digitalconsumption.com/forum/A-simple-solution-to-OpenID-phishing-attacks">A simple solution to OpenID phishing attacks</a>]nospam@example.com (Charles Darke)Tue, 23 Jan 2007 22:31:28 +0000http://digitalconsumption.com/forum/A-simple-solution-to-OpenID-phishing-attacksphpcodeopenidsecurityhttp://digitalconsumption.com/forum/Anonymous-OpenID-server-now-availableAnybody wanting to bypass OpenID by using a temporary OpenID can now do so using an anonymous OpenID provider. [Continued: <a href="http://digitalconsumption.com/forum/Anonymous-OpenID-server-now-available">Anonymous OpenID server now available</a>]nospam@example.com (Charles Darke)Mon, 22 Jan 2007 13:39:57 +0000http://digitalconsumption.com/forum/Anonymous-OpenID-server-now-availableopenidprivacy