[joomla] RE: $5 securid authentication hack
Rolan Yang
rolan at omnistep.com
Wed Oct 17 11:38:16 EDT 2007
Anthony Ferrara wrote:
> If I saw this on a site, I would laugh, and close the
> browser... I'm not inputing PayPal info into a 3pd
> website... What I am sugesting is creating a SSO
> website, where you order a "Fob", and it has the
> API... So you log in to that site (without a
> password), and it authenticates you against that
> remote SSO server...
> --- "Jonathan M. Slivko" <jonathan at slivko.org> wrote:
>
This hack was not meant to be widely adopted, but instead a cheap proof
of concept (emphasis on "cheap") possibly providing an added level of 2
factor protection for important accounts such as the "master joomla
admin" or for a few close friends. It's essentially leeching the
services off Paypal's securId servers.
~Rolan
More information about the Joomla
mailing list