| |||||||||||||
|
| |||||||||||||
authenticating with XMPP ID (jabber address)authenticating with XMPP ID (jabber address)Posted May 28, 2008 16:57 UTC (Wed) by martinfick (subscriber, #4455)In reply to: authenticating with XMPP ID (jabber address) by rfunk Parent article: The problem(s) with OpenID
I was not referring to the security mechanism of using email for authentication, your comparison there is correct email is similar. But I was talking about the HA part for which email authentication is not equivalent! If you temporarily lose access to your email you are still able to login to your accounts without it, you simply have lost the ability to "reset" your accounts. With openid if you temporarily lose access to your openid server, you are SOL. This really is different.
(Log in to post comments)
authenticating with XMPP ID (jabber address) Posted May 28, 2008 18:32 UTC (Wed) by tzafrir (subscriber, #11501) [Link] Many people today have a single point of failure: the local passwords list file.
authenticating with XMPP ID (jabber address) Posted May 28, 2008 19:03 UTC (Wed) by martinfick (subscriber, #4455) [Link] These people still have at their disposal simple cheap HA solutions to this if they choose. 1) memory 2) cp passwdfile passwdfile.bak 3) + email passwdfile.bak file to offsite email account 4) + encrypt passwdfile.bak before emailing offsite 5) cp passwdfile to USBstick/passwdfile.bak ... the list goes on. While not everyone chooses to do these, at least they are reasonably available to them.
|
|
||||||||||||