Please do not reply directly to this email. All additional comments should be made in the comments box of this bug. https://bugzilla.redhat.com/show_bug.cgi?id=508351 --- Comment #36 from Andrea Musuruane <musuruan@xxxxxxxxx> 2010-04-09 17:56:38 EDT --- (In reply to comment #33) > Please do not disable OAuth, until OSM can get some SSL security going your > OSM password is sent in the clear every time you upload some changes. With > OAuth your password is only sent in the clear once when the OAuth tokens are > set up, thus reducing the risk that your OSM password is compromised. The password is still sent in clear text as you noticed, even if only once per session. I believe there is little value added until a secure channel (e.g. https) will be used. (In reply to comment #34) > Created an attachment (id=405625) --> (https://bugzilla.redhat.com/attachment.cgi?id=405625) [details] > oauth build xml example I tried this and it seems mockito is not yet available in Fedora. Anyway it seems that JOSM is using v1.1 while latest upstream is v1.2.1.1. Are these two API compatible? AFAIK Fedora should package the latest version. -- Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug. _______________________________________________ package-review mailing list package-review@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/package-review