On Fri, Jul 18, 2008 at 2:37 AM, Per Jessen <per@xxxxxxxxxxxx> wrote:> Kevin Waterson wrote:>>> This one time, at band camp, "Alex Chamberlain">> <php@xxxxxxxxxxxxxxxxxxxxx> wrote:>>>>> Has anybody had any success implementing an OpenID server in PHP??>>>> Sure, I had mine all set up on oceania.net and then the domain got>> stolen. So, all my OpenID info went with it.. not as good an idea as>> it first seems.>> I'm curious, how does a domain "get stolen" ?>>> /Per Jessen, Zürich I saw a story where a guy had a XSS vuln on his site that allowed amalicious user to inject a backdoor forwarding filter on his gmailaccount. Then the malicious user used the guys gmail account totransfer his domain.
