[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Accidental and intentional atom:id collisions (was Re: Consensus call on last raft of issues)

To: atom-syntax@xxxxxxx
Subject: Re: Accidental and intentional atom:id collisions (was Re: Consensus call on last raft of issues)
From: Bill de hÓra <bill@xxxxxxxxxx>
Date: Wed, 18 May 2005 18:28:42 +0100
In-reply-to: <>
List-archive: <http://www.imc.org/atom-syntax/mail-archive/>
List-id: <atom-syntax.imc.org>
List-unsubscribe: <mailto:atom-syntax-request@imc.org?body=unsubscribe>
References: <>
Sender: owner-atom-syntax@xxxxxxxxxxxx
User-agent: Mozilla Thunderbird 1.0.2 (Windows/20050317)

Antone Roundy wrote:

This is already bad enough. Now how about if the phishing feed claims that it's atom:id is http://a.com/feeda. Worse still. With the current spec text, an Atom consumer that does a little extra work, somehow figures out that the phishing version of the entry is not the same as the legitimate version, and tells the user that would be violating the spec.

I don't think this (spam, phishing) is solvable without widespread adoption of dsig/pki technology. More snarkily, all the people who complain about these things ought to consider using appropriate technology. We do need to make sure that Atom entries are easily signed tho'.

cheers
Bill

References:
- Re: Accidental and intentional atom:id collisions (was Re: Consensus call on last raft of issues)
  - From: Antone Roundy

Prev by Date: Re: Consensus call on last raft of issues
Next by Date: Re: Consensus call on last raft of issues
Previous by thread: Re: Accidental and intentional atom:id collisions (was Re: Consensus call on last raft of issues)
Next by thread: Re: Consensus call on last raft of issues
Index(es):
- Date
- Thread