On Fri, Jul 18, 2008 at 2:37 AM, Per Jessen <[EMAIL PROTECTED]> wrote: > Kevin Waterson wrote: > >> This one time, at band camp, "Alex Chamberlain" >> <[EMAIL PROTECTED]> wrote: >> >>> Has anybody had any success implementing an OpenID server in PHP?? >> >> Sure, I had mine all set up on oceania.net and then the domain got >> stolen. So, all my OpenID info went with it.. not as good an idea as >> it first seems. > > I'm curious, how does a domain "get stolen" ? > > > /Per Jessen, Zürich
I saw a story where a guy had a XSS vuln on his site that allowed a malicious user to inject a backdoor forwarding filter on his gmail account. Then the malicious user used the guys gmail account to transfer his domain.
