Will be cross-posting from Dreamwidth - Input Junkie
Will be cross-posting from Dreamwidth|
DW is also compromising people's security, though, by its dismissive attitude to the security flaw in OpenID whereby if the original DW account is purged and the name is reused, the new owner gets access to the original account's OpenID. LJ have responded to the same issue by temporarily disabling OpenID for reused accounts while they look for a permanent fix; DW says it is also looking for a fix, but has refused to do anything about the problem in the meantime.
That's a problem, though it sounds like it would affect fewer people. How long has the problem been known?
Since early August, IIRC. LJ had already started implementing re-use of old accounts when it was pointed out to them; DW started about two weeks ago, when they already knew of the problem.