Thursday, September 14, 2006

Log-In Security Smell at Blogger

I decided to try out the beta of Blogger, to see if I could overcome the daily link post issue.  No luck, but I like the improvements, especially the template layout, which works similar to Google Personalized Homepage, or SharePoint - take your pick.

One thing I did realize, however - I can log in to both this blog and the beta blog with the same username.  The only thing that determines which blog I log in to is the password.  This blog uses my blogger un/pwd, while the beta uses my google un/pwd - I just happen to use the same usernames for both accounts.

Now what would happen if I had also used the same password for both accounts?  I realize they did this for simplicity and continuity, but it smells nonetheless.


Post a Comment

<< Home