23 Apr
2020
23 Apr
'20
11:48 p.m.
On Thu, Apr 23, 2020 at 07:47:58PM -0700, Michael Thomas wrote:
On 4/23/20 7:35 PM, Matt Palmer wrote:
While I do think webauthn is a neat idea, and solves at least one very real problem (credential theft via phishing), you do an absolutely terrible job of making that case.
see RFC 4876, it is not about phishing. not even a little bit. Never has been.
Whilst I do *absolutely* agree with you that "A Configuration Profile Schema for Lightweight Directory Access Protocol (LDAP)-Based Agents" is "not about phishing, not even a little bit", I'm not entirely sure how it advances your argument. - Matt