* Johnathan Nightingale: > It's unfortunate that our protection didn't already know about that, > but when you discover such things, it would be helpful if you could > use the "Report Web Forgery" item in the Help menu to let us know > about them.
The "Report Web Forgery" feature has been broken for quite some time. The form does not include the URL of the site to report. If I paste the URL manually and submit what I think is the correct CAPTCHA (some of them are very difficult to read), the service just responds with an emptied form. I take this as an indicator that something has failed. I also noticed that most active phishing sites are not known by the filter. Coverage appears to be extremely poor. I have to dig very deep into my mail folder to find a filtered site among the active ones. _______________________________________________ dev-security mailing list dev-security@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security
