Ruari Callow wrote:
Finally an extra advantage of this method is that it helps prevent other types of spoofing, for example when fraudsters substitute ASCII characters (e.g. '0' for 'o').
Couple of small things, the sites might figure out some way to automatically either by tricking the user to book mark it, or some trojan etc to automatically do it (this being the case they have bigger problems) and with the frequantly hit thing you'd have to be careful as to what you count as hits to prevent sites from again tricking the user into a couple of hits to their website, or some javascript to loop pages etc...
--
Best regards, Duane
http://www.cacert.org - Free Security Certificates http://www.nodedb.com - Think globally, network locally http://www.sydneywireless.com - Telecommunications Freedom http://happysnapper.com.au - Sell your photos over the net! http://e164.org - Using Enum.164 to interconnect asterisk servers
"In the long run the pessimist may be proved right,
but the optimist has a better time on the trip."
_______________________________________________
Mozilla-security mailing list
[email protected]
http://mail.mozilla.org/listinfo/mozilla-security
