Gervase Markham wrote:
Ian G wrote:
Last week's news was a big shift in the phishing scene.
http://www.financialcryptography.com/mt/archives/000361.html
Let's wait and see what they are planning to do first :-)
Oh, well, I wouldn't do that. I'd experiment with yellow bars,
domain names, CA names, logos, petnames, and anything
else. It would be nice if whatever happens mid-year, Firefox
is out there with some alternates.
Consider it a security war. Firefox is about to enter into battle
with IE on the security front. Best to turn up on the battle
field with some weaponry.
(I suppose you might be thinking that the 'big shift' is what
they add into the browser. No, that ain't it. The big shift is
that this is the first time anywhere a browser manufacturer
has acknowledged that phishing is a browser problem. You
and I know it, and most people on this group know it, but as
a matter of fact, outside this very group and some other
select places, this is totally unknown. To the rest of the
world, phishing is misunderstood. C.f., any set of 10 articles
on phishing won't mention the browser, and any set of 10
'solutions' being sold right now ... will not mention the
browser.)
iang
--
News and views on what matters in finance+crypto:
http://financialcryptography.com/
_______________________________________________
Mozilla-security mailing list
[email protected]
http://mail.mozilla.org/listinfo/mozilla-security
