December 19, 2008 at 10:28Primitive phishing protection
Phishing - creating an exact copy of another site in order to force the user to enter their password or other data.
Here is a typical example of phishing:
In the link text - vkontakte.ru, in href links - vk0ntatke.ru, phishing site.
So why not make simple phishing protection?
If the domain in the link text and the href links are different, then give the user a big red warning explaining what phishing is.
This protection can be embedded either in web-based email services and programs, or in the browser itself (just an addition to Firefox, of course, is not an option - 99% of people will not install it).
At one time, phishing sites used a loophole with Cyrillic letters in the domain name (paypal.com with Cyrillic "a") - then they covered it, they began to display a warning. Also, this loophole must be closed.
After all, there are people from Yandex, take note.
Here is a typical example of phishing:
In the link text - vkontakte.ru, in href links - vk0ntatke.ru, phishing site.
So why not make simple phishing protection?
If the domain in the link text and the href links are different, then give the user a big red warning explaining what phishing is.
This protection can be embedded either in web-based email services and programs, or in the browser itself (just an addition to Firefox, of course, is not an option - 99% of people will not install it).
At one time, phishing sites used a loophole with Cyrillic letters in the domain name (paypal.com with Cyrillic "a") - then they covered it, they began to display a warning. Also, this loophole must be closed.
After all, there are people from Yandex, take note.