Network Security: Detailed info on Re: Firefox extensions for fighting phishing

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Web-App-Sec

[Top] [All Lists]

Re: Firefox extensions for fighting phishing

from [Saqib Ali] Network Security

[Permanent Link]

Subject:	Re: Firefox extensions for fighting phishing
Date:	Tue, 19 Jul 2005 11:14:04 -0700

The Netcraft toolbar is  is next to useless.  The last time I checked it
could be fooled by a frameset.  So if someone could hack a frameset onto the
host server, i.e.,
http://www.somewhere.net/only_fools_would_click_on_this_link/login.html


If you can hack into a host server, and change their login page to
include a frameset, the webserver owner has a much bigger problem :)
If you can hack into a server, you can do much more damage compared to
what you can do with a phishing site.. :)

Having said that, the purpose of the Anti-phishing toolbars is NOT to
authenticate the content, but to authenticate the URL that you are
clicking on. And Netcraft Toolbar does a mighty fine job of just that.

-- 
In Peace,
Saqib Ali
http://www.xml-dev.com/blog/

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Firefox extensions for fighting phishing, Mamading Ceesay Re: Firefox extensions for fighting phishing, Saqib Ali Message not available Re: Firefox extensions for fighting phishing, Saqib Ali Re: Firefox extensions for fighting phishing, Sean P. DeMerchant Re: Firefox extensions for fighting phishing, Saqib Ali <= Message not available Re: Firefox extensions for fighting phishing, Saqib Ali

Previous by Date:	Spot the bug, Mark Curphey
Next by Date:	Re: Https sniffer, Hugo Fortier
Previous by Thread:	Re: Firefox extensions for fighting phishing, Sean P. DeMerchant
Next by Thread:	Re: Firefox extensions for fighting phishing, Saqib Ali
Indexes:	[Date] [Thread] [Top] [All Lists]