- From: Sheth Raxit <raxitsheth2000@yahoo.co.in>
- Date: Fri, 9 Mar 2007 08:04:24 -0800 (PST)
- To: public-usable-authentication@w3.org
Dear Web Security Context WG, In my last post, I found few (important,technical) errors (i am correcting here), last Post : http://lists.w3.org/Archives/Public/public-usable-authentication/2007Mar/0000.html Correction 1 : > 1. one can create html page (and html e-mail also) > in > which when content is rendered enduser show the > link > to http://www.example1.com and when one will click > the > link, it will open > http://www.hackerpage.example1.com it should be http://www.example1.hackerpage.com instead of http://www.hackerpage.example1.com (change in Domain name) Correction 2 : > > Is it possible to have Browsers (and related > standards) be made more Intelligent like when > html/xhtml/gui content is having "Link to show" > (www.actualbank.com) is different then "Link to > open" > (www.hackerpage.actualbank.com) it will Alert the It should be www.actualbank.hackerpage.com Is it possible to have Browser/Tool/User Agents be made more Intelligent like when html/xhtml/ content is having "Link to show" (www.actual.com) is different then "Link to open" (www.actual.dummy.com) it will Alert the Enduser (or atleast display both links) ? If yes, Is this approach **really reduce** the phishing/Fake E-mail/Embedded html attack ? (**without reducing usability for normal computer users**) Regreting for the errors, Waiting for feedback and suggestoins, Thanks, --Raxit Sheth ____________________________________________________________________________________ 8:00? 8:25? 8:40? Find a flick in no time with the Yahoo! Search movie showtime shortcut. http://tools.search.yahoo.com/shortcuts/#news
Received on Friday, 9 March 2007 16:06:21 UTC