W3C home > Mailing lists > Public > whatwg@whatwg.org > June 2004

[whatwg] Menubars and phishing

From: Dylan Schiemann <list4@dylanmail.com>
Date: Mon, 14 Jun 2004 10:11:30 -0700
Message-ID: <40CDDC42.5070208@dylanmail.com>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Matthew Thomas wrote:
| On 14 Jun, 2004, at 10:26 AM, Ian Hickson wrote:
|> On Thu, 10 Jun 2004, Dylan Schiemann wrote:
|>> Ian Hickson wrote:
|>>> I'm really stuck on this problem of how to handle running remote
|>>> applications so they definitely look like they are remote, and an
|>>> application on paypcl.com is definitely distinguishable from one on
|>>> paypal.com, even if they use near-identical code.
|
|
| Having read this whole thread, I don't see what preventing phishing has
| to do with menu bars in particular, or even What-WG in general. Phishing
| is an increasing problem with Web apps right now, even when they don't
| use pull-down menus or any other fancy elements.
|
| Browser vendors could make phishing harder without requiring any user
| intervention, but I'd rather not clutter this list with the technique
| because it seems rather off-topic.

I think the more relevant point is this: where is the line drawn for
what permissions a web app can be afforded.  Are we only coming up with
ways to provide web sites with more application-like interfaces and
options, or also a way for light-weight local apps to migrate to web apps?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFAzdxC8nLgh/JJsxERAvdiAKCajDseDsDbEUuHho1IUQ2GhfGXzQCeJhBi
06tkVK6b6cwsPRj6JfNIRpA=
=XVaM
-----END PGP SIGNATURE-----
Received on Monday, 14 June 2004 10:11:30 UTC

This archive was generated by hypermail 2.4.0 : Wednesday, 22 January 2020 16:58:34 UTC