RE: ISSUE-95: bookmark API interactions from Close, Tyler J. on 2007-08-02 (public-wsc-wg@w3.org from August 2007)

From: Close, Tyler J. <tyler.close@hp.com>
Date: Thu, 2 Aug 2007 00:09:48 -0000
To: <public-wsc-wg@w3.org>
Message-ID: <08CA2245AFCF444DB3AC415E47CC40AFDA2F1C@G3W0072.americas.hpqcorp.net>

See the AddFavorite() method [1] supported by IE.

--Tyler

--
[1] "AddFavorite Method (external)"
    <http://msdn2.microsoft.com/en-us/library/ms535926.aspx>

-----Original Message-----
From: public-wsc-wg-request@w3.org [mailto:public-wsc-wg-request@w3.org]
On Behalf Of Thomas Roessler
Sent: Wednesday, August 01, 2007 11:21 AM
To: Web Security Context Issue Tracker
Cc: public-wsc-wg@w3.org
Subject: Re: ISSUE-95: bookmark API interactions


On 2007-08-01 17:29:41 +0000, Web Security Context Issue Tracker
wrote:

> We need to have a look at the interfaces exposed to pages in

... scripts running as part of Web content, that is.  Sorry for poor
phrasing during the call.

> order to enable bookmarking of sites: If an attacker can cause
> (through bad user interaction or otherwise) a site with a trusted
> name to be bookmarked, then that attacker has effectively laid
> the groundwork for successful bookmark-based phishing.
> 
> 
> 
> 

-- 
Thomas Roessler, W3C  <tlr@w3.org>

Received on Thursday, 2 August 2007 00:10:25 UTC