Educause Security Discussion mailing list archives
Re: URL switching in e-mails
From: Valdis Kletnieks <Valdis.Kletnieks () VT EDU>
Date: Tue, 3 Jan 2006 18:46:50 -0500
On Tue, 03 Jan 2006 17:15:58 CST, Alan Amesbury said:
Valdis Kletnieks wrote:That's why the Slashdot code would output "[xycum.com]" which would hopefull
y
look suspicious to the user... ;)Ah, I misunderstood; I thought it would display the entire hostname. Yes, displaying 2ld.tld would probably tip off most users.
Of course, it's not perfect - lots of banks outsource much of their IT, with the end result that the URL for the "real" bank is 'www.foo-bank.com', but the actual targets are 'foo-bank-hosting.serverfarm.com' or similar, at which point you have to figure out if 'serverfarm.com' is a "real" outsource or a fake one....
Attachment:
_bin
Description:
Current thread:
- URL switching in e-mails Justin Sipher (Jan 03)
- <Possible follow-ups>
- Re: URL switching in e-mails Ken Connelly (Jan 03)
- Re: URL switching in e-mails Valdis Kletnieks (Jan 03)
- Re: URL switching in e-mails Joel Rosenblatt (Jan 03)
- Re: URL switching in e-mails David Gillett (Jan 03)
- Re: URL switching in e-mails Justin Sipher (Jan 03)
- Re: URL switching in e-mails Alan Amesbury (Jan 03)
- Re: URL switching in e-mails Valdis Kletnieks (Jan 03)
- Re: URL switching in e-mails Alan Amesbury (Jan 03)
- Re: URL switching in e-mails Valdis Kletnieks (Jan 03)
- Re: URL switching in e-mails Cal Frye (Jan 04)