Full Disclosure mailing list archives
Re: [HV-PAPER] Anti-Phishing Tips You Should Not Follow
From: Michal Zalewski <lcamtuf () dione ids pl>
Date: Fri, 31 Mar 2006 10:24:46 +0200 (CEST)
On Fri, 31 Mar 2006, Jasper Bryant-Greene wrote:
Just as most of the phishing sites already do.Really? I thought they somehow magically knew enough about you to sign you in properly and display all the correct details ;)
No, but the reasonable practice would be not to alert the customer (and have him possibly, say, panic and call the bank in question) - but rather, display something along the lines of "Thank you for successfully verifying your Frob Mutual account data. Bye." /mz _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- [HV-PAPER] Anti-Phishing Tips You Should Not Follow vuln (Mar 30)
- Re: [HV-PAPER] Anti-Phishing Tips You Should Not Follow michaelslists (Mar 30)
- Re: [HV-PAPER] Anti-Phishing Tips You Should Not Follow Michal Zalewski (Mar 30)
- Re: [HV-PAPER] Anti-Phishing Tips You Should Not Follow Marcos Agüero (Mar 31)
- Re: [HV-PAPER] Anti-Phishing Tips You Should Not Follow Jasper Bryant-Greene (Mar 31)
- Re: [HV-PAPER] Anti-Phishing Tips You Should Not Follow Michal Zalewski (Mar 31)
- Re: [HV-PAPER] Anti-Phishing Tips You Should Not Follow Marcos Agüero (Mar 31)
- Re: [HV-PAPER] Anti-Phishing Tips You Should Not Follow Jasper Bryant-Greene (Mar 31)
- Re: [HV-PAPER] Anti-Phishing Tips You Should NotFollow Dave Korn (Mar 31)
- Re: Re: [HV-PAPER] Anti-Phishing Tips You Should NotFollow ad () heapoverflow com (Mar 31)
- Re: [HV-PAPER] Anti-Phishing Tips You Should Not Follow Valdis . Kletnieks (Mar 31)
- Re: [HV-PAPER] Anti-Phishing Tips You Should Not Follow Michal Zalewski (Mar 30)
- Re: [HV-PAPER] Anti-Phishing Tips You Should NotFollow <...> (Mar 31)
- Re: [HV-PAPER] Anti-Phishing Tips You Should Not Follow michaelslists (Mar 30)
- Re: [HV-PAPER] Anti-Phishing Tips You Should Not Follow Michal Zalewski (Mar 31)
- Message not available
- Fwd: [HV-PAPER] Anti-Phishing Tips You Should NotFollow Anonymous Squirrel (Mar 31)
- Re: [HV-PAPER] Anti-Phishing Tips You ShouldNotFollow Mike Nice (Mar 31)