Home page logo

fulldisclosure logo Full Disclosure mailing list archives

RE: The ultimate solution to phising
From: "Sean Crawford" <sean01 () accnet com au>
Date: Mon, 14 Feb 2005 09:58:46 +1100

--------->Stian Ovrevage [sovrevage () gmail com] wrote..

---> 1. The solution to phising?
---> With  firm believe  of a  world of  forgiveness,
---> and  awareness of  the risk  of total  ridicule,
---> I propose my solution to phising:
---> Stop clicking _any_ hyperlinks, going somewhere?
---> _Type_  the  address  into   the  addressbar  of
---> your   browser.   Don't  use   your   favorites.
---> And never ever click on  hyperlinks recieved in
---> e-mails!
---> /*  No-click actually only  applies  to external
---> sources, but  the whole problem  with phising
---> is that  the average user cannot  decide whether
---> XYZ is an trusted or untrusted source, no matter
---> how legitimate it might look. So allowing for a
---> mental loophole of this rule will prove fatal */

Great solution mate but what would you do in the real world of home users
and clueless workstation operators?..
Try and tell Mr. Hunt n Peck not to click a hyperlink...end users are a

Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]