On Thu, 21 Jun 2007 01:14:54 EDT, Kradorex Xeron said: > Why not take that to the extreme? throw so much illegitimate data into their > databases they won't know what is legitimate and what isn't, perhaps thus > making phishing not very profitable. and/or cause them more trouble than it's > worth.
Remember - if 10,000 idiots fall for the phish, we'd have to feed them 40,000 bogus entries to dilute it only to 20% valid info - and the phishers can usually verify the data easily enough. And it gets difficult to feed them 40K entries if they implement simple checks like "No more than 3 different data points from the same IP address", unless you intend to use a botnet to do the feeding...
pgp2T4VSNSLHt.pgp
Description: PGP signature
_______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
