Tyler Close wrote:
The user could mistype the URL. To take a recent example, it appears Amir, a security researcher, mistakenly typed in citybank.com, instead of citibank.com. Similar things happen with all sorts of domain names. On Friday, I mistakenly typed in planetlab.org instead of planet-lab.org. On multiple occasions, I have SSHed to sourceforget.net, instead of sourceforge.net.
I certainly agree that educating users to bookmark valuable sites, and use the bookmarks, is a useful step.
If the attacker takes over my DNS server, or gets me to connect to the wrong DNS server, he can direct me to whatever site he likes. Obviously, this kind of pharming attack also works against bookmarks.
Not over SSL - you'd get warning dialogs. Gerv _______________________________________________ Mozilla-security mailing list Mozilla-security@mozilla.org http://mail.mozilla.org/listinfo/mozilla-security
