[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Request for comments: anti-phishing storefront approach

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Request for comments: anti-phishing storefront approach
From: Doug Ross <douglas.ross@xxxxxxxxx>
Date: Fri, 3 Jun 2005 19:37:28 -0400

Given the recent PR regarding Bank of America's SiteKey (which seems
to me to be susceptible to MIM attacks), I'd appreciate any feedback
on this anti-phishing approach:

http://directorblue.blogspot.com/2005/06/making-phishers-solve-captcha-problem.html

--doug
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Request for comments: anti-phishing storefront approach
  - From: Dan Margolis

Prev by Date: RE: [Full-disclosure] (no subject)
Next by Date: Re: [Full-disclosure] Request for comments: anti-phishing storefront approach
Previous by thread: [Full-disclosure] [SECURITY] [DSA 732-1] New mailutils packages fix several vulnerabilities
Next by thread: Re: [Full-disclosure] Request for comments: anti-phishing storefront approach
Index(es):
- Date
- Thread