[prev in list] [next in list] [prev in thread] [next in thread] 

List:       konq-bugs
Subject:    [Bug 73889] New: Wish: Warn user on possible URL spoofing attempt
From:       Dik Takken <takken () phys ! uu ! nl>
Date:       2004-01-31 14:51:17
Message-ID: 20040131145117.12512.qmail () ktown ! kde ! org
[Download RAW message or body]

------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
      
http://bugs.kde.org/show_bug.cgi?id=73889      
           Summary: Wish: Warn user on possible URL spoofing attempt
           Product: konqueror
           Version: unspecified
          Platform: Compiled Sources
        OS/Version: Linux
            Status: UNCONFIRMED
          Severity: wishlist
          Priority: NOR
         Component: khtml
        AssignedTo: konq-bugs@kde.org
        ReportedBy: takken@phys.uu.nl


Version:            (using KDE KDE 3.2.0)
Installed from:    Compiled From Sources
OS:          Linux

Konqueror should warn the user when he/she clicks a link that attempts to send the \
user to fake website. An evil bad guy could for instance steal the user's Hotmail \
login data by setting up a fake hotmail site and providing the following link:

www.hotmail.com@www.myfakesite.net

or

www.hotmail.com.www.myfakesite.net

When the user clicks this link and enters the site, Internet Explorer will not \
display the '@www.myfakesite.net' part of the URL, so the user has no idea that \
he/she is being redirected. Though Konqueror does show the @... part, I still think \
the user should be warned that the link may be a trap. \
_______________________________________________ Konq-bugs mailing list
Konq-bugs@mail.kde.org
https://mail.kde.org/mailman/listinfo/konq-bugs


[prev in list] [next in list] [prev in thread] [next in thread]