A cool demo of how to spoof sites (also shows how TrustBar preventsthis...)
SK
sk.list at gmail.com
Wed Feb 9 13:40:14 EST 2005
How can Trustbar help me if the site in question is not even SSL
based. Homograph based attacks are imo a different class of its own.
SK
On Wed, 09 Feb 2005 19:41:36 +0200, Amir Herzberg
<herzbea at macs.biu.ac.il> wrote:
> Want to see a simple, working method to spoof sites, fooling
> Mozilla/FireFox/... , even with an SSL certificate and `lock`?
>
> http://www.shmoo.com/idn/
>
> See also:
>
> http://cgi.ebay.com/ws/eBayISAPI.dll?ViewItem&item=3866526512
>
> Want to protect your Mozilla/FireFox from such attacks? Install our
> TrustBar: http://TrustBar.Mozdev.org
> (this was the first time that I had a real reason to click the `I don't
> trust this authority` button...)
>
> Opinions?
>
> Best, Amir Herzberg
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list