[Cryptography] So please tell me. Why is my solution wrong?
Joseph Kilcullen
kilcullenj at gmail.com
Wed Feb 15 12:06:37 EST 2017
On 15-Feb-17 12:00 PM, Yoha wrote:
>> Many phishing attacks don't use TLS, so the domain validation stuff is
>> never utilised. The idea behind my solution is to bully the phishers
>> into the TLS domain.
> Then forbid password input from non-TLS connection. This is what Google
> Chrome and Mozilla Firefox are going for.
>
Precisely. I figure my solution is a mechanism for doing this.
Thanks
Joseph
More information about the cryptography
mailing list