In my experience, the best way to prevent phishing is to use a Password Manager plugin. That way, if the site is genuine, the password will be pre-filled for you -- if it's a phishing attack, the password manager won't help you, and you'll be tipped off.<br clear="all">
--<br>Andrew Arnott<br>"I [may] not agree with what you have to say, but I'll defend to the death your right to say it." - S. G. Tallentyre<br>
<br><br><div class="gmail_quote">On Sun, Sep 12, 2010 at 11:03 AM, Alessandro Preziosi <span dir="ltr"><<a href="mailto:lsnpreziosi@gmail.com">lsnpreziosi@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
Thanks for the interesting links. I'm glad to see we're moving in that direction. <div>Anyway I'm afraid it will still remain "complicated" for common people to use it. I just saw this video:</div><div>
<a href="http://www.youtube.com/watch?v=o4MwTvtyrUQ" target="_blank">http://www.youtube.com/watch?v=o4MwTvtyrUQ</a></div><div><a href="http://www.youtube.com/watch?v=o4MwTvtyrUQ" target="_blank"></a>Only 8% of the people knew what a browser is...<br>
<br>
<div class="gmail_quote">2010/9/12 <span dir="ltr"><<a href="mailto:Axel.Nennker@telekom.de" target="_blank">Axel.Nennker@telekom.de</a>></span><div><div></div><div class="h5"><br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div>
<div dir="ltr" align="left"><a href="https://mozillalabs.com/conceptseries/identity/connect/" target="_blank"><font size="2" face="Arial">https://mozillalabs.com/conceptseries/identity/connect/</font></a><font face="Arial"><font color="#0000ff"><font size="2"> <span>(Mozilla Chris
Messina)</span></font></font></font></div>
<div dir="ltr" align="left"><font color="#0000ff" size="2" face="Arial"></font> </div>
<div dir="ltr" align="left"><a href="http://ignisvulpis.blogspot.com/2010/02/openinfocard-openid-selector.html" target="_blank"><font size="2" face="Arial">http://ignisvulpis.blogspot.com/2010/02/openinfocard-openid-selector.html</font></a><font face="Arial"><font color="#0000ff"><font size="2"> <span>(me)</span></font></font></font></div>
<div dir="ltr" align="left"><a href="http://self-issued.info/?p=235" target="_blank"><font size="2" face="Arial">http://self-issued.info/?p=235</font></a><font face="Arial"><font color="#0000ff"><font size="2"> <span>(Mike
Jones)</span></font></font></font></div>
<div dir="ltr" align="left"><font color="#0000ff" size="2" face="Arial"></font> </div>
<div><font color="#0000ff" size="2" face="Arial"><span>-Axel</span></font></div>
<div><font color="#0000ff" size="2" face="Arial"></font> </div>
<div><br></div>
<div dir="ltr" lang="de" align="left">
<hr>
<font size="2" face="Tahoma"><b>From:</b> <a href="mailto:openid-general-bounces@lists.openid.net" target="_blank">openid-general-bounces@lists.openid.net</a>
[mailto:<a href="mailto:openid-general-bounces@lists.openid.net" target="_blank">openid-general-bounces@lists.openid.net</a>] <b>On Behalf Of </b>Alessandro
Preziosi<br><b>Sent:</b> Sunday, September 12, 2010 6:50 PM<br><b>To:</b>
<a href="mailto:openid-general@lists.openid.net" target="_blank">openid-general@lists.openid.net</a><br><b>Subject:</b> [OpenID] Phishing? Web
browser integration?<br></font><br></div><div><div></div><div>
<div></div>Hi everybody,<br>
<div>A couple of days ago I used openID for the first time.
<div>It was on a low traffic website and when i clicked on the button it
redirected me to Google's login page, where I had to insert my google
password. </div>
<div>Before doing so, I double-checked the address because I'm aware of phishing
scams, but I'm afraid the vast majority of people would not do so. </div>
<div>I think we're kind of lucky that openID isn't widespread, otherwise many
people could see their email accounts stolen, and with them all the other
accounts (paypal etc.).</div>
<div>I think this is a MAJOR flow, and the only solution that i see would be to
try to integrate openID in the browser in some way, to make phishing
impossible.</div>
<div>Any ideas? Any comments?</div>
<div><br></div>
<div>Have a nice day,</div>
<div><br></div>
<div>Alessandro Preziosi</div>
<div><br></div></div></div></div></div>
</blockquote></div></div></div><br></div>
<br>_______________________________________________<br>
general mailing list<br>
<a href="mailto:general@lists.openid.net">general@lists.openid.net</a><br>
<a href="http://lists.openid.net/mailman/listinfo/openid-general" target="_blank">http://lists.openid.net/mailman/listinfo/openid-general</a><br>
<br></blockquote></div><br>