[security] How to prevent phishing...
gaz_sec at hushmail.com
gaz_sec at hushmail.com
Wed Apr 11 14:07:06 UTC 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
If I understand your point correctly are you referring to the fact
that a phisher could get the passphrase from the user. This would
not be possible because the passphrase would only be available to
that user and the passphrase consists of 5 or more words that are
meaningful to that user not a standard phrase that a phisher could
easily construct.
On Wed, 11 Apr 2007 12:50:28 +0100 Johannes Berg
<johannes at sipsolutions.net> wrote:
>On Wed, 2007-04-11 at 10:16 +0100, gaz_sec at hushmail.com wrote:
>
>> I've come up with an idea for peventing phishing, I would love
>to
>> hear everyone's thoughts:-
>> http://www.thespanner.co.uk/2007/04/11/how-to-prevent-phishing/
>
>I don't see the point. It just makes phishing need to be a
>man-in-the-middle attack, no?
>
>johannes
-----BEGIN PGP SIGNATURE-----
Note: This signature can be verified at https://www.hushtools.com/verify
Version: Hush 2.5
wpwEAQECAAYFAkYc6yQACgkQrR8fg3y/m1BflQP9EAntag/kuN873k4a17b/RdiDs8vx
dAQH/fJIciFXmnTtHUFYgZa+I9ENy67LnbsuuJFOcimAcRXIB44UhpeOQROV2PPtQHKO
Y6knE+taMbjbmhThR7dlmSPhgcEOPIO+cZsyDFwgrhIwATJwCtivvOhVUMl9kNlx85CY
8g0wa04=
=/+Hb
-----END PGP SIGNATURE-----
--
Click here for free information on nursing jobs, up to $150/hour
http://tagline.hushmail.com/fc/CAaCXv1Rz1rNSqLGMMF6UUeMcbW5aDxb/
More information about the security
mailing list