https://www.paypal.com/cgi-bin/webscr/cgi-bin/webscr?cmd=_ssr&return=http%3A%2F%2Fpaypal-cgi-bin.s6.pl/?cgi-bin.webscrcmd=_login-run.webscrcmd=_account-run.DisputeTransactionID.2LC956793J776333Y
This is a valid PayPal URL that issues a redirect to an external site, which just happens (at this moment) to spoof the PayPal layout. Is there any provision anywhere for a "you are leaving an EV site to go to a non-EV SSL site or an unencrypted site" kind of warning? And if this isn't the best place for this kind of discussion, is there a discussion group/list/newsgroup that would be better? -Kyle H _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
