Eddy Nigg wrote, On 2009-01-04 14:28: > On 01/04/2009 09:32 PM, Nelson B Bolyard: >> do that, too, and phishers will be quick to imitate it. The main point of >> "chrome" is that content cannot effectively mimic it. It's unspoofable. >> (It wasn't, always, but browsers have finally gotten wise to that.) > > And what about this? https://blog.startcom.org/?attachment_id=90
If the blue shading around the "favicon" was the ONLY indication that a page was served via https, then I would agree that that's too weak to be considered unspoofable (or even noticeable). But IIRC, there are at least two other non-spoofable indicators. _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
