Educause Security Discussion mailing list archives
Re: Phishing Links
From: David Escalante <david.escalante () BC EDU>
Date: Wed, 7 Jul 2010 14:34:17 -0400
On Wed, Jul 07, 2010 at 02:05:41PM -0400, James Farr '05 wrote:It is hard to educate some users on the difference between legitimateand phony web links in email, and it is easy enough to fake a website.For that reason I would like to propose that no official college communication is sent with an active link in it.
It turns out that several popular mail readers automatically convert text that __appears__ to be a web site into a link as a convenience to the user. e.g. If you say, "Get your update at www.microsoft.com" then the mail reader when displaying messages as HTML converts that text to a link pointing to "http://www.microsoft.com" on the fly, although there is no link in the original text that was sent. This complicates things considerably in relation to the proposal.
-- David Escalante Boston College
Current thread:
- Phishing Links James Farr '05 (Jul 07)
- Re: Phishing Links Ben Woelk (Jul 07)
- Re: Phishing Links Pete Hickey (Jul 07)
- Re: Phishing Links Basgen, Brian (Jul 07)
- Re: Phishing Links James Farr '05 (Jul 07)
- Re: Phishing Links Jeff Kell (Jul 07)
- Re: Phishing Links Basgen, Brian (Jul 07)
- Re: Phishing Links Justin Azoff (Jul 07)
- Re: Phishing Links David Escalante (Jul 07)
- Re: Phishing Links Eric Case (Jul 07)
- Re: Phishing Links Joel Rosenblatt (Jul 07)
- Re: Phishing Links Flynn, Gary - flynngn (Jul 07)
- Re: Phishing Links Pete Hickey (Jul 07)
- Re: Phishing Links Martin Manjak (Jul 07)
- Re: Phishing Links Ben Woelk (Jul 07)
- Re: Phishing Links Martin Manjak (Jul 20)
- Windows 0-day David Opitz (Jul 21)
- Re: Windows 0-day Greg Williams (Jul 21)
- Re: Windows 0-day Greg Williams (Jul 27)
- Re: Phishing Links Pete Hickey (Jul 07)