WebApp Sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Should login pages be protected by SSL?

From: "Ian Rogers" <ian () iprcom com>
Date: Tue, 21 Jun 2005 16:48:38 +0100 (BST)
open-source research project, we develop TrustBar, currently for FireFox
and soon also for IE; I'll appreciate your opinion. Download at
https://addons.mozilla.org/extensions/moreinfo.php?id=478.


I use Trustbar on my win and linux box. it is a nice a little utility.
But it does NOT provide any greater functionality that the little
"lock" icon that comes with mozilla by default. I am not really
interested in who signed the website's certficate. I am more concerend
with where the website is hosted and who owns the IP netblock.


In that case check out Netcraft's "Anti-Phishing" toolbar for Firefox:
http://toolbar.netcraft.com/

It rates new websites too harshly in my view (ie. I recently developed an
anti-spam website that it rated as "high risk" simply because it was brand
new! :-) but the information is comprehensive...

Ian.
Previous By Date Next
Previous By Thread Next

Current thread: