On 15-10-2014 17:56, Kevin Chadwick wrote: > The address bar is one of the only things you can trust when browsing a > web page Provided your dns isn't spoofed. And you're are not being targeted with a mitm attack. And perhaps a few other things. But yeah, the address bar can normally be trusted. > Get rid of the address bar! and allow javascript everywhere, you > must work for Google;-) > It's funny you said that, because the POODLE vulnerability released yesterday (ironically from Google), besides needing a mitm attack, uses javascript on the user's browser for it's attack vector. People need more proof that javascript is harmful?
Cheers [demime 1.01d removed an attachment of type application/pkcs7-signature which had a name of smime.p7s]
