Re: ~/.hosts patch
- From: Luigi Rizzo <rizzo@xxxxxxxx>
- Date: Wed, 21 Jun 2006 00:02:50 -0700
On Wed, Jun 21, 2006 at 06:38:16AM +0000, John Birrell wrote:
On Wed, Jun 21, 2006 at 08:31:36AM +0200, Harti Brandt wrote:
Wouldn't this enable the same kind of phishing attacks there are under
windows? As far as I remember there are attacks where the hosts file
(don't remember how its called under windows) is rewriten by a virus/java
script/whatever to contain a different IP address for a given hostname?
Suppose someone fakes the website of www.foobank.com, then manages to
insert www.foobank.com with the wrong IP address into ~/.hosts?
Ugh. Now that is a scary thought.
and that's why people use https and certificates!
what's the concern here ?
luigi
_______________________________________________
freebsd-current@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-current
To unsubscribe, send any mail to "freebsd-current-unsubscribe@xxxxxxxxxxx"
- Follow-Ups:
- Re: ~/.hosts patch
- From: John Birrell
- Re: ~/.hosts patch
- References:
- ~/.hosts patch
- From: Justin Hibbits
- Re: ~/.hosts patch
- From: Mike Jakubik
- Re: ~/.hosts patch
- From: Brooks Davis
- Re: ~/.hosts patch
- From: Mike Jakubik
- Re: ~/.hosts patch
- From: Xin LI
- Re: ~/.hosts patch
- From: Harti Brandt
- Re: ~/.hosts patch
- From: John Birrell
- ~/.hosts patch
- Prev by Date: Re: ~/.hosts patch
- Next by Date: Re: libmagic build failures (tmp patch)
- Previous by thread: Re: ~/.hosts patch
- Next by thread: Re: ~/.hosts patch
- Index(es):
Relevant Pages
|
|
