Recently, the Shmoo Group discovered that Firefox is vulnerable to precisely the exploit that i predicted in my 2002 paper—Ping

➡

How is it that Pet Names don’t solve this problem?—Mark

➡

Pet names only solve the problem as long as users are not allowed to type URLs into the location bar.—Ping

➡

Not at all. They can type any URL they like into the URL-location field. The issue is then, what is displayed in the Pet Name location field?—Mark

➡

Suppose the user sees "paypal.com" in the URL field while establishing a trust relationship with the site.—Ping

➡

If you always type the URLs of sites you want to trust, this problem does not occur.—Ben

➡

First, asking people to stop clicking on links is infeasible and defeats the whole point of having a Web in the first place.—Ping

➡

and it’s easily defeated by making the link 4 lines of gobbledygook. —Karp