ev certificates and xss
I didn't, so I'm glad that someone else found the time to respond to some rather broken security "journalism" that made the rounds yesterday.
I didn't, so I'm glad that someone else found the time to respond to some rather broken security "journalism" that made the rounds yesterday.
reactions, thoughts, comments, etc.
On the other hand, PayPal is really trying to push the "green=safe" idea, which oversimplifies the question of security. This case is a good reminder of the fact that the presence of an EV certificate, by itself, does not guarantee a safe experience.
But then I'm the kind of person who hates seeing those "Certified virus-free!" notes on email footers.
Posted by: Kelson | May 20, 2008 3:36 PM