Slashdot Mirror

← Back to Stories (view on slashdot.org)

Netcraft Releases Anti-Phishing Toolbar

Posted by ryuzaki0 on from the safety-first dept.

AgainstHate writes "Netcraft has released an Anti-Phishing Toolbar that provides detailed information about the website you are visiting (sites' hosting location, country, longevity and popularity) at all times to help users to validate fraudulent URLs. It also natively traps cross site scripting and other suspicious URLs. The toolbar also enables users to report phishing attacks to Netcraft, thus blocking any other unsuspecting users from being harmed (Netcraft supervisor validation is used to contain the impact of any false reporting). Currently the toolbar is only available for IE but a Firefox version is under development."

5 of 236 comments (clear)

  1. For Firefox... by excaliber19 · · Score: 5, Informative
    Not perfect by any means, but sure helps:

    Firefox SpoofStick Extension

  2. Spoofstick by BobMD · · Score: 5, Informative

    Already available from Corestreet for Firefox and IE http://www.corestreet.com/spoofstick/

  3. Adware? by plover · · Score: 5, Informative
    Not necessarily: did you read the EULA?

    8 Advertising and sponsorship

    Part of the Toolbar may contain advertising and sponsorship. Advertisers and sponsors are responsible for ensuring that material submitted for inclusion on the Toolbar complies with relevant laws and codes. We will not be responsible for any error or inaccuracy in advertising and sponsorship material.

    So, be warned: it may contain some kind of adware, and it may be the kind you find hard to ignore. I'm not installing it until I know more.

    --
    John
  4. Re:Nostradamus Predicts by computational+super · · Score: 5, Informative

    Hmmmm... I'm almost afraid to admit this, but I'm a Firefox user who might be able to use this. There's a lot of information there that I've never been able to figure out how to determine using publicly available resources. According to TFA, Netcraft will report site, domain, ip address, country, date first seen, organization, last reboot, netblock owner, site rank, name server, DNS admin, and reverse DNS. Obviously I can use nslookup to figure out the IP address, and internic.net to look up the domain and figure out name server, dns admin, etc. but country? netblock owner? Date first seen?

    The example shown in TFA, for example, shows netcraft.com being hosted in the UK... obviously, this is more sophisticated than just checking to see if the domain is co.uk. It seems like they actually are providing some value by maintaining a database... figuring out the hosting country from an IP address is supposed to be impossible.

    Of course, I'm not downloading anything until I've seen it reviewed for a while to see if the database they're maintaining is useful in any way, shape or form - if 99% of the sites aren't in their database (and they're just showing me WHOIS lookups), then yeah, I guess I fall into the "don't really need it" category.

    --
    Proud neuron in the Slashdot hivemind since 2002.
  5. ah more toolbar hell... by Anonymous Coward · · Score: 5, Informative

    As if there wasn't enough screen space taken up already.

    Switch to Firefox and enable the non-spoofing features and you don't need a toolbar (don't allow URL to be hidden, etc.)

    In firefox, type in about:config
    then set these to TRUE and never be "fooled" again:

    recommended:
    disable_window_open_feature.locati on
    disable_window_open_feature.status
    disable_wi ndow_open_feature.titlebar
    disable_window_status_ change

    optional:
    disable_window_move_resize
    disable_w indow_open_feature.close
    disable_window_open_feat ure.directories
    disable_window_open_feature.menub ar
    disable_window_open_feature.minimizable
    disab le_window_open_feature.personalbar
    disable_window _open_feature.resizable
    disable_window_open_featu re.scrollbars
    disable_window_open_feature.toolbar