(OT) Google: "Somebody knows your password"
Joel Rees
joel.rees at gmail.com
Fri Aug 4 08:44:17 UTC 2017
> However, usually such mailers show the real URL in the status bar, it
> at least is shown by viewing the message source.
The status bar can also be overridden, of course.
You should never click a link you get in mail.
When you have no other choice, and you really, really have to use the URL
you got in the message, you should right-click and copy the link, then
paste it into a plain text editor window to look at. Then (because paste
buffers can also be programmed into) if the URL is one you know, select it
in the text editor and copy what you know is a plaintext URL.
And watch for redirections hidden in the long URLs.
Even when you are reading mail in plaintext, Unicode provides characters
that allow spoofing addresses. For example, goog1e.com would be easy to
miss. And it doesn't help that URLs can now contain (for example) Greek and
Russian characters. Registrars are supposed to watch for look-alike URLs,
but they miss some from time to time.
(Browsers really should change background colors when showing URLs that
contain characters from more than one language.)
--
Joel Rees
Yeah, be careful with links in signatures, too:
http://reiisi.blogspot.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20170804/dae10c44/attachment.html>
More information about the ubuntu-users
mailing list