Posted by Jonathan N. Little on 09/29/07 18:44

BigDaddyBS wrote:

> But the way I see it, Jonathan, who posted the "fiendish but creative code"
> just gave phishers, scammers, and malware senders ANOTHER way to get people
> to go to sites where the sole purpose in life is to cheat the poor slobs who
> don't see the cheat.

Not really. My code was not that unique, nor creative. Most of the link
scamming is found in emails. If you allow JavaScript to run in email
and are dumb enough to click on links within emails, especially from
unknown sources you deserve what you get!

Of course it also helps to have client software that shows the status
bar by default, has option to block JavaScript manipulation of the
status bar. Punycodes those spoofed URLs...and last but not least a
little common sense in Layer 8.

> From my experience, those who try to hide to where a page links, are trying
> to pass viruses, spyware, porn, phishing pages, etc., not cheat the search
> engines. Yes, those of us "in the know" can rollover the link and see the
> underlying one, and the title, so if a link appears in that attribute that
> doesn't match, we can be forwarned. But "Average Joe/Jane" user don't
> realize the implications. (One of the reasons for my Scams info.)

> Please be careful the code you post. (This is one of the first times I've
> seen this type of questions and full code posted.) - You might just be
> giving the "bad guys" more ammo! (It's nice to know how its done, but why
> show THEM?)
>
> (Sorry if I come off like being on a "high horse", but GEEZE!)

As I said pure discussion and not very unique. There are much more
sophisticated was to misdirect a link.


--
Take care,

Jonathan
-------------------
LITTLE WORKS STUDIO
http://www.LittleWorksStudio.com

[Back to original message]