Closed Bug 651334 Opened 13 years ago Closed 5 years ago

Enhance scam/phishing/spoof warning for clicking on mismatched host links (href/url/domain different from linktext url)

Categories

(Thunderbird :: Security, enhancement)

x86
All
enhancement
Not set
normal

Tracking

(Not tracked)

RESOLVED DUPLICATE of bug 1476428

People

(Reporter: JoeS1, Unassigned)

References

(Blocks 1 open bug)

Details

False positives have enticed many TB users to disable the scam detection feature. This leaves just the status bar display as a protection against clicking on unwanted links. Moreover, even if scam detection is enabled, once it has been "ignored" in the scam bar, a later visit to that message allows clicking a potential malevolent url.
I propose that in all cases that the visible link text does not match, some additional visual cue be provided.

That could be a popup/tooltip notification, or a color change in the status bar, just to name a few possibilities.

If someone wants to morph this bug to a meta to improve the Phishing detection feature, then that would be fine too.
The warnOnSuspiciousLinkClick() function in phishingDetector.js if fairly simple in its current implementation. It checks if kMsgNotificationPhishingBar for the notification bar was activated and then warns for /all/ links clicked on, scammy or not. However, analyzeUrl() could be called on a per-link basis, either when hovering over a link (tooltip), clicking a link, or when preparing the content for display. Thus, individual flagging should be possible.
Summary: Enhance warning when clicking on mismatched host links → Enhance scam/phishing warning for clicking on mismatched host links
Blocks: mail-scam
xref bug 324820 and bug 326829, though not a duplicate of either of those.
Summary: Enhance scam/phishing warning for clicking on mismatched host links → Enhance scam/phishing/spoof warning for clicking on mismatched host links (href/url/domain different from linktext url)
See Also: → 698597

This was fixed in bug 1476428

Status: NEW → RESOLVED
Closed: 5 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.