Since you are framing in the login with webkit, why not show the URL as well? Us... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		nestlequ1k on July 13, 2012 \| parent \| context \| favorite \| on: Show HN: Collections, a fast multiple-account Goog... Since you are framing in the login with webkit, why not show the URL as well? User's need to see htts://google.com or they'll assume it's a phishing attack.

ryanwaggoner on July 14, 2012 [–]

How is this actually any more secure? It's pretty easy to display a legit (but "fake") URL while your phishing form is displayed in the webview.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact