Odd that Gmail doesn't have a "warn when link text uses a domain that doesn't match the link" feature. This seems trivial to implement?
Conversation
Notices
-
Embed this notice
Royce Williams (tychotithonus@infosec.exchange)'s status on Thursday, 19-Sep-2024 02:44:08 JST 
Royce Williams
-
Embed this notice
Royce Williams (tychotithonus@infosec.exchange)'s status on Thursday, 19-Sep-2024 02:44:07 JST
Royce Williams
@baloo Fair point. Sure wish the click-tracking frameworks all had an easy "BYO subdomain" feature so that small shops could easily make in-domain redirects easy.
-
Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 19-Sep-2024 02:44:07 JST 
Ryan Castellucci :nonbinary_flag:
@tychotithonus @baloo I see the false positives on tracking as a good thing, as it would make it useless.
-
Embed this notice
baloo (baloo@sfba.social)'s status on Thursday, 19-Sep-2024 02:44:08 JST 
baloo
@tychotithonus That would break a ton of email providers with "click tracking" that uses a domain they own and then redirect to the domain who bought service
Gmail wouldn't be able to query the link (to check the redirect) without triggering false positives on the tracking either.
-
Embed this notice
All GNU social JP content and data are available under the