this post was submitted on 05 May 2025
201 points (95.5% liked)
Technology
69726 readers
3727 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related news or articles.
- Be excellent to each other!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
- Check for duplicates before posting, duplicates may be removed
- Accounts 7 days and younger will have their posts automatically removed.
Approved Bots
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Chromes decision actually makes a lot of sense, from a security perspective. When we model how people read URLs, they tend to be "lazy" and accept two URLs as equal if they're similar enough. Removing or taking focus away from less critical parts makes users focus more on the part that matters and helps reduce phishing. It's easier to miss problems with https://www.bankotamerica.com/login_new/existing/login_portal.asp?etc=etc&etc=etc than it is with bankotamerica, with the com in a subdued grey and the path and subdomain hidden until you click in the address bar.
It's the same reason why they ended up moving away from the lock icon. Certs are easy to get now, and every piece that matches makes it more likely for a user to skip a warning sign.