|
|
|
|
|
|
by hyperman1
1459 days ago
|
|
|
For normal URLs, I agree. But in this case you have adversarial urls. Suppose the scammer puts some http and www.google.com in the url parameters, after some randomly generated 8 characters dot someobscuretld site. I don't trust myself enough to be 100% sure I can decode an URLencoded misleading mess perfectly all the time. They already hid urls in the username of the url, like www.google.com.unholymessherethatscrollsoutoftheurlbar @ malignantdomainnotgoogle.blah |
|
|