1 comment

[ 4.1 ms ] story [ 15.8 ms ] thread
Solution: Use SSL with extended verification (I think it's called that). This will let your app ensure that it is talking to the correct server, and not an impersonator.