Rated 5 out of 5 stars
I had not thought about the phishing aspect. Even with the identity block, I do not trust just the ID block. I look at the URL. Also, there is often information encoded in the url that is important. For ex, a link that you sent me today mardak: https://bugzilla.mozilla.org/enter_bug.cgi?product=Toolkit&component=Add-ons+Manager . Later on when i was on that page, I wanted to see what the URL b/c i knew it had the component in it, but i couldnt see it unless i went up there and clicked on it.
We have two internal trac bug sites, that look the same visually, but i can always tell difference by URL. No longer.
I think URL and no other categroies should be shown unless you are up in there editing or entering in the field.
People who dont know where to click because they are afraid to edit the URL are beginners and they will learn fast, when there is no other way to do it. For now, as an add on, this seems to be more for power users anyhow.
For the phishing aspect, is it because you thought not all of the domain was being shown? v2 always showed pretty much all of the whole domain, and v3 better indicates that by differently coloring the domain from the truncated parts.