because we don’t care lol. we get paid to create shit rather than clear out people’s brain toilets by teaching them to not type in their password into a site with a url of facebook.xx734JCMAN3NncjakkFNNE.com.

if people need anything, it’s education on the HTTP protocol that they rely on so much. Subdomains are meaningless. Anything after the single “/” is meaningless. It all goes to a server which you have to trust. i could make a socket server on port 80 which returns a scary screamer for a .png url in like a quarter of a minute; it’s your browsers job to not accept a .html file when you request a .png.