nostr:npub18c7wjmr8txk9u3xzrxl5rsx8mpt4dr84nyluufn4qg4x9xnar52qller9d looks like I misread your post. Yes, you’re totally right. I mistook the point to be about subdomains generally, not typosquatting ones. A verifiable TXT record back to Okta might help a bunch, but it’d only be compensating for the weakness in the overall system which you’re rightly highlighting. What a mess.