An intelligent post from Microsoft's Peter Torr on the decision to send URLs instead of hashes to the phishing filter. I appreciate his discussion of the threats and mitigations balanced against the costs and benefits of each approach.