Just discovered that you can abuse the seldom-used @ syntax for passing user/pass combos into URLs to make your domain look to the untrained eye like it lives elsewhere than it does. e.g.:
The browser simply ignores everything prior to the @ sign and carries on. Which means an unscrupulous soul can copy a template from any site, populate it with any content they like, and pass out a URL that will fool many viewers.
I’m not interested in doing this, mind you. Merely a technical curiosity.