Re: IDN problem.... :(

From: John Burger (john@mitre.org)
Date: Thu Feb 10 2005 - 16:48:38 CST

Next message: John Hudson: "Re: IDN problem.... :("

Previous message: Mark Leisher: "UCData 2.7 released"
Next in thread: John Hudson: "Re: IDN problem.... :("
Reply: John Hudson: "Re: IDN problem.... :("
Reply: Mark E. Shoulson: "Re: IDN problem.... :("
Maybe reply: Arcane Jill: "Re: IDN problem.... :("
Maybe reply: Arcane Jill: "Re: IDN problem.... :("
Maybe reply: Doug Ewell: "Re: IDN problem.... :("
Maybe reply: Adam Twardoch: "Re: IDN problem.... :("
Maybe reply: D. Starner: "Re: IDN problem.... :("
Maybe reply: D. Starner: "Re: IDN problem.... :("
Reply: Karl Pentzlin: "Re[2]: IDN problem.... :("
Maybe reply: Kenneth Whistler: "Re: IDN problem.... :("
Maybe reply: Mark Leisher: "Re: IDN problem.... :("
Maybe reply: Adam Twardoch: "Re: IDN problem.... :("
Maybe reply: D. Starner: "Re: IDN problem.... :("
Maybe reply: Erik van der Poel: "Re: IDN problem.... :("
Maybe reply: Erik van der Poel: "Re: IDN problem.... :("
Maybe reply: Erik van der Poel: "Re: IDN problem.... :("
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Mail actions: [ respond to this message ] [ mail a new topic ]

Frank Yung-Fong Tang wrote:

> Any one have any comment about
> https://bugzilla.mozilla.org/show_bug.cgi?id=279099

Here's a popular press description of the problem

http://www.macworld.com/news/2005/02/08/spoof/index.php

which points to a test for it at Secunia.com. (They registered
paypal.com spelled with a Cyrillic "a".) Ironically, IE doesn't fall
for the spoof, because it apparently doesn't handle IDNs. Of course,
from a user interface perspective, browsers need to do something about
this, but I find it annoying that it's described as a "security flaw".
My browser doesn't warn me about g00g1e.com yet, either.

- John D. Burger
MITRE

Next message: John Hudson: "Re: IDN problem.... :("
Previous message: Mark Leisher: "UCData 2.7 released"
Next in thread: John Hudson: "Re: IDN problem.... :("
Reply: John Hudson: "Re: IDN problem.... :("
Reply: Mark E. Shoulson: "Re: IDN problem.... :("
Maybe reply: Arcane Jill: "Re: IDN problem.... :("
Maybe reply: Arcane Jill: "Re: IDN problem.... :("
Maybe reply: Doug Ewell: "Re: IDN problem.... :("
Maybe reply: Adam Twardoch: "Re: IDN problem.... :("
Maybe reply: D. Starner: "Re: IDN problem.... :("
Maybe reply: D. Starner: "Re: IDN problem.... :("
Reply: Karl Pentzlin: "Re[2]: IDN problem.... :("
Maybe reply: Kenneth Whistler: "Re: IDN problem.... :("
Maybe reply: Mark Leisher: "Re: IDN problem.... :("
Maybe reply: Adam Twardoch: "Re: IDN problem.... :("
Maybe reply: D. Starner: "Re: IDN problem.... :("
Maybe reply: Erik van der Poel: "Re: IDN problem.... :("
Maybe reply: Erik van der Poel: "Re: IDN problem.... :("
Maybe reply: Erik van der Poel: "Re: IDN problem.... :("
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2.1.5 : Thu Feb 10 2005 - 16:51:25 CST