Re: [idn] IDN spoofing

From: Werner LEMBERG (wl@gnu.org)
Date: Mon Feb 21 2005 - 04:00:57 CST

Next message: Otto Stolz: "Re: orthographies"

Previous message: Simon Montagu: "Re: orthographies"
In reply to: Erik van der Poel: "Re: [idn] IDN spoofing"
Next in thread: Peter Kirk: "Re: [idn] IDN spoofing"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Mail actions: [ respond to this message ] [ mail a new topic ]

Maybe a naive idea: Let's assume that the list of Unicode characters
with similar shapes is already available. Let's further assume that a
user wants to access a site which contains such characters. Isn't it
possible that the browser tests in the background all combinations,
sending a warning to the user that there are similar URLs which
resemble the original URL optically if viewed with certain fonts? So
if someone selects f<omicron><omicron>.org, the browser also tries to
access foo.org, probably using some additional constraints (like
scripts grouped by `-' or `.') to limit the number of possible hits.

Werner

Next message: Otto Stolz: "Re: orthographies"
Previous message: Simon Montagu: "Re: orthographies"
In reply to: Erik van der Poel: "Re: [idn] IDN spoofing"
Next in thread: Peter Kirk: "Re: [idn] IDN spoofing"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2.1.5 : Mon Feb 21 2005 - 04:08:19 CST