Re: Apple Safari: idn urlbar spoofing

Michal Zalewski wrote:

Whether Safari devs are to blame here exclusively, I'm not sure - IDN
concept is by itself pretty evil, and this can be viewed simply a clever
take on homograph attacks.

I found out that firefox has a configuration property:
network.IDN.blacklist_chars. It includes the character used in the
demonstration (ㅤ - HANGULL FILLER) and many more. So, the problem
seems to be known (at least in firefox).

--
Robert Swiecki
http://www.swiecki.net

Relevant Pages

  • Re: [Full-disclosure] Apple Safari: idn urlbar spoofing
    ... concept is by itself pretty evil, and this can be viewed simply a clever ... take on homograph attacks. ... I found out that firefox has a configuration property: ...
    (Full-Disclosure)
  • Re: Firefox and rendering JPEG2000s
    ... I typed 'jpeg2000 firefox' in google, and it is one of the results. ... if she has frequent late night meeting or weekend ... You try to drive people to suicide - that's evil. ... Rowland McDonnell - 9th. ...
    (uk.comp.sys.mac)
  • Re: Firefox is CRAAAAAPPPPP!
    ... It takes 0.3GB to display a simple web page (a few links, ... buggy (don't you hate it when you try to scroll down and you get the ... Oh Evil One, pray tell, what version on what platform? ... When I got rid of those extras Firefox behaved very well. ...
    (uk.people.support.depression)
  • Re: OT: Computer Problem
    ... I just ran my Norton thing and now can open Facebook... ... Download Firefox. ... It's evil, evil, evil. ... Both are better than Internet ...
    (rec.music.makers.guitar.acoustic)
  • Re: Page centered in IE7 but not in FF2.0
    ... using only CSS, but when it is viewed with IE7 it is centered, but ... with Firefox 2.0 it is floated left. ... I really don't mind which way it ... I was unaware of the evil I was creating. ...
    (comp.infosystems.www.authoring.html)