Mozilla Implements TLD Whitelist for Firefox in Response to IDN Homogr aphs Spoofing

• Previous message (by thread): Mozilla Implements TLD Whitelist for Firefox in Response to IDN Homogr aphs Spoofing
• Next message (by thread): Mozilla Implements TLD Whitelist for Firefox in Response to IDN Homogr aphs Spoofing
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Jul 27, 2005 at 01:47:14PM +0000, Fergie (Paul Ferguson) wrote:
> Mozilla Foundation has announced changes to Firefox concerning
> Internationalized Domain Names (IDN) to deal with homograph spoofing
> attacks.                                                                

Does anyone else think that it's not the job of a web browser to do
this? The web browser shouldn't even know about IDN details. The
system's resolver library should convert non ASCII labels to the
Punycode representation when sending querries, and convert back
after receiving responses!

Otherwise how can all my applications support IDN?

-Phil

• Previous message (by thread): Mozilla Implements TLD Whitelist for Firefox in Response to IDN Homogr aphs Spoofing
• Next message (by thread): Mozilla Implements TLD Whitelist for Firefox in Response to IDN Homogr aphs Spoofing
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]