[Pkg-kde-bugs-fwd] [Bug 98788] Possible solution to IDN domain spoofing/phising
Thiago Macieira
98788@bugs.kde.org
19 Feb 2005 15:10:34 -0000
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
http://bugs.kde.org/show_bug.cgi?id=98788
------- Additional Comments From thiago kde org 2005-02-19 16:10 -------
Ok, new idea: don't disable the code in any way.
Make Konqueror show an icon "IDN" in the status bar when the ACE (ASCII Compatible Encoding) form doesn't match the Unicode form, and show *both* forms in the Location bar.
When you browse to the problematic site, you would see:
http://www.pаypal.com/ (www.xn--pypal-4ve.com)
This would also happen:
http://www.オンライン.or.jp (www.xn--eckl3qmbc.or.jp)
It wouldn't solve the problem of someone sending email to IDN'ed domains, unless KMail did something similar.