[Pkg-kde-bugs-fwd] [Bug 98788] Possible solution to IDN domain spoofing/phising
Stephan Binner
98788@bugs.kde.org
26 Feb 2005 14:45:08 -0000
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
http://bugs.kde.org/show_bug.cgi?id=98788
------- Additional Comments From binner kde org 2005-02-26 15:44 -------
Opera's solution from http://www.opera.com/windows/changelogs/800b2/ :
* Added whitelist of safe top-level domains for IDN.
- TLDs are considered safe if they have implemented anti-homographic character policies or otherwise limited the available set of characters to prevent spoofing.
- Current whitelist contains: :no:jp:de:se:kr:tw:cn:at:dk:ch:li:
- List is in opera6.ini and is updated automatically in the Opera version check.
- Domain names from other top-level domains that contain characters outside Latin 1 will be displayed in punycode, an encoding syntax designed for use with IDNA, specified in RFC3492.