The Daily Static
  The Daily Static
UF Archives
Register
UF Membership
Ad Free Site
Postcards
Community
Geekfinder
UFie Gear
Advertise on UF
Forum Rules
& FAQ

Username

Password


Create a New Account

  
 

Back to UserFriendly Strip Comments Index
Can someone explain this to me in english? by voxwoman2006-11-19 12:55:59
  Here goes.... by Radagast30 2005-02-08 06:11:20
By using a "trick" with the way browser display certain type of charactersets one could pretend to be your online bank, paypal or any domain they like.

From what I've read Internet exploder does it right for once and the exploit doesn't work there, in mozilla you can turn off en option so it can't be exploited there as well.

What happens is they use a type of characters which the browser can't handle correctly and thus displays a seemeingly correct URL e.g. http://www.paypal.com while in reality the URL is http://www.payp0l.com.

They abuse misinterpretation on the browser side.

Hope this shed some light on the matter, for now you can keep online banking as long as you use either IE or mozilla with the IDN setting off.

IDN is the interpretation part that can make this happen, it's described in your clicky how to turn this off in mozilla.

If you use any other kind of browser I'd be very carefull with online stuff as there are bound to be evil persons trying to steal domains. (Sublimal comercial message: Use Mozilla Firefox!)
[ Reply ]
    IE doesn't 'do it right' -- it doesn't support IDN (n/t) by fudje2005-02-08 06:46:05
    From what I just read on the link she gave by shorty822005-02-08 08:15:18
      There is a hack that changes the setting by Peace_man2006-11-19 12:55:59

 

[Todays Cartoon Discussion] [News Index]

Come get yer ARS (Account Registration System) Source Code here!
All images, characters, content and text are copyrighted and trademarks of J.D. Frazer except where other ownership applies. Don't do bad things, we have lawyers.
UserFriendly.Org and its operators are not liable for comments or content posted by its visitors, and will cheerfully assist the lawful authorities in hunting down script-kiddies, spammers and other net scum. And if you're really bad, we'll call your mom. (We're not kidding, we've done it before.)