Recent news of spoofing flaw affecting Konqueror

Dear visitor, welcome to KDE-Forum.org. If this is your first visit here, please read the Help. It explains in detail how this page works. To use all features of this page, you should consider registering. Please use the registration form, to register here or read more information about the registration process. If you are already registered, please login here.

judland

Beginner

Posts: 29

Location: Sask., Canada

Wednesday, February 9th 2005, 12:52am

Recent news of spoofing flaw affecting Konqueror

I suppose many of you have seen this already:
http://www.theregister.co.uk/2005/02/07/…s_idn_spoofing/

I tested this spoofing flaw under my version of Konqueror.... ver. 3.3.2 and it was present.

Is there a work around this flaw with Konqueror 3.3.2 or is it something that is still be addressed?

Go to the top of the page

anda_skoa

Professional

Posts: 1,273

Location: Graz, Austria

Occupation: Software Developer

Thursday, February 10th 2005, 10:48pm

The problem, as far as I understood it, is that it is not a software problem but a character looking equal to another different character.

Its like having l (lowercase L) for I (uppercase i).

I guess the developers of any software using domain names would welcome suggestions on how to represent this to users to make them aware of the difference.

Cheers,
_

Qt/KDE Developer
Debian User

Go to the top of the page