Hacker News new | ask | show | jobs
by kubanczyk 1392 days ago
A primer (taken straight from GP's first link):

> the full case foldings are superior: for example, they allow "MASSE" and "Maße" to match.
2 comments
skupig 1392 days ago
This sounds like a fun vulnerability to find in a password reset flow
link
thrdbndndn 1392 days ago
Yeah but isn't email address in ascii? I still have no idea why it would be different.
link
umanwizard 1392 days ago
> isn't email address in ascii?

Yes in the basic SMTP RFC, but there are extensions that allow non-ascii local-parts.

link
tssva 1392 days ago
Another falsehood to add to the list.
link