Hacker News new | ask | show | jobs
by mrgriscom 4143 days ago
Isn't this exploiting the same kind of Unicode ambiguity that allowed phishing sites to impersonate trusted domains by substituting certain latin characters with identical-looking cyrillic equivalents? I would expect this capability to last long in the wild.
3 comments
konstruktors 4143 days ago
Interestingly, none of those "zero-width" characters are allowed in IDN domain names http://unicode.org/faq/idn.html#22
link
_jomo 4143 days ago
These domains are displayed in their punycode notation, at least in Firefox, so that doesn't work anymore.
link
mrgriscom 4143 days ago
would->wouldn't
link