Bugtraq: Re: International Domain Name [IDN] support in modern browsers allows attackers to spoof domain name URLs + SSL certs.

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: International Domain Name [IDN] support in modern browsers allows attackers to spoof domain name URLs + SSL certs.

From: Bill Brown <bbrown () ists dartmouth edu>
Date: Sun, 13 Feb 2005 22:39:57 -0500

You may want to consider deleting all of the Authorities, and thenadd a specific certificate only when you have called the company andverified the fingerprint of the digital signature.

--
Bill Brown

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

By Date By Thread

Current thread:

RE: International Domain Name [IDN] support in modern browsers allows attackers to spoof domain name URLs + SSL certs., (continued)
- RE: International Domain Name [IDN] support in modern browsers allows attackers to spoof domain name URLs + SSL certs. Nick FitzGerald (Feb 17)
- Re: International Domain Name [IDN] support in modern browsers allows attackers to spoof domain name URLs + SSL certs. Bill Brown (Feb 16)
- Re: International Domain Name [IDN] support in modern browsers allows attackers to spoof domain name URLs + SSL certs. lyal.collins (Feb 16)
- RE: International Domain Name [IDN] support in modern browsers allows attackers to spoof domain name URLs + SSL certs. Tosoni (Feb 17)
  - Re: International Domain Name [IDN] support in modern browsers allows attackers to spoof domain name URLs + SSL certs. Riccardo Murri (Feb 19)