?

Log in

No account? Create an account
entries friends calendar profile It's Me Previous Previous Next Next
The Autobiography of Russell
Life from a different perspective
zimzat
zimzat
Very bad, 'new', standard/browser exploit. Affects virtually every browser.
This was in the GameHavoc forum the other day. I thought I should pass it along so anyone else who uses FireFox (or any other browser, really) can know about it as well.

Basically, there is an exploit that allows sites to be 'phished' very easily, however there is a work-around in Firefox and the Mozilla Suite.

As an example of how bad this really is, check out one of these links (mouse over, click, copy and paste, etc): http://www.pаypal.com/ or https://www.pаypal.com/

To disable this in Firefox and Mozilla, enter about:config in the address bar, search for network.enableIDN, and set it to false.

Read the thread for more information.

Current Mood: tired tired
Current Music: "True Colors" by Phil Collins

3 comments or Leave a comment
Comments
scixual From: scixual Date: February 9th, 2005 01:16 am (UTC) (Link)
I don;t seem to have that entry under about:config
zimzat From: zimzat Date: February 9th, 2005 01:35 am (UTC) (Link)
You have to search for it as exactly "network.enableIDN", no spaces. If you still can't find it, the only thing I can think of is you're using Firefox < 0.6
scixual From: scixual Date: February 9th, 2005 05:11 am (UTC) (Link)
Ah, okay, found it. Thanks.
3 comments or Leave a comment