Matthew Szudzik wrote (2010-08-05 19:50:16):
> http://en.wikipedia.org/wiki/IDN_homograph_attack
Try this in a default 4.7/i386 wscons console:
printf 'set -x\nnslookup www.AAA.com\nnslookup www.AA\300.com\n' > 1
less 1
sh 1
See: sys/dev/ic/pcdisplay_chars.c
Remedy:
#!/bin/sh
# Public domain.
wsfontload -N my /usr/share/misc/pcvtfonts/iso8859-1-euro.816
cat > wsfontuse.c << 'Q'
#include <sys/ioctl.h>
#include <fcntl.h>
#include <string.h>
#include <dev/wscons/wsconsio.h>
int main(int argc, char **argv)
{
struct wsdisplay_font f;
int d;
d = open(argv[1], O_RDWR, 0);
bzero(&f, sizeof f);
strlcpy(f.name, argv[2], WSFONT_NAME_SIZE);
if (ioctl(d, WSDISPLAYIO_USEFONT, &f) == -1)
return 1;
return 0;
}
Q
cc -o wsfontuse wsfontuse.c
for i in /dev/ttyC*; do ./wsfontuse $i my; done
