On Mon, 18 Jul 2005, Daniel Senie wrote:
use the customer's billing address, attempt to determine location based
on IP address or some other voodoo? It'll be interesting to see if they
If you look at the webpage of telecomsystems (http://www.telecomsys.com)
they state that their platform is
On Mon, 18 Jul 2005 23:55:08 +0200, Iljitsch van Beijnum said:
> On 18-jul-2005, at 22:49, Brad Knowles wrote:
> > Like Verisign, the people who pay the bills are not the end-user
> > consumers of e-mail addresses and web browsers, and many of the
> > bill-payers are likely to be the sort of pe
At 09:06 PM 7/18/2005, Fergie (Paul Ferguson) wrote:
http://www.advancedippipeline.com/166400372
Interesting. No ability to opt-out, and no signup option. So will
they use the customer's billing address, attempt to determine
location based on IP address or some other voodoo? It'll be
inte
On 18 Jul 2005, at 18:43, Jason Sloderbeck wrote:
I don't know of any other IEEE/NANOG/IETF/ICANN-sanctioned method to
completely confuse even a savvy IT user who is trying to determine the
validity of an SSL site.
If I was feeling especially cynical (and hey, who isn't on a Monday?)
I'd
http://www.advancedippipeline.com/166400372
- ferg
--
"Fergie", a.k.a. Paul Ferguson
Engineering Architecture for the Internet
[EMAIL PROTECTED] or [EMAIL PROTECTED]
ferg's tech blog: http://fergdawg.blogspot.com/
Iljitsch van Beijnum wrote:
On 18-jul-2005, at 23:43, Crist Clark wrote:
Isn't someone more eloquent than I going to point out that that spending
a lot of effort eliminating homographs from DNS to stop phishing is a
security measure on par with cutting cell service to underground trains
to p
At 11:55 PM +0200 2005-07-18, Iljitsch van Beijnum wrote:
Maybe one day I'll tell you about the early days of SIDN.
I've had some pretty extensive conversations with Jaap. I came
pretty close to working for him, even though I'm in Brussels and the
job is in Amsterdam. I've had pretty ex
I don't know of any other IEEE/NANOG/IETF/ICANN-sanctioned method to
completely confuse even a savvy IT user who is trying to determine the
validity of an SSL site.
> There are dozens of ways we know of, and probably more that lie
undiscovered,
> to exploit vulnerabilities in DNS, browsers, and i
Hello everyone, not sure if this is off topic or not
since it is will be operational in nature if I can ever
get the service set up. :-) I'm having the pleasure, or
lack thereof, of ordering some data connectivity via a
very large clec which requires the ilec to provide the
local loops. Well we'
Iljitsch van Beijnum wrote:
On 18-jul-2005, at 22:49, Brad Knowles wrote:
...snip...
If you're not a programmer with direct commit access to Mozilla
and Opera, just how exactly do you expect to have any control over
this process?
Hopefully they make this stuff user configurable.
On 18-jul-2005, at 23:43, Crist Clark wrote:
Isn't someone more eloquent than I going to point out that that
spending
a lot of effort eliminating homographs from DNS to stop phishing is a
security measure on par with cutting cell service to underground
trains
to prevent bombings? It focuses
On 18-jul-2005, at 22:49, Brad Knowles wrote:
The registry customers don't pay the bills of ICANN and the
governments who maintain the ccTLDs.
Governments? You have some strange ideas about ccTLDs.
Okay, fine -- government-authorized organizations, then. Such
as SIDN for .nl,
Isn't someone more eloquent than I going to point out that that spending
a lot of effort eliminating homographs from DNS to stop phishing is a
security measure on par with cutting cell service to underground trains
to prevent bombings? It focuses on one small vulnerability that phishers
exploit,
> On 18-jul-2005, at 18:31, Kuhtz, Christian wrote:
>
> > If there is pressure to adopt IPv6 rapidly in a given
> region, and that
> > given region also happens to drive broadband technology
> evolution, and
> > North America ends up being dependent on cheap equipment primarily
> > driven
At 5:03 PM +0200 2005-07-18, Iljitsch van Beijnum wrote:
The registry customers don't pay the bills of ICANN and the
governments who maintain the ccTLDs.
Governments? You have some strange ideas about ccTLDs.
Okay, fine -- government-authorized organizations, then. Such as
SIDN fo
Thanks,
-Drew
On 18-jul-2005, at 18:31, Kuhtz, Christian wrote:
If there is pressure to adopt IPv6 rapidly in a given region, and that
given region also happens to drive broadband technology evolution, and
North America ends up being dependent on cheap equipment primarily
driven by overseas standards..
I d
:)
True, but, there's actually another angle to consider.
If there is pressure to adopt IPv6 rapidly in a given region, and that
given region also happens to drive broadband technology evolution, and
North America ends up being dependent on cheap equipment primarily
driven by overseas standards
Michael, your idea of mapping confusable characters to a single "master"
character was one of the options which was considered, but rejected.
To see why, consider the Turkish dotless-i in your second example. Now,
to most non-Turkish readers, dotless-i is a homograph of the more common
dotte
On 18-jul-2005, at 16:42, Brad Knowles wrote:
The registry customers don't pay the bills of ICANN and the
governments who maintain the ccTLDs.
Governments? You have some strange ideas about ccTLDs.
The registries pay those bills, and they get their money (in part)
from those who would
> Stephane, can I ask you what your detailed objections are to the
> Moz/Opera mechanism, and could you let me know your proposal for an
> alternative mechanism for preventing IDN spoofing?
I would suggest that an alternative mechanism should include
a set of code points to be used for the on-t
Dave Crocker wrote:
After extensive analysis and discussion, the Mozilla community and
Opera have already produced a fix for this, based on only displaying
Unicode
> IDN labels where the registry publishes and enforces well-defined
> anti-homograph policies, and displaying the Punycode
At 3:22 PM +0100 2005-07-18, Neil Harris wrote:
Neither is beyond the wit of man, particularly given commercial pressure
from registry customers.
The registry customers don't pay the bills of ICANN and the
governments who maintain the ccTLDs. The registries pay those bills,
and they get
Brandon Butterworth wrote:
Already, some 21 TLDs are whitelisted, including .cn, .tw, a number
of European ccTLDs, .museum, and .info. Any other registrars who
want to be supported can simply E-mail Gerv at the Mozilla
Foundation, or his Opera counterpart, and give them a pointer to
their anti-
Stephane Bortzmeyer wrote:
Forwarded Message from Neil Harris <[EMAIL PROTECTED]> ---
...
After extensive analysis and discussion, the Mozilla community and Opera
have already produced a fix for this,
Which is highly questionable and that is rejected by most european
ccTLDs.
>> Already, some 21 TLDs are whitelisted, including .cn, .tw, a number
>> of European ccTLDs, .museum, and .info. Any other registrars who
>> want to be supported can simply E-mail Gerv at the Mozilla
>> Foundation, or his Opera counterpart, and give them a pointer to
>> their anti-spoofing rules.
Stephane Bortzmeyer <[EMAIL PROTECTED]> writes:
>> Already, some 21 TLDs are whitelisted, including .cn, .tw, a number
>> of European ccTLDs, .museum, and .info. Any other registrars who
>> want to be supported can simply E-mail Gerv at the Mozilla
>> Foundation, or his Opera counterpart, and gi
Both Steve Bellovin and Craig Labovitz show up in today's technology
section of the Wall Street Journal.
Information Security
Where the Dangers Are
By DAVID BANK and RIVA RICHMOND
Staff Reporters of THE WALL STREET JOURNAL
July 18, 2005; Page R1
In the world of cybercrime, the bad guys are getti
On Sun, Jul 17, 2005 at 09:49:32PM -0700,
Dave Crocker <[EMAIL PROTECTED]> wrote
a message of 25 lines which said:
> 2. Who is the authority that decides whether a TLD uses an
> acceptable policy?
That's the big problem with this so-called "solution".
On Sun, Jul 17, 2005 at 04:29:52PM +,
Fergie (Paul Ferguson) <[EMAIL PROTECTED]> wrote
a message of 49 lines which said:
> Forwarded Message from Neil Harris <[EMAIL PROTECTED]> ---
...
> After extensive analysis and discussion, the Mozilla community and Opera
> have already produced a fi
31 matches
Mail list logo
