Re: Security Issues

From: Mark Davis (mark.davis@jtcsv.com)
Date: Thu Mar 24 2005 - 11:42:53 CST

  • Next message: Peter Kirk: "Re: 'lower case a' and 'script a' in unicode"

    I agree, in general. Allowing the ROOK chess symbol is not likely to cause
    any problem.

    However, doing a full sweep for confusability is a bit daunting; look at all
    the characters on idn-chars.html (you are welcome to start now ;-). So
    people are proposing at least as an interim step, to reduce the likelyhood
    of problems by excluding non-required characters.

    ‚ÄéMark

    ----- Original Message -----
    From: "Benson Margulies" <bim2005@basistech.com>
    To: "Mark Davis" <mark.davis@jtcsv.com>; "Peter Constable"
    <petercon@microsoft.com>; "Unicode Mailing List" <unicode@unicode.org>;
    "UnicoRe Mailing List" <unicore@unicode.org>
    Sent: Thursday, March 24, 2005 07:57
    Subject: RE: Security Issues

    > It seems to me that the right approach is to focus on confusable sets,
    > not on 'bad characters'.
    >
    > Further, that the implication of a confusable set ought to be on the
    > question of what domains (and such) you can register, not what
    > characters you can use.
    >
    > Once person A has registered a domain using a member of a confusable
    > set, that should preclude other registrations in the set, just as you
    > can't register two domains that differ by a case distinction.
    >
    >
    >



    This archive was generated by hypermail 2.1.5 : Thu Mar 24 2005 - 11:44:06 CST