Why is this allowed https://www.wordfence.com/blog/2017 /04/

File: Screenshot_36.png (5KB, 282x59px) Image search: [Google]

5KB, 282x59px

>>59957451
Vivaldi doesn't have this issue

>>59957451
Only effects Firecucks here.

>>59957451
>fake website
>secure
https was a mistake

>Can I fix this if I use Chrome?
Currently we are not aware of a manual fix in Chrome for this. Chrome have already released a fix in their ‘Canary’ release, which is their test release. This should be released to the general public within the next few days.
Until then, if you are unsure if you are on a real site and are about to enter sensitive information, you can copy the URL in the location bar and paste it into Notepad or TextEdit on Mac. It should appear as the https://xn--….. version if it is a fake domain. Otherwise it will appear as the real domain in its unencoded form if it is the real thing.

>>59957451
Spooky.

>>59957493
That is because Vivaldi's address bar is not capable of many of the things that make this exploit possible.

>>59957451
unicode was a big, fat mistake. Every day we stray further from the one true god, ASCII.

Not a new thing. Firefox has an option to defeat these but it fucks up non-latin urls

Why do people even still use other alphabets?

>>59957659
>>59957722
This.
Non latin alphabets must be purged

>>59957678
and what is the option?

>tfw you use SeaMonkey

>>59957780
about:config
network.IDN_show_punycode
set it to true

unicode urls will show up as a bunch of dashes and seemingly random letters and numbers which completely destroys the trick and makes them look even more suspicious

File: Screenshot_1.png (5KB, 402x64px) Image search: [Google]

5KB, 402x64px

>>59957451
This is already fixed in the canary build.
>it's literally fucking nothing

>>59957657
So vivaldi's url bar is too stupid and simplistic to be able to trick it? That's what I'm getting from your post

>>59957815
thank you based anon

>>59957502
*Affects
Chrome, too.

This shit is not even funny. It got me not only 15 days ago. Had to buy some random shit and the site seemed fully legit. Thank god i only spent 5 dollorino on the site.
But how is this shit even allowed ffs. How does it happen that the most popular fucking browser can't even display fucking URLs right?

>>59957659
Unicode is a great big mess. Unicode is a waste.

>>59957902
Why would Vivaldi's url bar trick anything? That is what I am getting from your stupid post.

You can not buy Unicode .com domains because of this. At last since the last time I checked.

>>59957451
>https://www.wordfence.com/blog/2017/04/chrome-firefox-unicode-phishing/

Oh, "punycode" again! When I first heard about that, I immediately registered a domain. It's cute, but silly.

I could have sworn that a year or so ago they disabled punicode Unicode display in Chrome. I thought my neat URL stopped working as intended (i.e. it would show the xn-- version).

Am I imagining that, or did they go back on a reversion the last time this "vulnerability" was discovered?

>>59958090
>How does it happen that the most popular fucking browser can't even display fucking URLs right?
they are displaying them just fine
you just could not tell them apart at a glance

>>59957600
no it wasn't. Transport security has no logical connection to authenticity. What you want makes us go back to the stone age where you need to apply for https certs with big companies that can extort their position for money, punish you for doing a good job and revoking your stolen cert, decide who's trustworthy purely on their own little criteria, etc. Fuck off

>>59957772
>>59957722
>>59957659
>t. muricunts
That said I do myself never use diacritics even in diacritics-heavy languages like french, and I buy my laptops abroad so that they have qwerty instead of my national default azerty with its moronic symbol layout and diacritics

There's a config setting in Firefox that you can set that permanently disables all punycode=>unicode translations, so that any non-basic-latin domain name will show up with its xn-- form.

This is probably what you want to do; you'll never ever encounter a legit site with a non-basic-latin domain name. Why rely on lists and algorithms?

>>59958419
If you use any language besides english on the internet you should delet yourself from this world.

File: cuckera.png (24KB, 1366x768px) Image search: [Google]

24KB, 1366x768px

>>59957502
affects opera too
>>59957493
should I get vivaldi?

>>59958480
Did I say I do that? Did I? No I didn't. Fuck any language besides english on the internet.

You'll have a hard time removing them from the world though. That said my pals and I actually speak english to each other half the time despite it not being our mothertongue or even one of our national languages

>>59958500
So you were in that group of kid in school who would speak English with each other to look cool.

>>59958500
I know, that's what you said in your first post. I'm talking about people who do.

in my autistic world dictatorship everyone would be forced to learn a form of lojban

>>59958603

>Hey! Stop practicing a valuable skill!

Maybe if you did that, your English skills would be better.

>>59957451
Epiphany doesn't have this issue.
Unicode was a mistake.

File: wayland-screenshot.png (58KB, 1920x1080px) Image search: [Google]

58KB, 1920x1080px

>>59958759

Forgot that

>>59957866
What was the fix? Did they just disable punycode entirely?

>>59957722
>>59957772
>>59958480
Fuck you globalist cunts

>>59958788
>Wayland
How stable is that shit now?

>>59957815
Thanks

>>59957493
Edge doesn't either.

>>59958805
You can speak whatever backwards language you use in your 3rd world country when crying for your mom to bring your tendies, but productive people should use english so other people can build on their work, instead of having to use google translate to understand what vladimir and hans were doing writing some program.

>>59958822
100% stable, it's actually not just wayland, but pure wayland, not X11 compable.

File: wayland-screenshot.png (186KB, 1920x1080px) Image search: [Google]

186KB, 1920x1080px

>>59958855
screen/

>>59958822
There is versions of firefox and chromium for native wayland.

Blame the faggots at w3 or ICC or whatever those idiots are. They allowed Unicode in the URL. The browsers aren't at fault here, they are on a double edged sword.

>>59957451
2001 called.

>>59958915
Blame the faggots at ISO or POSIX or whatever those idiots are. They allowed Unicode in the OS. W3C and ICC aren't fault here, they are on a double edged sword.

>>59958877
>>59958910
Gonna give a try then.

>>59958994

What GPU are you using?
On intel it's perfect, on nouveau and amdgpu also works well, but nvidia proprietary driver...
Compositors not ready for it yet.
Proprietary software is cancer.
Behead those who insult Free Software and Gentoo.

>>59958753
So you were also that kid who corrected everyone linguistic mistakes.

>>59958500
Where are you from?

>>59958963
Blame the faggot Steve Jobs or whatever that idiot is. He created the computers thus allowing for Unicode to be created for the OS. ISO/POSIX aren't at fault here, they are on a double edged sword.

File: Screen Shot 2017-04-19 at 6.06.28 AM.png (101KB, 1505x993px) Image search: [Google]

101KB, 1505x993px

Safari doesn't have this problem™

>>59957451
Unicode was a mistake.

I'm using chromium (57.0.2987.133) and It shows https://www.xn--e1awd7f.com/ in the address bar.

It fucking baffles me that they ever decided to allow non-ASCII text in the superbar
Fucking retarded

>>59958743
.i u'i doi le pendo

File: Screenshot_2017-04-18_21-37-18.png (16KB, 490x107px) Image search: [Google]

16KB, 490x107px

>>59961346
>Inox
>Version 57.0.2987.133 (64-bit)

So much for muh security

>>59961373
Lots of urls in the Middle East and China were strings of long numbers because they were easier to remember than latin character equivalents. Unicode is necessary

>>59961434
Seriously?
That's bizarre

File: 1492562669.webm (388KB, 1920x1080px) Image search: [Google]

388KB, 1920x1080px

>>59961426
57.0.2987.133 built on Debian 9.0, running on Debian 9.0 (64-bit)