Phishing w/TenFourFox

Discussion in 'PowerPC Macs' started by Hack5190, Apr 19, 2017.

  1. Hack5190 macrumors 6502a

    Hack5190

    Joined:
    Oct 21, 2015
    Location:
    Stuck on Earth in the USA
    #1
    The way browsers display Punycode (support for foreign characters) has been a potential for abuse since it was implemented. However as Phishing attacks increase, the use of Punycode as a way to fool users has surfaced.

    Punycode allows someone to register domain with foreign characters that will be displayed using only ASCII characters. For example, this page

    [​IMG]

    is actually

    [​IMG]

    (check out the demo web page)

    The workaround is to make FireFox & TenFoxFour display Punycode instead of using only ASCII characters. Here are the needed steps to make the change:

    1. Type about:config in address bar and press enter.
    2. Type Punycode in the search bar.
    3. Browser settings will show parameter titled: network.IDN_show_punycode, double-click or right-click and select Toggle to change the value from false to True.
     
  2. eyoungren macrumors P6

    eyoungren

    Joined:
    Aug 31, 2011
    Location:
    Phoenix • 85037
    #2
    Thank you Hack! I've made this change!
     
  3. eyoungren macrumors P6

    eyoungren

    Joined:
    Aug 31, 2011
    Location:
    Phoenix • 85037
    #4
    Typo…
     
  4. Hack5190 thread starter macrumors 6502a

    Hack5190

    Joined:
    Oct 21, 2015
    Location:
    Stuck on Earth in the USA
    #5
    I don't know what you guys are talking about :D
     
  5. AmazingHenry, Apr 19, 2017
    Last edited: Apr 19, 2017
  6. Hack5190 thread starter macrumors 6502a

    Hack5190

    Joined:
    Oct 21, 2015
    Location:
    Stuck on Earth in the USA

Share This Page