[cap-talk] Firefox breaks the principle of identifiability
Ben Laurie
ben at algroup.co.uk
Mon Feb 7 21:50:35 EST 2005
Mark Miller wrote:
> Ka-Ping Yee wrote:
>
>> Pet names only solve the problem as long as users are not allowed to
>> type URLs into the location bar.
>
>
> Not at all. They can type any URL they like into the URL-location field.
> The issue is then, what is displayed in the Pet Name location field?
> Unless I have chosen to give something the Pet Name
> "www.xn--paypal-4ve.com" or "paypal.com", there's no URL I can type into
> my URL-location field that would cause my Pet-Name-based browser (e.g.,
> the Waterken browser) to apparently display "paypal.com" in the Pet Name
> location field.
>
> If I assign both "www.xn--paypal-4ve.com" and "paypal.com", and if my
> browser uses a Unicode rendered, then I have succeeded at confusing
> myself. What's a use case where I'd do this accidentally? If such a use
> case is sufficiently implausible, then haven't Pet Names solved the
> problem?
The use case is surely where you see www.xn--paypal-4ve.com first and
assign that the pet name "paypal"?
More information about the cap-talk
mailing list