PunyCode Protection

Warns on clicking links and arriving into sites which uses PunyCode.

Yazar
jcunews
Günlük kurulumlar
0
Toplam kurulumlar
87
Değerlendirmeler
3 0 0
Versiyon
1.0.4
Oluşturulma
21.04.2017
Güncellenme
05.04.2021
Lisans
N/A
Geçerli
Tüm siteler

This is a protection against PunyCode abuse as described in below article.

https://arstechnica.com/security/2017/04/chrome-firefox-and-opera-users-beware-this-isnt-the-apple-com-you-want/

Notes:

  • Only sites whose host name uses Latin-extended or Latin-like characters, will be warned.

  • When clicking on a static link, confirmation dialog will be triggered only if points to a different site whose host name contains suspicious punycode (as described above).

  • Scripts will still be able to navigate to a possibly fake website in the current tab without triggering the confirmation prompt. However, upon arriving to the website, the user will still be prompted with a confirmation dialog.

  • Scripts that open a possibly fake website in a new tab will trigger the confirmation prompt.