• yum13241@lemm.ee
    link
    fedilink
    arrow-up
    2
    arrow-down
    13
    ·
    1 year ago

    When it’s A FUCKING SECURITY issue, I know damn well what I’m talking about.

      • yum13241@lemm.ee
        link
        fedilink
        arrow-up
        1
        arrow-down
        1
        ·
        1 year ago

        I know damn well what I’m talking about when someone could get scammed on “apple.com” but with a Cyrillic A.

        • mrpants@midwest.social
          link
          fedilink
          English
          arrow-up
          1
          ·
          edit-2
          1 year ago

          You know the problem but not the set of reasonable or practical solutions.

          Anyways I and l look identical too in many fonts. Should we make them the same letter?

          • yum13241@lemm.ee
            link
            fedilink
            arrow-up
            1
            ·
            1 year ago

            No, but that’s what Unicode does.

            The solution is to force font creators to be fucking reasonable, just like how the Cyrillic A looks exactly like the Latin A. They are the same letter. The letters L and I are totally different (in handwriting at least)

            They already did that for CJK. Make characters that look the same in handwriting b have be same codepointer.

    • kattfisk@lemmy.dbzer0.com
      link
      fedilink
      arrow-up
      2
      ·
      1 year ago

      I and l also look identical in many fonts. So you already have this problem in ascii. (To say nothing of all the non-printing characters!)

      If your security relies on a person being able to tell the difference between two characters controlled by an attacker your security is bad.

      • yum13241@lemm.ee
        link
        fedilink
        arrow-up
        1
        arrow-down
        1
        ·
        1 year ago

        The problem is when you can register “apple.com” with the Cryillic A, fooling many.

        The I l issue is caused by fonts, not by ASCII.