There are a lot of interesting and complex rules around the way Unicode
strings are handled in URIs/IRIs and IDNs in particular. One such case
is the way several characters each map to the "dot":
http://www.lookout.net/2011/06/28/many-stops-equal-a-u002e-full-stop/
Are most spam and phishing filters IDN-aware? Has anyone seen this
technique used in practice to bypass them, or WAFs?
-Chris
There are a lot of interesting and complex rules around the way Unicode
strings are handled in URIs/IRIs and IDNs in particular. One such case
is the way several characters each map to the "dot":
http://www.lookout.net/2011/06/28/many-stops-equal-a-u002e-full-stop/
Are most spam and phishing filters IDN-aware? Has anyone seen this
technique used in practice to bypass them, or WAFs?
-Chris