Hello, On Monday 07 February 2005 16:53, Kastus wrote:
On Mon, Feb 07, 2005 at 04:00:42PM -0600, Joe Morris (NTM) wrote:
Marcus Meissner wrote:
...
It could be that your DNS is not resolving the fake www.paypаl.com (the letter before l is not "a") and not that mozilla is not vulnerable.
Here, www.paypаl.com resolves to 198.41.1.35, while real www.paypal.com resolves to 216.113.188.34 216.113.188.64 216.113.188.33 216.113.188.65 216.113.188.66 216.113.188.35
Cut and paste this string into a shell (do not retype it) and see what it returns:
Another technique is this (again, using copy-and-past, not typed entry): % echo "http://www.paypаl.com/" |od -c 0000000 h t t p : / / w w w . p a y p 320 0000020 260 l . c o m / \n 0000030 Here the fact that the second 'a' in "paypal" is not what it might appear to be is quite obvious.
...
-Kastus
Randall Schulz