fp.

That was an example- an attacker would slip it in an actual URL change to make it less noticeable- and a good attacker would have their domain work and redirect until the code was deployed in the wild.

fsflover•7mo ago

Qubes OS protects from such attacks by running all software in isolated VMs and not passing the unicode symbols to the host by default, https://www.qubes-os.org/news/2024/07/13/qubes-os-4-2-2-has-...

poincaredisk•7mo ago

You link says the opposite - the change was very annoying for people that use non-english languages (like me), and:

>By default, qvm-copy and similar tools will use this less restrictive service (qubes.Filecopy +allow-all-names) whenever they detect any files that would be have been blocked by the more restrictive service

Also it looks like this is just for filenames? I can't imagine filtering text like this, that would render the system useless for me.

fsflover•7mo ago

The defense of the host (dom0) from the websites comes from not showing the UTF-8 window titles (https://www.qubes-os.org/doc/config-files/#gui-and-audio-con...). Since all you see inside VMs is isolated, you can show any text inside them safely for dom0.

It gets a bit harder with transferring files between VMs as my original link shows, but you can be protected from that too at some cost.

rurban•7mo ago

I also rerported that to github some years ago and pointed them to use a library of mine to catch such confusables, libu8ident. No reaction whatsoever. Compilers and binutils didn't care neither. They don't care about strings, but even not about names.

crtasm•7mo ago

Some good news at the end of the post:

>Update. GitHub has told me they have raised this as a security issue internally and they are working on a fix.

Annual Production of 1/72 (22mm) scale plastic soldiers, 1958-2025

Error-Handling and Locality

Petition for David Sacks to Self-Deport

Get found where people search today

Show HN: An early-warning system for SaaS churn (not another dashboard)

Tell HN: Musk has never *tweeted* a guess for real identity of Satoshi Nakamoto

A Practical Approach to Verifying Code at Scale

Show HN: macOS tool to restore window layouts

30 Years of <Br> Tags

Kyoto

Decision Support System for Wind Farm Maintenance Using Robotic Agents

Show HN: X-AnyLabeling – An open-source multimodal annotation ecosystem for CV

Penpot Docker Extension

Company Thinks It Can Power AI Data Centers with Supersonic Jet Engines

If AIs can feel pain, what is our responsibility towards them?

Elon Musk's xAI Sues Apple and OpenAI over App Store Drama

Ask HN: Build it yourself SWE blogs?

Original Apollo 11 Guidance Computer source code

How Did the CIA Lose Nuclear Device?

Is vibe coding the new gateway to technical debt?

Why Rust for Embedded Systems? (and Why I'm Teaching Robotics with It)

EU: Protecting children without the privacy nightmare of Digital IDs

Using E2E Tests as Documentation

Apple Welcome Screen: iWeb

Accessible Perceptual Contrast Algorithm (APCA) in a Nutshell

AI agent finds more security flaws than human hackers at Stanford

Nano banana prompts, updates everyday

Skills vs. Dynamic MCP Loadouts

Top validated AI-SaaS Ideas are available here

UnmaskIP: A Clean, Ad-Free IP and Deep Packet Leak Checker