@christian_zerfass @Gargron it's as if "platform stockholders' interests" and "platform users' interests" were largely not aligned. :thinksphere:

@jerry I feel I need to ask for clarification on what exactly "keeping it together" in this very particular context means, but I don't think I will.

@waweic @xpil and replace them with what

@spyro @xpil @silmathoron doubtful. But go have a look at all of the Unicode and come back to me with a *complete* list of *all* look-alike characters, I'll wait.

And then I'll let you ponder the problem of checking if a given domain being registered is a "lookalike domain" of any other domain.

Consider that there are going to be dozens of lookalike characters, and you need to check for all possible combinations for a given domain. Because you're not checking against non-IDN domains, right?

@spyro @xpil @silmathoron in that case I await your tool that solves this problem for everyone. Clearly so far nobody was smart enough to write one, be the hero you want to see in the world!

@spyro @xpil @silmathoron here's my problem with this: you waltz in here, implying a certain thing is easy to do, after a whole thread showing how this is a major issue for DNS and InfoSec communities, and has for years.

Somehow plenty of well-resourced organizations have not found a good solution to this. But you seem to be convinced it's easy.

So it's not unreasonable to call you out on it and say "prove it". Plenty of stuff looks way easier than it actually is, especially from outside.

@spyro @xpil @silmathoron here's a very illustrative XKCD that might help explain what I mean:
https://xkcd.com/1831/

@remcoboerma @xpil *and* it's all based on particular user's past browsing history, not some dreamed-up list of global rules, nor on some (inevitably biased) "AI".

Nice!

@TerryHancock @xarvos @silmathoron @xpil what about "émigré.tld" then.

@TerryHancock @xarvos @silmathoron @xpil sure, we could have some rules like that, and they would be *somewhat* effective.

They would not solve the problem in general though.

Doesn't mean we should not try them, of course.

@xpil internationalized domain names (aka. IDNs) are a hugely difficult subject.

On the one hand, yes they enable these kinds of attacks.

On the other hand, speakers of languages using alphabets different than plain ASCII should have the technical ability to use their alphabets and scripts online in full capacity.

There is no good, clear solution, still. Using punycode solves the security angle, but dramatically reduces usability for anyone using non-ASCII script. I.e. most of the world.

@xarvos @silmathoron @xpil that obviously makes all IDN websites immediately look suspicious, even if they are completely innocent.

@drwho why not have a conversation with them, up close, coughing all. the. time.

@lmorchard oblig. https://yewtu.be/watch?v=9nVBZieBmXI

What an absolute windbag:
https://hard-drive.net/hard-drive-apologizes-to-elon-musk-for-dunking-on-him-too-hard/

> “The reason you’re not funny is because you’re woke,” Musk tweeted shortly after actively sharing a meme that he thought was funny. “Wokism is a lie, which is why no one laughs.”

[link CW: Elon]

@makarygo @PaulaToThePeople there was, and here are the recordings: https://tube.tchncs.de/c/future_fiction/

It was pretty good!

> If Russia achieves victory in the 2nd phase of the war & declares unilaterally ceasefire, which will be welcomed by France and Germany, this would mean not only defeat for Ukraine but freezing the conflict until Moscow replenish forces and strikes back in other parts of Ukraine.
https://nitter.it/vtchakarova/status/1530991795848593410#m

Everyone needs to read this :birdsite: thread.

Talking about cease-fire or "peace" that includes Russian occupation of Ukrainian territory is just appeasement.

@nbering @jerry very much this.

We *should* be teaching kids programming, as a way of showing them that computers are not magic, and giving them some agency in the digital world.

Instead we're teaching kids coding to make them better code monkeys in the tech industry grinder.

Yes, I am annoyed by this.

@alcinnz @logan @feditips @Reiddragon exactly. Onion addresses are more like IP addresses than domain names, in how they work. In the sense that they are globally unique identifiers that are not "human-readable".

Having IPv6 addresses allocated the way Onion addresses are (that is, based on a public key fingerprint) would be a huge win indeed: no central authority, and ability to have IPsec enabled by default for every connection.

Interesting how it would interact with BGP.

@EnjoyYourMastodon this hits too close to home