tag:help.tenderapp.com,2008-11-12:/discussions/problems/79995-idn-mail-not-allowed-for-platform-registrationTender: Discussion 2018-10-18T06:27:50Ztag:help.tenderapp.com,2008-11-12:Comment/439878102017-11-08T22:57:29Z2017-11-08T22:57:29ZIDN Mail not allowed for platform registration<div><p>Ah, yes, we still are living in the stone age. Es tut mir leid! However with a good reason. The problem was that IDN addresses have a spoofing attack. e.g. <code>bob@pаypal.com</code> which is actually <code>bob@xn--pypal-4ve.com</code>. Is there a recent solution to this?</p></div>Courtenaytag:help.tenderapp.com,2008-11-12:Comment/439878102017-11-09T09:08:39Z2017-11-09T09:33:38ZIDN Mail not allowed for platform registration<div><p>Well, in your example it is easy, because the first "a" (kyrillic az?) looks different in that typewriter font than the second one.<br>
In general, the solution to spoofing is a good amount of common sense (which lacks for many internet users, as I have to admit).</p>
<p>Probabely I have to buy the domain "their-IT-is-from-stoneage.de" and use that for sites whose IT is from stone age...</p></div>Eckhard Rüggebergtag:help.tenderapp.com,2008-11-12:Comment/439878102017-11-09T09:47:52Z2017-11-09T09:47:52ZIDN Mail not allowed for platform registration<div><p>Yes, it looks different in typewriter font but doesn't look different in basic body font like the times new roman we use like this: bob@pаypal.com .. or say wіkіреdіа.org and wikipedia.org UGH Anyway, that's mainly why we don't support it. Also, my neandertal DNA. I agree we can easily block unicode ranges for cyrillic and allow others, i.e. allow basic stuff like umlauts -- but then our ukranian customers are going to ask for characters and it's a mess. It's easier for lazy me to just stuck with rfc2822 or whatever it is for now. I hope a solution presents itself.</p></div>Courtenaytag:help.tenderapp.com,2008-11-12:Comment/439878102017-11-09T15:02:23Z2017-11-09T15:02:24ZIDN Mail not allowed for platform registration<div><p>And what exactly is the problem if Bob from the kyrillic pаypal.com registers with his semi-kyrillic email address, as long as it exists? He sends you mails, and you send him mails. I see no harm in that!</p></div>Ecckhard Rüggebergtag:help.tenderapp.com,2008-11-12:Comment/439878102017-11-09T22:23:26Z2017-11-09T22:23:26ZIDN Mail not allowed for platform registration<div><p>A customer sends me an email, "Can you reset my password" or "Can you send me an export of our data", with a spoofed address. Or, on a public forum a user from thecompany.com is replying but it's not the actual domain.</p></div>Courtenay