Internationalized domain names in Linux

Please see <a href="https:&#x2F;&#x2F;bugzilla.mozilla.org&#x2F;show_bug.cgi?id=279099" rel="nofollow">https:&#x2F;&#x2F;bugzilla.mozilla.org&#x2F;show_bug.cgi?id=279099</a> or this site that looks like apple.com<p><a href="https:&#x2F;&#x2F;www.xn--80ak6aa92e.com&#x2F;" rel="nofollow">https:&#x2F;&#x2F;www.xn--80ak6aa92e.com&#x2F;</a><p>regarding homographic or look alike character attacks. As an American only fluent in English I&#x27;m enormously more likely to encounter malicious content than content that is useful to me on internationalized domain names.<p>To make this less likely you can set<p>network.IDN_show_punycode true<p>in about:config for firefox or in your profile directory you can create a user.js file and add this line.<p>user_pref(&quot;network.IDN_show_punycode&quot;, true)

It seems to me what libidn2 should be used instead. As per <a href="https:&#x2F;&#x2F;www.gnu.org&#x2F;software&#x2F;libidn&#x2F;…" rel="nofollow">https:&#x2F;&#x2F;www.gnu.org&#x2F;software&#x2F;libidn&#x2F;…</a><p>&gt; Please be aware that GNU libidn2 is the successor of GNU libidn. It comes with IDNA 2008 and TR46 implementation and also provides a compatibility layer for GNU libidn.

The author is confused. glibc does support IDN, but of course it&#x27;s not enabled by default. The applications that want IDN have to opt in by specifying an appropriate flag.<p><a href="http:&#x2F;&#x2F;man7.org&#x2F;linux&#x2F;man-pages&#x2F;man3&#x2F;getaddrinfo.3.html" rel="nofollow">http:&#x2F;&#x2F;man7.org&#x2F;linux&#x2F;man-pages&#x2F;man3&#x2F;getaddrinfo.3.html</a> (search for &quot;Internationalized Domain Names&quot;)