Last modified: 2010-05-15 15:41:15 UTC
I suggest an enhancement where there's a setting so usernames cannot be made using unicode characters.
There's a blacklist, but the amount of possible combinations of unicode characters is massive--there's
even a swastica.
I am mostly concerned with the ability of user spoofing. For example, many
letters like a,o,e,k,p,... exist in cyrilic alphabet, and even though they look
identical, they have different unicode codes. So it would be possible to create
a user name with a mixture of two alphabets that look identical to an existing
user. (I hope a check like this has already been implemented, but if not...).
I noticed a few years back when registering for certain names on yahoo for chat or profile (I forgot)
it forced them to be lowercase when previously it allowed uppercase. I assume that's due to the
whole I/l and O/0 thing.
See bug 2290. Is that what you mean?
All usernames are Unicode.
Duping to bug 1524, since that's probably what they're getting at.
*** This bug has been marked as a duplicate of 1524 ***