undefined | Better HN

0 pointssouterrain6y ago0 comments

Port scanning from a user’s browser is effectively sneaking behind a user’s firewall. The only legitimate reasons I can envision are security research, and this, to me, is such a small edge case that I’m not sure such access is ever warranted.

I’d be all for a user notification that says “fnord.com wants to access 192.168.0.10 on tcp/443, which seems to be a web server on your home/work network. Are you sure you want to allow this?” I’d want to see this for each new access request, such that port scanning would not be a use case that was supported.

Sure, have an about:config toggle to shut this off, with appropriate warnings.

0 comments

2 comments · 2 top-level

kchr6y ago

This. It could even have a "remember my choice for this domain/subdomain".

1014046y ago

I wonder if there is a browser add-on for that...?

j / k navigate · click thread line to collapse