Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
netikras34840134d@TenHands FYI, you're blessed with oblivion, and it's because of the paranoid security folks, that you have the luxury of living and working in an environment that seems safe and cosy. And living in that bubble one eventually comes to believe that there's nothing to worry about, that you don't need those security guys getting in your way, they aren't doing anything anyway...
-
electrineer29789134dHot take: giving external scripts permission to contact third parties is inherently not secure, but it won't be fixed because that would break tracking and ads. Restricting access based on local/private/public domains is just a bandaid that will be a hindrance to an attacker.
-
Demolishun35039134d@electrineer I think Windows has enough of its own exploits. The exploit queue is full for Windows. Remember that Simpsons where the Mr. Burns can't get sick because he has all diseases? It is like that.
Related Rants
A while ago I was asking wtf is this new trend with using 0.0.0.0 as a target address for connect()'ing TO.
Turns out, I was asking the right questions. This nonsense will soon be blocked in browsers, as it's a dumb security issue.
ref.: https://oligo.security/blog/...
random
cybersecurity
cybersec
nonsense
0.0.0.0
wildcard
security
vulnerability
devops