Aaaand this is why we need to deny access to internal IP addresses from the web. Maybe that can be my 2016 windmill.https://twitter.com/avlidienbrunn/status/680736829679755265 …
@chrisbentzel @mikewest Let's say I'm a WiFi router. What's the easiest way to today to block, unilaterally, access from 3rd-party sites?
-
-
@BRIAN_____@chrisbentzel@mikewest check referer and origin header and don't redirect to 3rd party sites. -
@frgx@chrisbentzel@mikewest No wonder everything sucks. This is why frame-ancestors should be able to block every type of request. -
@BRIAN_____: Entry Point Regulation addresses some of the risk as well.@frgx@chrisbentzel
End of conversation
New conversation -
-
-
@BRIAN_____ Use a bad certificate? <ducks />Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.