Aaaand this is why we need to deny access to internal IP addresses from the web. Maybe that can be my 2016 windmill.https://twitter.com/avlidienbrunn/status/680736829679755265 …
-
-
Replying to @mikewest
@mikewest@avlidienbrunn definitely worthwhile windmill target. Breaking existing behavior and satisfactory alternatives makes this tough.2 replies 0 retweets 0 likes -
Replying to @chrisbentzel
@chrisbentzel@mikewest Let's say I'm a WiFi router. What's the easiest way to today to block, unilaterally, access from 3rd-party sites?3 replies 0 retweets 0 likes -
Replying to @BRIAN_____
@BRIAN_____@chrisbentzel@mikewest check referer and origin header and don't redirect to 3rd party sites.1 reply 0 retweets 0 likes -
Replying to @frgx
@frgx@chrisbentzel@mikewest No wonder everything sucks. This is why frame-ancestors should be able to block every type of request.2 replies 0 retweets 0 likes -
Replying to @BRIAN_____1 reply 0 retweets 0 likes
@ericlaw @frgx @chrisbentzel @randomdross @mikewest I think making frame-ancestors work better is less harmful than EPR & just as effective.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.