CookieJarApps / SmartCookieWeb

A secure, open source web browser for Android.
Mozilla Public License 2.0
297 stars 39 forks source link

please add an option to completely block access of any third party website to LAN #244

Open 0xRustlang opened 3 years ago

0xRustlang commented 3 years ago

please add an option to completely block access of any third party website to LAN

Also chrome is trying to add it in their browser (now they added the option to block access from insecure website

As recent malicious activities against router login pages that are exist for several years this optional option will be great.

Also an option to block localhost also will be great addition.

Thanks.

more sources: https://blog.nem.ec/2020/05/24/ebay-port-scanning

https://www.ghacks.net/2020/05/25/ebay-is-port-scanning-your-system-when-you-load-the-webpage/?amp

https://security.stackexchange.com/questions/177486/can-websites-access-computers-in-lan-localhost-through-browser-how-to-block-th

https://github.com/uBlockOrigin/uBlock-issues/issues/1070

Block insecure private network requests.

Prevents non-secure contexts from making sub-resource requests to more-private IP addresses. An IP address IP1 is more private than IP2 if 1) IP1 is localhost and IP2 is not, or 2) IP1 is private and IP2 is public.

"This is a first step towards full enforcement of CORS-RFC1918: https://wicg.github.io/cors-rfc1918"

Thank you very much

0xRustlang commented 3 years ago

Or if it is hard to do this in webview, at least please look into adding an option to completely block access to LAN IPs from browser so we can enable it and if we needed to access LAN, we can temporarily disable it.

Also same with localhost will be great.

Thank you very much.

Currently i can block access completely in firefox using ublock origin's advanced mode with these rules.

Although these addresses only blocks access to my router web panel.

CookieJarApps commented 3 years ago

Thanks, I'll look into this today.

stale[bot] commented 3 years ago

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

0xRustlang commented 2 years ago

Thanks, I'll look into this today.

That will be great, Thank you very much.