Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

please add an option to completely block access of any third party website to LAN #244

Open
0xRustlang opened this issue Mar 27, 2021 · 4 comments
Open

please add an option to completely block access of any third party website to LAN #244

0xRustlang opened this issue Mar 27, 2021 · 4 comments
Labels
enhancement New feature or request P2: Medium priority Needs to be fixed eventually stale This probably won't be worked on

Comments

@0xRustlang
Copy link

0xRustlang commented Mar 27, 2021
edited
Loading

please add an option to completely block access of any third party website to LAN

Also chrome is trying to add it in their browser (now they added the option to block access from insecure website

As recent malicious activities against router login pages that are exist for several years this optional option will be great.

Also an option to block localhost also will be great addition.

Thanks.

more sources:
https://blog.nem.ec/2020/05/24/ebay-port-scanning

https://www.ghacks.net/2020/05/25/ebay-is-port-scanning-your-system-when-you-load-the-webpage/?amp

https://security.stackexchange.com/questions/177486/can-websites-access-computers-in-lan-localhost-through-browser-how-to-block-th

uBlockOrigin/uBlock-issues#1070

Block insecure private network requests.

Prevents non-secure contexts from making sub-resource requests to more-private IP addresses. An IP address IP1 is more private than IP2 if 1) IP1 is localhost and IP2 is not, or 2) IP1 is private and IP2 is public.

"This is a first step towards full enforcement of CORS-RFC1918: https://wicg.github.io/cors-rfc1918"

Thank you very much
@0xRustlang 0xRustlang added P2: Medium priority Needs to be fixed eventually enhancement New feature or request labels Mar 27, 2021
@0xRustlang 0xRustlang changed the title [Feature] please add an option to completely block access of any third party website to LAN Mar 27, 2021
@0xRustlang
Copy link
Author

0xRustlang commented Mar 27, 2021
edited
Loading

Or if it is hard to do this in webview, at least please look into adding an option to completely block access to LAN IPs from browser so we can enable it and if we needed to access LAN, we can temporarily disable it.

Also same with localhost will be great.

Thank you very much.

Currently i can block access completely in firefox using ublock origin's advanced mode with these rules.

  • 127.0.0.1 * block
  • 192.168.0.x * block
  • 192.168.1.x * block
  • 192.168.43.x * block

Although these addresses only blocks access to my router web panel.

@CookieJarApps
Copy link
Owner

Thanks, I'll look into this today.

@stale
Copy link

stale bot commented Jun 27, 2021

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

@stale stale bot added the stale This probably won't be worked on label Jun 27, 2021
@stale stale bot closed this as completed Jul 4, 2021
@0xRustlang
Copy link
Author

Thanks, I'll look into this today.

That will be great, Thank you very much.

@CookieJarApps CookieJarApps reopened this Jan 17, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request P2: Medium priority Needs to be fixed eventually stale This probably won't be worked on
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@CookieJarApps @0xRustlang