[Webkit-unassigned] [Bug 171934] Content from loopback addresses (e.g. 127.0.0.1) should not be considered mixed content
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue May 26 18:51:09 PDT 2020
https://bugs.webkit.org/show_bug.cgi?id=171934
--- Comment #65 from homakov <homakov at gmail.com> ---
Gotta love “the fact” part without any argumentation. Me and a few other people gave argumentations above.
No, “fingerprinting threat” and other scriptkiddy attacks do not count as valid reasons to stop a range of use cases of browsers talking to 127.0.0.1 _some way, without forging self-signed SSL certs_
One more observation: you are the *only* person against. Please name any other person here who sees blocking localhost as the only solution, given to us as “a fact”? Not single one, I’m afraid.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20200527/0d474629/attachment.htm>
More information about the webkit-unassigned
mailing list