[dsl]

But at least you can cease further communications. Feel free to suggest a better idea.

[toomuchtodo]

I love your suggestion, with the caveat that browsers send a pre-flight interrogation request (similar to OPTIONS with CORS) to determine if the origin connection is secure before sending a legitimate request (containing potentially sensitive data).