[sbarker]

is browsing an open s3 bucket hacking?

[darawk]

Of course not, but that's a non-sequitur. A privately owned store has a public entrance, but we also are happy to accept the right of the store owner to charge admission or kick out people who cause trouble. Entering the store is not burglary, but staying there against the wishes of the owner is trespassing.

[civilitty]

No one is preventing you from refusing to service a GET request.

[horsawlarway]

Sure, but they haven't expressed any wishes at all.

If a site blocks me because I have an adblocker, I happily leave.

But if a site sends content to my machine... that's on them.

[darawk]

> But if a site sends content to my machine... that's on them.

Do you apply this moral principle in other areas? If your friend leaves their wallet at your house, do you consider the money in it to be yours?

[TeMPOraL]

A site does not send content to you by accident. Literally the very job of a web server is to evaluate whether or not you met the conditions entitling you to content. A HTTP 200 response literally means "here, you can have it".