|
|
|
|
|
|
by fiddlerwoaroof
2540 days ago
|
|
|
It isn’t really a “major attack surface” and it would be better to configure routers to rewrite DNS responses within the subnet that they control by default than to add an arbitrary set of rules to browsers, breaking all sorts of developer tools and other useful functionality. Also, legitimate services on the local network have tools like CORS and CSPs as well as standard anti-XSS and anti-CSRF techniques to use to defend themselves. |
|
|
Based on history I know which group I would expect to implement first.