this post was submitted on 12 Dec 2023
93 points (87.2% liked)

Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ

54669 readers
417 users here now

⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.

Rules • Full Version

1. Posts must be related to the discussion of digital piracy

2. Don't request invites, trade, sell, or self-promote

3. Don't request or link to specific pirated titles, including DMs

4. Don't submit low-quality posts, be entitled, or harass others



Loot, Pillage, & Plunder

📜 c/Piracy Wiki (Community Edition):


💰 Please help cover server costs.

Ko-Fi Liberapay
Ko-fi Liberapay

founded 1 year ago
MODERATORS
 

I've never seen any website cause a firewall permission request

you are viewing a single comment's thread
view the rest of the comments
[–] notfromhere@lemmy.one 98 points 11 months ago* (last edited 11 months ago) (8 children)

Word of caution, if you have been browsing successfully until now, it could be a malicious javascript app or malware loaded from that website that is attempting to scan your network or do other things. In other words if this is a new firewall request above and beyond the standard one librewolf needs to function, proceed with cation.

[–] waigl@lemmy.world 7 points 11 months ago (4 children)

In theory, that shouldn't even be possible with JavaScript. There's such a thing as same-origin policy for that exact reason...

[–] notfromhere@lemmy.one 4 points 11 months ago* (last edited 11 months ago) (1 children)

Malicious javascript seeks to bypass security controls. It’s one of the reasons NoScript is a thing. It could be a malware loaded from an ad. Biggest reason for adblockers imo.

Check out this link for learning about this stuff.

https://heimdalsecurity.com/blog/javascript-malware-explained/

[–] waigl@lemmy.world 7 points 11 months ago (1 children)

I've read that article. It is complete garbage and doesn't explain anything at all. It's just standard cookie cutter fear mongering to sell some random antivirus software.

[–] notfromhere@lemmy.one 4 points 11 months ago

That article is for lay-persons and really an awareness article I surmise. If you’re technical you are likely already aware of the security concerns with jacascript.

load more comments (2 replies)
load more comments (5 replies)