Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> This is not helpful, because only an extremely small proportion of Web users run NoScript, and nor should they have to.

Most (non-technical) Web users also don't run their own web servers, so they aren't affected. Among technical users, the proportion with NoScript is probably not as small.



Their routers do, along with an ever growing number of IoT devices people happily hook up to their WiFi without a second thought.

Given the long and gory history of companies releasing insecure by default devices methods like this are a legitimate entry point into a network.


Most users have a modem or router that comes with a web interface, like just about everything in the internet of things.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: