Which is why you should use firejail to prevent browsers from looking at your home directory
Alright Zig Forums...
Cooper Sanchez
Isaac Clark
this.
Dominic Johnson
extremetech.com
Doubt its the first example either. Its been around a long time.
Jayden Lee
2001 called, they want their exploit back.
Grayson Lee
Everytime someone posts a retarded thread like this it astounds me that retards like this can even exist.
But then i realise, this is the norm, this is what current year technomagic fags actually think.
I want to die.
Ryder Parker
She looks clumsy so she is cute! So I wanna rape her!
Landon Rogers
How feasible would it be to websites start providing their js scripts instead of just loading it everytime?
Take for example Zig Forums.
Instead of loading the JS from the server(it could change at any time to get your IP through a vulnerability), they would provide the JS they run so that you can read it and then add it yourself, so you can run all the benefits of JS while on a VPN and being totally safe, since you've read the code that is running.
What if they can use this to check if a file exists?
Then they could know if you installed a certain package, too.
Austin Edwards
You just brought back memories from 16 years ago, man. I was such a retard...
Bentley Watson
You can already do that, just copypaste Zig Forums's scripts into greasemonkey or something, and then use another plugin like uMatrix to block scrips from Zig Forums.
Anthony Jenkins
They can do that especially on windows or mac but also linux.
They can just do frameset-alike targeting html tags on your local files and check for responses or errors (you can even attach debugger in JS!). Let's say you have profile picture on C:/favicon.ico can also do %appdata%/ms/ thumbnails db, ie cookies/history, profile picture on new windows, browser cache favicon.ico etc etc etc they can then screenshot or fetch it with the magic of turing complete Javascript and even hide the code under a base64 -> ??? -> base64 -> html script tags so you'd mistake as just another bloated URI (actually they're very dangerous!).
What's stopping them from doing so? It's free, just neckbeard and no funding required. We hacked android with a measly png file, we hacked windows with a INI text file, an entire server with a malformed GIF, ruby, command address injection on OS or on SQL.
The world is your cloyster.
If you're one of those "proof I don't believe you" people then I'll tell you that they can fingerprint your entire system font list with a simple JS.
Sometimes even a few bytes - bites!