Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Yeah, I forgot about the exceptions to the Same Origin Policy for a moment there.

Still, I don't see why sites should ever be able to make any request to localhost.



It shouldn't cause a problem unless malicious software is already installed on the user's machine.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: