Giorgio Maone wrote:Internal browser requests are quite difficult to discriminate internally, and extension-generated requests are technically indistinguishable from internal browser requests.
Oh... I didn't realize that these requests weren't seen as originating from the webpage.
Thrawn wrote:OK then.
I wonder whether it would be worth introducing a special keyword to tell ABE to filter even internal requests? Eg ALL with an exclamation mark:Site bank.com
Accept from SELF++
Deny from ALL!
Barbaz, if possible, would this interest you?
Absolutely. I like this idea and would definitely use such a keyword. Would give a more fine-grained global control over HTTP requests, and maximize the effectiveness of stuff like the NAT Pinning Rule.
EDIT Stupid question, of course the requests are coming from LOCAL if they're indistinguishable from requests made by the browser. Never mind.