Techly NewsGet the app

Get the latest tech news

A proposal to restrict sites from accessing a users’ local network


A proposal to restrict sites from accessing a users' local network without permission - explainers-by-googlers/local-network-access

As long as there is some path forward we should be okay with breaking some use cases (e.g., iframe and HTML subresources that aren't explicitly sourced from local hostnames), but overall we want to minimize breakage. This piece is missing to allow secure public websites to embed non-public resources without running into mixed content violations, with the exception of http://localhost which is embeddable. Currently, some developers can work around this by getting publicly trusted certificates for their servers running on local networks (e.g., Plex getting Let's Encrypt certs under a different subdomain for every install) but it is a substantial engineering and maintenance burden.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of users

users

Photo of Sites

Sites

Photo of proposal

proposal

Related news:

News photo

Meta and Yandex bypassed Android privacy to link anonymous web browsing to app users

News photo

Emerging online scams are making users more vigilant, says Google

News photo

Pro-AI Subreddit Bans 'Uptick' of Users Who Suffer From AI Delusions

« Reddit Sues Anthropic, Accusing It of Illegally Using Data From Its Site
Summer Game Fest 2025 schedule, announcements, new games and everything else to expect »