Comment by ryanlol
9 years ago
Intent is to evade firewalls that allow per-application rules, such as Little Snitch (I think?) and Windows firewall.
9 years ago
Intent is to evade firewalls that allow per-application rules, such as Little Snitch (I think?) and Windows firewall.
> such as Little Snitch (I think?)
Correct. It is likely users allow their primary browser full access to all hosts on ports 80 and 443, if not all ports.
Additionally, launching the browser gives you easy access to all the tastey session cookies and access to their keychain (I assume a lot of people give their default browser on OSX keychain access).
Oh, duh. Wow, dumb me. One of those "can't see the forest for the trees" mistakes on my part. Thanks for the reality check!