Comment by jaffathecake
6 hours ago
> So websites can now nag users to allow access to the root of their local disk
No, Chrome doesn't allow this.
Here's a simple demo: https://output.jsbin.com/kekekac/quiet - note that you can't select root, Downloads etc.
In this example
https://web.dev/patterns/files/open-a-directory
I can select Downloads
I could select /boot and ~/.cache. Genius. Given how smart are many Internet users this will definitely not cause any misuse.
After seeing a recaptcha with a QR code. Suddenly those fake recaptchas with a run dialog don't seem too far fetched.
Ah yes, totally secure. I’m sure there will be no unforeseen problems or bypasses.
It's been in Chrome for 6 years and I'm not aware of any problems it's caused.
Yet. It’s not hard to imagine a case where it is a bad idea to give the browser access to the whole content of a directory.
There is a reason why it’s Chromium browsers only, don’t you think?
6 replies →