LAN port scan forbidder
大小:34.14KiB版本:v 0.5.0更新时间:2021-12-27
Forbid non-LAN web to access LAN
LAN port scan forbidder 的使用方法详解,最全面的教程
LAN port scan forbidder 描述:
用户数:87
分类:生产工具插件
扩展大小:34.14 KiB
最后更新时间:2021-12-27
版本:v 0.5.0
LAN port scan forbidder 插件简介:
这是来自Chrome商店的 LAN port scan forbidder 浏览器插件,您可以在当前页面下载它的最新版本安装文件,并安装在Chrome、Edge等浏览器上。
LAN port scan forbidder插件下载方法/流程:
点击下载按钮,关注“扩展迷Extfans”公众号并获取验证码,在网页弹窗中输入验证码,即可下载最新安装文件。
LAN port scan forbidder插件安装教程/方法:
(1)将扩展迷上下载的安装包文件(.zip)解压为文件夹,其中类型为“crx”的文件就是接下来需要用到的安装文件
(2) 从设置->更多工具->扩展程序 打开扩展程序页面,或者地址栏输入 Chrome://extensions/ 按下回车打开扩展程序页面
(3) 打开扩展程序页面的“开发者模式”
(4) 将crx文件拖拽到扩展程序页面,
完成安装如有其它安装问题,
请扫描网站底部二维码与客服联系如有疑问请参考:
https://www.extfans.com/installation/Forbid untrusted web to scan localhost or LAN.
## Source Code Repo
https://github.com/garywill/LAN-port-scan-forbidder
## What
Webs can try to fetch `127.0.0.1:xxxx` or `192.168.Y.Z:xxxx` to scan your open ports in LAN.
Although browsers have cross-domain protections, webs can't read response contents, **but** can still see the connection succeeds or fails.
There're already reports that some websites using that as tracking fingerprint.
> A web for testing: http://samy.pl/webscan/
## So
Forbid any website behaviors trying to connect to your LAN or localhost, if user is visiting the website via their domains or public IP addresses. (Read the source code `background.js` to see the logic)
> Using JS library [whitequark/ipaddr.js](https://github.com/whitequark/ipaddr.js) (MIT License) v2.0.0 to judge IP range.
### Fallback operation
If user find a web broken, user can temporary set this addon disabled via toolbar button for:
- this one tab
- this one tab and new tabs opened by this tab
- this one window (Firefox only)
- globally
(above can be set as keyboard shortcuts)
there's showy toolbar button badge indicating disabling status.
## Cases when web LAN scan is properly used
Not all LAN-port-scan are evil.
- Some manufacturers provide web for user's browser to scan LAN for their product that need updating.
- Some softwares use `127.0.0.1` communication to interact between native program and web.