Google CHR to allow site content only on HTTPS sites set by the user
-
A Former User last edited by
Google CHR to allow site content only on HTTPS sites set by the user
https://www.ghacks.net/2018/11/01/configure-chrome-to-allow-site-content-only-on-https-sites/Chrome users may configure the web browser to allow site content, e.g. JavaScript or Cookies, only on HTTPS sites and not on HTTP sites.
One of the things that Internet users may do when it comes to privacy and security on the Internet is to restrict access to certain browser features by sites and services.
Browsers support a wide range of features that are often enabled by default so that sites and applications may use them right away. While that is certainly convenient and better for usability, it may have consequences on privacy and security.
A basic example is WebRTC which all modern web browsers support. Sites may exploit it to get the "real" IP address of the device the user is using even if proxies or VPNs are used.
The effect of the change is that Chrome will block JavaScript execution if HTTP is used and not HTTPS. The same rule can be applied to other content settings, e.g. to Cookies so that cookies are only accepted on sites that use HTTPS.
