A lot of seedier sites already abuse these mechanisms, by doing nasty things whe... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		nikanj on Dec 19, 2018 \| parent \| context \| favorite \| on: Google Chrome to stop back-button hijacking A lot of seedier sites already abuse these mechanisms, by doing nasty things when you click to close a GDPR notification, focus a search box, or similar intention. Browsers will probably never be clever enough to tell which clicks had "the right kind" of intention. The arms race continues!

ht85 on Dec 19, 2018 [–]

Yeah but in that case the malicious website should only be allowed to push a single frame, allowing you to escape by going back twice.

This is much better then the current solution where you have to long-clicking the back button and manually pick a safe entry.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact