I understand why GitHub - Kicksecure/open-link-confirmation: Asks for confirmation before opening links - For better security. - Asks before a link is (accidentally) opened in a browser to avoid linking activities. would be a good idea for Whonix/Tor Browser but how would that be helpfull from a straight security perspective (SecBrowser)?
Good question.
Malformed links might exploit the browser or trigger other unwanted features.
Not sure the attack surface of open-link-confirmation would be lower than the attack surface by browsers.
Open for comments.
2 Likes
Sometimes a user might accidentally click a link in a PDF that he doesn;t intend to and it might take him to a harmful site. The confirmation dialog makes sure this doesn’t happen.
2 Likes