Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> I was shocked that they recommended we install ad-blockers as a corporate policy.

It's solid policy. The problem with ads in this regard is really that they allow random strangers to run code on your machine. That's never a good security practice.



Exactly. I'm actually surprised that it's not standard policy to block ads at most companies.

Browsing sites at work is a frequent reminder of why I block ads at home.


You'd think they'd have a corporate version of a PiHole as well.


That’s true of any JavaScript though right?


Imagine I only visit websites like the New York Times.

If an evildoer with a browser 0-day wants to target me, without an ad blocker any of a thousand companies can pay a few cents to have their javascript served to me. If I run an adblocker, there are a lot fewer ways to get their code in front of me.

A statistical argument, in other words - that being exposed to code from 10 vendors is safer than being exposed to code from 1000 vendors.


Yes, it is. Which is a pretty large problem, and is why I don't allow JS to execute by default. I do whitelist specific things if the need is great enough.


Do you supposed it is possibly more true for ads? There's "well, technically, yes" and then there's "which is the more realistic threat, an ad network or the JavaScript that the NYT serves up?"




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: