• refalo@programming.dev
    0·
    2 months ago

    duckduckgo, icon.horse and favicongrabber.com also have their own APIs for this

    I bet there is a way this could be abused in order to proxy/tunnel arbitrary requests via google IPs. Even if it’s slow and must be done through e.g. PNG image data and dynamic subdomains or something, it would still be possible.

  • FrostyPolicy@suppo.fi
    0·
    2 months ago

    Why would you ever want to route your request like this through a third party especially an ad company? To get the favicon of a site you just request www.example.com/favicon.ico.

    • bleistift2@sopuli.xyzEnglish
      0·
      2 months ago

      It doesn’t have to be an *.ico file. So you might need to try different file extensions.

      • who@feddit.orgEnglish
        0·
        2 months ago

        So you might need to try different file extensions.

        No, you don’t. The HTTP response header will tell you what type it is. Anything using file name suffixes to determine content type on the web (unless it’s just a fallback guess) is broken.