Back in 2009, anynone with a Nokia could have a personal website running on their own phone. Sadly this amazing piece of tech was never widely adopted. Today’s phone are far more powerful than those Nokias both in performance and battery backup and still we don’t see anyone running a server on their phone. Why?
I think this was never implemented on phones because there’s no incentive for large corporations to work on something like this.
This would be such an appealing attack surface. Get a bot net node and someone’s personal info in one swoop? Just wait 4-5 years for a bunch of phones with this feature to stop receiving security updates and then set your bots loose.
And the opportunity for personal attacks… Don’t like someone? Blow up their phone with a DDOS! Kill their battery and online connectivity with constant http requests.