Your title seems to be different than your body. By "null referrer", I assume you mean "no referrer". The opening directly situation is the one with no referrer, which is allowed.
We do block the request when the referrer is from an external domain. This is indeed intentional. If you'd like to see this changed, I'd recommend posting a suggestion about it. (It should be doable in an add-on.)