The long-running thread Site-Specific Permissions
covers this general topic, and the feature is eagerly awaited by many. In the meantime, this work-around might help:
Don't whitelist any domain involved in this issue. In NoScript > Options > General, check "Allow sites opened through bookmarks." This *should* allow the scripts from Facebook (it might not recognize fbcdn, which you might have to whitelist), while not allowing Facebook scripts at other sites.
Keep in mind that this option means that every other site in your bookmarks menu will be allowed when you click those, so make sure that you want to do that. I have some sites bookmarked for which I do *not* allow their own scripting, so I can't use this method.
who wants to click allow temporary permissions ever time they go to facebook
That's really the safest solution. It takes only a couple of clicks, and solves all of your issues regarding other sites loading FB scripts. Privacy and security versus convenience -- always a trade-off. Personally, I'm willing to do the few extra clicks.
On a side note, is any one as pissed off as i am about how SO many sites are now stacking a dozen or more jscripts from multiple origins that are not their own?
FWIW, Facebook itself is a massive privacy leak ("flood" would be more accurate), and has been subject to frequent hacks, the latest being this worm
. You might wish to reconsider your participation there if you value your privacy.
I guess $$ talks and jscripts proliferate, eh?
FWIW, when I just now went to washingtonpost.com after cleaning out the facebook history, it did *not* try to load the facebook scripts. Try using the Private Browsing feature in Firefox, *plus* RequestPolicy
to prevent one site from requesting resources from another, *plus* RefControl
to prevent a site from knowing which site you just came from. These will improve your overall privacy, and in a brief (not extensive) test, going from Facebook (scripts allowed) to wapo did *not* allow FB at wapo. Cheers.
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:126.96.36.199) Gecko/20091102 Firefox/3.5.5