Search found 9 matches

by ultramage
Wed Sep 06, 2017 10:52 am
Forum: NoScript Support
Topic: Recaptcha without allowing entire google.com domain
Replies: 4
Views: 2934

Re: Recaptcha without allowing entire google.com domain

I have a followup to this. Whenever a captcha loads, the firefox debugger reports CustomError: Jsloader error (code #0): Error while loading script //www.google.com/js/bg/<long string that triggers forum antispam>.js Failing to load this out-of-scope script causes the google server to request 5+ val...
by ultramage
Fri Sep 01, 2017 3:57 pm
Forum: NoScript Support
Topic: Recaptcha without allowing entire google.com domain
Replies: 4
Views: 2934

Re: Recaptcha without allowing entire google.com domain

I only spent a few minutes on it, but "Site ^https://www.google.com/recaptcha/" is good enough for me. Thank you very much for this info.
by ultramage
Thu Aug 31, 2017 4:38 pm
Forum: NoScript Support
Topic: Recaptcha without allowing entire google.com domain
Replies: 4
Views: 2934

Recaptcha without allowing entire google.com domain

A lot of sites include the google recaptcha script. Unfortunately, it does not have its own subdomain, but is hosted directly on google.com. Whitelisting the whole google.com domain is not funny. Can this be sorted out somehow within the current NoScript framework?
by ultramage
Thu Nov 13, 2014 1:07 pm
Forum: NoScript Development
Topic: abort netbios lookup when user hits ESC key
Replies: 3
Views: 2178

Re: abort netbios lookup when user hits ESC key

Steps to reproduce: 0. Clean Windows XP VirtualPC VM. 1. Install Firefox 33 with default settings 2. Addons -> NoScript 2.6.9.3 3. about:config -> keyword.enabled=false, browser.fixup.alternate.enabled=false 4. type 'z' into urlbar, press Enter, then press Esc, then wait until NetBIOS lookup times o...
by ultramage
Sat Jan 18, 2014 12:41 am
Forum: NoScript Development
Topic: abort netbios lookup when user hits ESC key
Replies: 3
Views: 2178

abort netbios lookup when user hits ESC key

if I type something short in the address bar, Firefox will attempt DNS resolution, failing that it will try NetBios resolution, and if that fails it'll redirect to a search engine. This process can be aborted at any time using the ESC key. I found that when the NoScript addon is enabled, if I hit th...
by ultramage
Tue Jun 25, 2013 3:22 pm
Forum: NoScript Development
Topic: Forced HTTPS vs mixed content
Replies: 6
Views: 3441

Forced HTTPS vs mixed content

NoScript has a feature in its advanced section to force certain domains to always go over HTTPS. Firefox 23+ has a feature to block mixed content (plaintext requests from HTTPS origin). Problem no. 1: even if I use NoScript's HTTPS forcing feature, Firefox won't show the padlock and still complains ...
by ultramage
Tue Jun 18, 2013 7:36 pm
Forum: NoScript Development
Topic: ClearClick vs. ask-to-activate plugin overlay
Replies: 5
Views: 2649

Re: ClearClick vs. ask-to-activate plugin overlay

FF21 does not yet have the 'ask to activate' plugin option, so not it cannot happen.
I know there is a report button, but I thought it would not be a smart idea to click that. Should I? Wouldn't that report a false positive?
by ultramage
Tue Jun 18, 2013 7:17 pm
Forum: NoScript Development
Topic: ClearClick vs. ask-to-activate plugin overlay
Replies: 5
Views: 2649

Re: ClearClick vs. ask-to-activate plugin overlay

browser: firefox 24 alpha with flash plugin set to 'ask to activate'
url: any youtube url (flash video), for example; any plugin that's set to 'ask to activate'
clickjack report number: did you read my post, or just skimmed the title for keywords?
by ultramage
Thu May 23, 2013 3:26 pm
Forum: NoScript Development
Topic: ClearClick vs. ask-to-activate plugin overlay
Replies: 5
Views: 2649

ClearClick vs. ask-to-activate plugin overlay

The development version of Firefox has the option to mark plugins as "Ask to activate". This places a transparent overlay on the plugin area and adds a activation button in the center and a close button in the upper right corner. Clicking on this area trips NoScript's clickjacking/ui-redre...