Search found 8709 matches

by barbaz
Sat Apr 03, 2021 11:29 am
Forum: NoScript Support
Topic: Android - how to install Development Build on Firefox Daylight?
Replies: 5
Views: 3192

Re: Android - how to install Development Build on Firefox Daylight?

I didn't reply because I don't use Android, so I have no idea on this one, sorry.
by barbaz
Fri Apr 02, 2021 7:55 pm
Forum: NoScript Development
Topic: Feature request to enable/disable PP0 protection.
Replies: 10
Views: 422

Re: Feature request to enable/disable PP0 protection.

I like "unchecked-css" :) It's the most descriptive and technically accurate. I would still suggest formulating it more like "no-check-css" or "skip-check-css", because this is not about an inherent property of the CSS in general, it's about whether NoScript should not run its mitigation. (alternate...
by barbaz
Fri Apr 02, 2021 5:24 pm
Forum: NoScript Development
Topic: Feature request to enable/disable PP0 protection.
Replies: 10
Views: 422

Re: Feature request to enable/disable PP0 protection.

Thanks Giorgio for the explanation. I've updated the sticky. Two things: 1) "csspp0" is not the best name for this capability IMO. No one who knows what CSS PP0 is would want to explicitly allow it. And every other capability controls what's served by the site, while this one is aimed at what can be...
by barbaz
Fri Apr 02, 2021 4:57 pm
Forum: NoScript Support
Topic: [Fixed] 11.2.4rc5 Conflict with Feed Preview
Replies: 2
Views: 232

Re: 11.2.4rc5 Conflict with Feed Preview

Fixed in 11.2.5rc1. Thanks! Image
by barbaz
Fri Apr 02, 2021 12:43 am
Forum: NoScript Development
Topic: [Fixed] XSS filter False Positive
Replies: 2
Views: 251

Re: XSS filter False Positive

Fixed, thanks Image
by barbaz
Fri Apr 02, 2021 12:37 am
Forum: NoScript Development
Topic: Feature request to enable/disable PP0 protection.
Replies: 10
Views: 422

Re: Feature request to enable/disable PP0 protection.

On update this capability is un-checked for DEFAULT/UNTRUSTED but checked for TRUSTED. Does the box being checked mean (somewhat confusingly) that CSS PP0 is NOT mitigated? Does this capability control whether the mitigation is active when visiting the site? Or does it control whether the mitigation...
by barbaz
Thu Apr 01, 2021 3:37 pm
Forum: NoScript Support
Topic: ABE panel and encryption for domain list
Replies: 2
Views: 156

Re: ABE panel and encryption for domain list

In your FAQ you write about ABE, but i cannot see any ABE panel inside Options -> Advanced... is there something i'm missing? That FAQ was written for NoScript Classic, which is no longer supported. NoScript Webext does not have ABE yet. Also is there a way to have encryption for white-black domain...
by barbaz
Thu Apr 01, 2021 2:43 am
Forum: NoScript Support
Topic: [Fixed] 11.2.4rc5 Conflict with Feed Preview
Replies: 2
Views: 232

[Fixed] 11.2.4rc5 Conflict with Feed Preview

Firefox 87.0 NoScript 11.2.4rc5 Feed Preview 12 new profile STR: 1) install NoScript, Feed Preview 2) visit any RSS feed on any site set to DEFAULT permission - e.g. visit noscript.net/feed and set noscript.net to DEFAULT With noscript.net (or whatever site hosting the feed) set to DEFAULT, the page...
by barbaz
Wed Mar 31, 2021 12:28 pm
Forum: NoScript Development
Topic: Feature request to enable/disable PP0 protection.
Replies: 10
Views: 422

Re: Feature request to enable/disable PP0 protection.

+1 for this as a troubleshooting tool.
by barbaz
Tue Mar 30, 2021 6:00 pm
Forum: NoScript Support
Topic: __ns__pop2top class breaks multi-column layouts, e.g. bootstrap
Replies: 1
Views: 195

Re: __ns__pop2top class breaks multi-column layouts, e.g. bootstrap

Does that element contain any blocked content, e.g. a video?

Can you work around this with a Stylus style for the specific site?
by barbaz
Mon Mar 29, 2021 6:19 pm
Forum: NoScript Support
Topic: What do the individual checkboxes for Default/Trusted/Untrusted/Custom mean?
Replies: 0
Views: 372

What do the individual checkboxes for Default/Trusted/Untrusted/Custom mean?

script - JavaScript, e.g. <script> tags object - plugin objects media - HTML5 audio/video frame - subdocuments, e.g. <frame> and <iframe> font - remote fonts webgl - WebGL fetch - whether other sites can make XMLHttpRequest and Fetch request to this site ping - destination of navigator.sendBeacon an...
by barbaz
Sat Mar 27, 2021 9:50 pm
Forum: NoScript Development
Topic: [Fixed] XSS filter False Positive
Replies: 2
Views: 251

[Fixed] XSS filter False Positive

Clicking this link trips the XSS filter - https://valadoc.org/gtk+-3.0/Gtk.Window.set_title.html#! NoScript detected a potential Cross-Site Scripting attack from https://forums.informaction.com to https://valadoc.org. Suspicious data: (URL) https://valadoc.org/gtk+-3.0/Gtk.Window.set_title.html#! Bu...
by barbaz
Fri Mar 26, 2021 4:12 pm
Forum: NoScript Support
Topic: Does noscript works also for mouse scripts?
Replies: 1
Views: 213

Re: Does noscript works also for mouse scripts?

Only if you don't allow script from the sites hosting the focus-tracking scripts.
by barbaz
Thu Mar 25, 2021 12:14 am
Forum: NoScript Support
Topic: [Fixed] 11.2.4rc2 Chrome-specific code causing error in Firefox
Replies: 2
Views: 389

Re: 11.2.4rc2 Chrome-specific code causing error in Firefox

Giorgio Maone wrote:
Tue Mar 16, 2021 11:20 pm
To be fixed,
... and done in 11.2.4rc3. Thanks 8-)