Search found 213 matches

by skriptimaahinen
Sat Jul 21, 2018 7:46 pm
Forum: Metaforum
Topic: Cannot set subject for PM
Replies: 1
Views: 91521

Cannot set subject for PM

Trying to submit PM message will error out with "You must specify a subject when composing a new message.".
by skriptimaahinen
Fri Jul 20, 2018 11:06 am
Forum: NoScript Support
Topic: [Fixed] error message when downloading html-attachments
Replies: 13
Views: 5067

Can confirm. Need to have pdf content type action set to "ask" and scripts allowed for anpost.ie to reproduce. Definitely something in the RequestUtil. Again...
by skriptimaahinen
Wed Jul 18, 2018 11:39 pm
Forum: NoScript Support
Topic: Loomio crashes using NoScript
Replies: 5
Views: 1754

Re: Loomio crashes using NoScript

What exactly are you doing when the error happens and what does not work afterwards?
by skriptimaahinen
Wed Jul 18, 2018 8:45 pm
Forum: NoScript Support
Topic: How do I permantly set an IP address to 'trusted' ?
Replies: 3
Views: 1048

Re: How do I permantly set an IP address to 'trusted' ?

You can add ip-address manually in the NoScript-Options -> Per-Site Permissions -> Search or add a web site
by skriptimaahinen
Wed Jul 18, 2018 8:44 pm
Forum: NoScript Support
Topic: NoScript v10: MSE media blocking and youtube website movies.
Replies: 1
Views: 914

Re: NoScript v10: MSE media blocking and youtube website mov

Adding media permission to the TRUSTED is quite fine. It should be there by default in any case. But using CUSTOM is fine too.
by skriptimaahinen
Wed Jul 18, 2018 8:42 pm
Forum: NoScript Support
Topic: Firefox 62: changes to the WebExtensions API - problems?
Replies: 4
Views: 1595

Re: Firefox 62: changes to the WebExtensions API - problems?

When doing testing, always install the latest version, no matter if it's RC or stable.
by skriptimaahinen
Fri Jul 13, 2018 2:41 pm
Forum: NoScript Support
Topic: Block only selected JS
Replies: 5
Views: 1421

Re: Block only selected JS

If I allow only lenta.ru script eagleplatform.com script fetch I do see the player, but get an error and no video. Just what is Fetch? Fetch is for XHR requests. Used to "fetch" content (any data: text, html, scripts, media, streams, etc.) from a server. When you allow "fetch" for a domain, you are ...
by skriptimaahinen
Fri Jul 13, 2018 11:06 am
Forum: NoScript Support
Topic: Block only selected JS
Replies: 5
Views: 1421

Re: Block only selected JS

Do not allow "media" on eaglecdn.com (or just remove all rights from any domain starting with "eagle"). Does that work for you?
by skriptimaahinen
Wed Jul 11, 2018 7:10 pm
Forum: NoScript Support
Topic: Option to supress XSS pop-up. And some UI tweaks.
Replies: 8
Views: 1850

Re: Option to supress XSS pop-up. And some UI tweaks.

If XSS was that serious and common, surely there would be more browser addons or built-in browser options to deal with it. The current chosen approach by most browsers is CSP (Content Security Policy), which lets web pages to define a set of rules for scripts and content that is supposed to be on t...
by skriptimaahinen
Wed Jul 11, 2018 7:05 pm
Forum: NoScript Development
Topic: [Fixed] Noscript tag Meta Refresh Quoted url Redirect bug
Replies: 14
Views: 3271

Re: 10.1.8.2 Noscript tag Quoted Meta Refresh url Redirect b

Can confirm. Needs sanitation of single quotes out of the url if present.
by skriptimaahinen
Tue Jul 10, 2018 6:43 am
Forum: NoScript Support
Topic: Option to supress XSS pop-up. And some UI tweaks.
Replies: 8
Views: 1850

Re: Option to supress XSS pop-up. And some UI tweaks.

Thanks for clarification. The current design clearly expects that the XSS warnings are few and far between. I assume you encounter them slightly more often? The visual popup does have the advantage that, since false positives are likely going to break something, you will at least instantly know what...
by skriptimaahinen
Mon Jul 09, 2018 7:38 pm
Forum: NoScript Support
Topic: Option to supress XSS pop-up. And some UI tweaks.
Replies: 8
Views: 1850

Re: Option to supress XSS pop-up. And some UI tweaks.

If you mean you do not wan't XSS protection anymore, there is a option to disable it in the NS-Settings/Advanced. If you wan't the XSS protection to work but wish you didn't need to allow/block the same popup every time, there is the "Always allow/Always block" option in the popup, which will allow/...
by skriptimaahinen
Sun Jul 08, 2018 9:23 am
Forum: NoScript Support
Topic: <noscript>-tags get replaced by <div>-tags
Replies: 4
Views: 1555

Re: <noscript>-tags get replaced by <div>-tags

How about adding class="noscript" (or something like that), so everyone can style them as they see fit?
by skriptimaahinen
Wed Jul 04, 2018 6:49 pm
Forum: NoScript Development
Topic: Allow Violentmonkey scripts
Replies: 8
Views: 4153

Re: Allow Violentmonkey scripts

It would NOT be good idea to disable CSP as that is what NoScript uses to block inline javascript. For anything fetched with network request, NoScript is able to block in webRequest event, but scripts that come embedded in the main document need to be blocked with CSP as that is the only way availab...
by skriptimaahinen
Wed Jul 04, 2018 6:47 pm
Forum: NoScript Support
Topic: NoScript v10: websites in the default whitelist from NS v5?
Replies: 5
Views: 1653

Re: NoScript v10: websites in the default whitelist from NS

I have noticed that "fetch" is a good addition to the CDN rules, since that allows page scripts to fetch content from the CDN, such as media files and streams, which does seem to be the usual case. frame, fetch and other are default choices for DEFAULT, so those should be good options. Personally I ...