Search found 244 matches
- Wed Jul 25, 2018 7:56 am
- Forum: NoScript Support
- Topic: [Fixed] RC4 stopped Firefox
- Replies: 3
- Views: 2671
Re: RC4 stopped Firefox
Do not allow scripts globally on rc4. There is a bug that hopefully gets fixed soon.
- Sat Jul 21, 2018 7:46 pm
- Forum: Metaforum
- Topic: Cannot set subject for PM
- Replies: 1
- Views: 96636
Cannot set subject for PM
Trying to submit PM message will error out with "You must specify a subject when composing a new message.".
- Fri Jul 20, 2018 11:06 am
- Forum: NoScript Support
- Topic: [Fixed] error message when downloading html-attachments
- Replies: 13
- Views: 8749
- Wed Jul 18, 2018 11:39 pm
- Forum: NoScript Support
- Topic: Loomio crashes using NoScript
- Replies: 5
- Views: 3016
Re: Loomio crashes using NoScript
What exactly are you doing when the error happens and what does not work afterwards?
- Wed Jul 18, 2018 8:45 pm
- Forum: NoScript Support
- Topic: How do I permantly set an IP address to 'trusted' ?
- Replies: 3
- Views: 1988
Re: How do I permantly set an IP address to 'trusted' ?
You can add ip-address manually in the NoScript-Options -> Per-Site Permissions -> Search or add a web site
- Wed Jul 18, 2018 8:44 pm
- Forum: NoScript Support
- Topic: NoScript v10: MSE media blocking and youtube website movies.
- Replies: 1
- Views: 1764
Re: NoScript v10: MSE media blocking and youtube website mov
Adding media permission to the TRUSTED is quite fine. It should be there by default in any case. But using CUSTOM is fine too.
- Wed Jul 18, 2018 8:42 pm
- Forum: NoScript Support
- Topic: Firefox 62: changes to the WebExtensions API - problems?
- Replies: 4
- Views: 2658
Re: Firefox 62: changes to the WebExtensions API - problems?
When doing testing, always install the latest version, no matter if it's RC or stable.
- Fri Jul 13, 2018 2:41 pm
- Forum: NoScript Support
- Topic: Block only selected JS
- Replies: 5
- Views: 3110
Re: Block only selected JS
If I allow only lenta.ru script eagleplatform.com script fetch I do see the player, but get an error and no video. Just what is Fetch? Fetch is for XHR requests. Used to "fetch" content (any data: text, html, scripts, media, streams, etc.) from a server. When you allow "fetch" fo...
- Fri Jul 13, 2018 11:06 am
- Forum: NoScript Support
- Topic: Block only selected JS
- Replies: 5
- Views: 3110
Re: Block only selected JS
Do not allow "media" on eaglecdn.com (or just remove all rights from any domain starting with "eagle"). Does that work for you?
- Wed Jul 11, 2018 7:10 pm
- Forum: NoScript Support
- Topic: Option to supress XSS pop-up. And some UI tweaks.
- Replies: 8
- Views: 3502
Re: Option to supress XSS pop-up. And some UI tweaks.
If XSS was that serious and common, surely there would be more browser addons or built-in browser options to deal with it. The current chosen approach by most browsers is CSP (Content Security Policy), which lets web pages to define a set of rules for scripts and content that is supposed to be on t...
- Wed Jul 11, 2018 7:05 pm
- Forum: NoScript Development
- Topic: [Fixed] Noscript tag Meta Refresh Quoted url Redirect bug
- Replies: 14
- Views: 6384
Re: 10.1.8.2 Noscript tag Quoted Meta Refresh url Redirect b
Can confirm. Needs sanitation of single quotes out of the url if present.
- Tue Jul 10, 2018 6:43 am
- Forum: NoScript Support
- Topic: Option to supress XSS pop-up. And some UI tweaks.
- Replies: 8
- Views: 3502
Re: Option to supress XSS pop-up. And some UI tweaks.
Thanks for clarification. The current design clearly expects that the XSS warnings are few and far between. I assume you encounter them slightly more often? The visual popup does have the advantage that, since false positives are likely going to break something, you will at least instantly know what...
- Mon Jul 09, 2018 7:38 pm
- Forum: NoScript Support
- Topic: Option to supress XSS pop-up. And some UI tweaks.
- Replies: 8
- Views: 3502
Re: Option to supress XSS pop-up. And some UI tweaks.
If you mean you do not wan't XSS protection anymore, there is a option to disable it in the NS-Settings/Advanced. If you wan't the XSS protection to work but wish you didn't need to allow/block the same popup every time, there is the "Always allow/Always block" option in the popup, which w...
- Sun Jul 08, 2018 9:23 am
- Forum: NoScript Support
- Topic: <noscript>-tags get replaced by <div>-tags
- Replies: 4
- Views: 2785
Re: <noscript>-tags get replaced by <div>-tags
How about adding class="noscript" (or something like that), so everyone can style them as they see fit?
- Wed Jul 04, 2018 6:49 pm
- Forum: NoScript Development
- Topic: Allow Violentmonkey scripts
- Replies: 8
- Views: 7311
Re: Allow Violentmonkey scripts
It would NOT be good idea to disable CSP as that is what NoScript uses to block inline javascript. For anything fetched with network request, NoScript is able to block in webRequest event, but scripts that come embedded in the main document need to be blocked with CSP as that is the only way availab...