Search found 220 matches
- Thu Aug 20, 2020 10:45 am
- Forum: NoScript Support
- Topic: Noscript puts FF in a reload loop
- Replies: 37
- Views: 6347
Re: Noscript puts FF in a reload loop
11.0.39rc6 on linux. Can't reproduce the original bug with any config, so not able to say anything about how the fix handles that, BUT... While changing permissions on any file, the permissions are not always actually changed after the reload. This would appear to be caused by the onBeforeUnload not...
- Sat Aug 15, 2020 1:38 pm
- Forum: NoScript Development
- Topic: [Fixed] Ability to refresh page file:///tmp/page#13 with scripts enabled
- Replies: 3
- Views: 2705
Re: Ability to refresh page file:///tmp/page#13 with scripts enabled
Can confirm. Problem is in Policy.js: Sites.parse() let path = url.pathname; siteKey = url.origin; if (siteKey === "null") { siteKey = site; } else if (path !== '/') { siteKey += path; } Since origin is null for file:, the fragment (hash) ends up in the siteKey and the url is not matched. It looks l...
- Thu Aug 13, 2020 9:15 am
- Forum: NoScript Development
- Topic: 11.0.37 src script
- Replies: 7
- Views: 2281
Re: 11.0.37 src script
Looks good now. Thanks!
- Thu Aug 13, 2020 6:40 am
- Forum: NoScript Development
- Topic: 11.0.37 src script
- Replies: 7
- Views: 2281
Re: 11.0.37 src script
Synchronous XHR suspends the current JS execution flow by pushing the current state into a kind of stack. Oh, I knew about that. Should have realized it would be a problem. :oops: Why does NoScript need to do any suspending at all in Firefox? Also "Disable restrictions for this tab" relies on this ...
- Wed Aug 12, 2020 11:23 am
- Forum: NoScript Development
- Topic: 11.0.37 src script
- Replies: 7
- Views: 2281
Re: 11.0.37 src script
Of course there is another problem with the above. <html onclick="console.log('CLICK')"></html> Any event attribute in element that gets parsed before the CSP is inserted, is not blocked. For documentElement (<html>) this happens by default as it exists already when contentscripts run. However, remo...
- Wed Aug 12, 2020 7:06 am
- Forum: NoScript Development
- Topic: 11.0.37 src script
- Replies: 7
- Views: 2281
11.0.37 src script
Problem with 11.0.37 Since no more beforescriptexecute safety net, the script in the next sample will not be blocked on file: protocol. Does not appear to cause problems on http:. <html> <head> <script src="notblocked.js"></script> </head> <body></body> </html> After doing some testing, it looks lik...
- Fri Aug 07, 2020 4:46 am
- Forum: NoScript Support
- Topic: Youtube embeds do not work since NoScript 11.0.35, in conjunction with BlockTube
- Replies: 9
- Views: 2456
Re: Youtube embeds do not work since NoScript 11.0.35, in conjunction with BlockTube
Did some testing and it seems to be related to the issue at hand. This here script will sometimes (rarely, maybe 1 out of 20 reloads) produce the "sendSyncMessage deferring", but the deferred script is not executed on .35rc4. On .36rc1 it is executed, but onload listeners do not work. // Environment...
- Fri Jul 31, 2020 12:11 pm
- Forum: NoScript Development
- Topic: Request
- Replies: 1
- Views: 1019
Re: Request
How about setting the permissions as Temp.TRUSTED and using "Revoke Temporary Permissions" button to clear them?
- Fri Jul 31, 2020 11:53 am
- Forum: NoScript Development
- Topic: 11.0.34rc1 does not display <noscript> tags
- Replies: 6
- Views: 1624
Re: [Fixed] 11.0.34rc1 does not display <noscript> tags
Oh. I see. So noscript tags are put in the head like I said, BUT if scripts are disabled and the noscript tag contains stuff that doesn't belong to the head, Firefox moves it to the body. Interesting. Consider this case: <!DOCTYPE html> <html> <head> <noscript> <style>body {background-color:red}</st...
- Wed Jul 29, 2020 10:36 am
- Forum: NoScript Support
- Topic: [Fixed] All permissions suddenly CUSTOM
- Replies: 5
- Views: 1295
Re: All permissions suddenly CUSTOM
Can confirm the steps do cause both blindspot.fandom.com and wikia.nocookie.net to appear as CUSTOM. But like therube noted, they only appear so. If the options page is refreshed, both are back to TRUSTED. Additional things: Right after the permissions change to CUSTOM: 1. If the wikia.nocookie.net ...
- Tue Jul 28, 2020 7:18 am
- Forum: NoScript Development
- Topic: 11.0.34rc1 does not display <noscript> tags
- Replies: 6
- Views: 1624
Re: 11.0.34rc1 does not display <noscript> tags
<noscript> is a valid tag for head and since you didn't specify where it goes, Firefox guessed head.
Noscript on the other hand does not care where the <noscript> is and converts all of them to <span>. For head it does not make much sense, but doesn't seem to break anything.
Noscript on the other hand does not care where the <noscript> is and converts all of them to <span>. For head it does not make much sense, but doesn't seem to break anything.
- Sun Mar 29, 2020 6:52 am
- Forum: NoScript General
- Topic: Bookmarklets, non-trusted sites, Firefox ESR 68 and Waterfox Current
- Replies: 3
- Views: 17979
Re: Bookmarklets, non-trusted sites, Firefox ESR 68 and Waterfox Current
Bookmarklets are (partially) broken pre FF 69. They work now with some limitations.
More info:
https://bugzilla.mozilla.org/show_bug.cgi?id=866522
https://bugzilla.mozilla.org/show_bug.cgi?id=1478037
(CSP is what NoScript uses to block javascript.)
More info:
https://bugzilla.mozilla.org/show_bug.cgi?id=866522
https://bugzilla.mozilla.org/show_bug.cgi?id=1478037
(CSP is what NoScript uses to block javascript.)
- Tue Mar 10, 2020 7:17 am
- Forum: NoScript Support
- Topic: chart not showing dailyfx.com
- Replies: 3
- Views: 12552
Re: chart not showing dailyfx.com
No apparent problem here. Need to enable following permissions: dailyfx.com scripts c-dn.net scripts s3.amazonaws.com scripts tradingview.com scripts, frames Though note that this is bare minimum to get the chart showing. Additional permissions might be required for other features.
- Sun Mar 01, 2020 7:44 am
- Forum: NoScript Support
- Topic: "application/font” data in base64 format
- Replies: 3
- Views: 6158
Re: "application/font” data in base64 format
Can confirm. Couple more test cases: https://www.mediaevent.de/font-in-css-einbetten/ - If the large "Pacifico" text (scroll down to midway of the page) is in beautiful cursive, the data-fonts are not blocked. https://yle.fi/uutiset - If the blue nav-bar on top of the page has "location marker" on t...
- Mon Feb 24, 2020 1:00 am
- Forum: NoScript Support
- Topic: Help blocking/allowing domains on certain situations
- Replies: 2
- Views: 3908
Re: Help blocking/allowing domains on certain situations
1 & 2: Allowing domains per site basis is a planned feature in the next major overhaul. https://forums.informaction.com/viewtopic.php?p=101356#p101356 Not sure if you can automatically allow everything for a site though. 3: This is possible but not through the popup. You need to manually find the pa...