[Answered] What happened with NoScript json options xssBlockUnscannedPOST and xssScanRequestBody

Ask for help about NoScript, no registration needed to post
pal1000
Junior Member
Posts: 40
Joined: Tue Mar 10, 2015 1:30 pm

[Answered] What happened with NoScript json options xssBlockUnscannedPOST and xssScanRequestBody

Post by pal1000 » Fri Jun 14, 2019 10:54 am

I have a relatively old noscript_data.txt from 10.6.2 release candidates period backed up with these 2 options: xssScanRequestBody is true and xssBlockUnscannedPOST is false.
I also noticed that a fresh copy of Noscript 10.6.3rc7 doesn't create these options in its configuration json anymore and there is no UI element in NoScript Options page that could set them. If I remember well there were UI elements that controlled those options in 10.6.2 release candidates. Could it be those options were related to the workaround for https://bugzil.la/1532530 that was nuked in 10.6.2 stable? If so do they still have some effect if left alone?
Last edited by pal1000 on Fri Jun 14, 2019 7:50 pm, edited 1 time in total.
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0

musonius
Senior Member
Posts: 98
Joined: Sun Jul 08, 2018 5:38 pm

Re: Asking about NoScript json options xssBlockUnscannedPOST and xssScanRequestBody

Post by musonius » Fri Jun 14, 2019 1:06 pm

pal1000 wrote:
Fri Jun 14, 2019 10:54 am
Could it be those options were related to the workaround for https://bugzil.la/1532530 that was nuked in 10.6.2 stable? If so do they still have some effect if left alone?
After looking at the commit which removed the workaround, I am quite sure that these options don't have any effect anymore.
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0

User avatar
Giorgio Maone
Site Admin
Posts: 8694
Joined: Wed Mar 18, 2009 11:22 pm
Location: Palermo - Italy
Contact:

Re: Asking about NoScript json options xssBlockUnscannedPOST and xssScanRequestBody

Post by Giorgio Maone » Fri Jun 14, 2019 3:16 pm

musonius wrote:
Fri Jun 14, 2019 1:06 pm
pal1000 wrote:
Fri Jun 14, 2019 10:54 am
Could it be those options were related to the workaround for https://bugzil.la/1532530 that was nuked in 10.6.2 stable? If so do they still have some effect if left alone?
After looking at the commit which removed the workaround, I am quite sure that these options don't have any effect anymore.
No, they don't indeed.
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:68.0) Gecko/20100101 Firefox/68.0

pal1000
Junior Member
Posts: 40
Joined: Tue Mar 10, 2015 1:30 pm

Re: Asking about NoScript json options xssBlockUnscannedPOST and xssScanRequestBody

Post by pal1000 » Fri Jun 14, 2019 7:49 pm

Thanks both for answering. It looks like my guess was right. I marked this question topic as answered.
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0

Post Reply