[Resolved] Uninstall Reinstall with site configuration retained

Ask for help about NoScript, no registration needed to post
Doppleganger

[Resolved] Uninstall Reinstall with site configuration retained

Post by Doppleganger » Tue Jun 15, 2021 12:47 am

Hello:

I did a search of this and the general forums without luck. I'm running no-script on a 6-month old Dell desktop
in a Chrome browser.

Lately, I cannot fully open Google Voice (call history not showing on the right margin and no ability to make calls) and have traced the problem to NS by process of elimination.

All requested scripts were trusted on GV when the problem occurred.

My next step is to uninstall and reinstall NS.
My question is whether I can somehow retain the configuration of script permissions I assume NS has remembered for each
site when I uninstall and reinstall NS.

If there is a way to do this, a step-by-step detailing of the method would be very much appreciated.
If not, I'll simply uninstall and reinstall and train NS again.

Thank you for your time and consideration.

Doppleganger
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36

barbaz
Master Bug Buster
Posts: 9986
Joined: Sat Aug 03, 2013 5:45 pm

Re: Uninstall Reinstall with site configuration retained

Post by barbaz » Tue Jun 15, 2021 1:57 am

That's not the most effective next step. Uninstall/reinstall doesn't clear 100% of NoScript config.

If your goal is to try from a clean NoScript slate, could you first go NoScript Options > Export (to save your current config), then NoScript Options > Reset?
Temporarily off forum staff at my own request
*Always* check the changelogs BEFORE updating that important software!
-

Doppleganger

Re: Uninstall Reinstall with site configuration retained

Post by Doppleganger » Tue Jun 15, 2021 3:33 am

Barbaz:

Thank you kindly for your help.

I went to options and exported the current configurations to a file and reset no-script. Then I opened Google Voice and--shazaam--it fully loaded with the ability to make phone calls regained.

I'm assuming the next move is to open NS Options and import the saved configuration file into NS? It looks simple but if there
are any other directions to follow, I'd welcome your intelligence.

If things are as simple as the first sentence in the above paragraph imply, you don't need to bother with a reply. But
I must say the relief you have given me makes it anything but a bother to again express my gratitude for your insight.

Regards,

Doppleganger
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36

barbaz
Master Bug Buster
Posts: 9986
Joined: Sat Aug 03, 2013 5:45 pm

Re: Uninstall Reinstall with site configuration retained

Post by barbaz » Tue Jun 15, 2021 3:56 am

Doppleganger wrote:
Tue Jun 15, 2021 3:33 am
I'm assuming the next move is to open NS Options and import the saved configuration file into NS?
You could do that.

Most likely the problem will just come right back. If it does, first things I'd check:

1) How have you configured your TRUSTED preset under NoScript Options > General? (Its default is to have everything checked.)

2) Does NoScript Options > Advanced show any previous XSS choices you've made?
Temporarily off forum staff at my own request
*Always* check the changelogs BEFORE updating that important software!
-

Guest

Re: Uninstall Reinstall with site configuration retained

Post by Guest » Tue Jun 15, 2021 5:04 am

Barbaz:

You obviously know more than I do and I hope you do not mind checking what I found with an eye to correcting any deficiencies therein.

Going to NS options, here is the roster of the checked and unchecked options as I found them:
GENERAL
Checked: Nothing.
Unchecked: **Disable restrictions globally **Temporarily set top-level sites to to trusted **Any capability in a document
must be blocked in its subdocument
DEFAULT
Checked: script
Unchecked: **objects **media **frame **font **webgl **fetch **ping **noscript **other
TRUSTED
Checked: **object **media **frame **font **webgl **fetch **ping **noscript **other
APPEARANCE
Checked: **show NoScript contextual menu item **display blocked form count badge
Unchecked: **list full addresses in the permissions popup **high contrast
ADVANCED
Checked: **enable setting permanent permissions in incognito mode
Unchecked: **revoke temporary permissions on NS updates even if browser not restarted **debug

I'm trying to maintain tight security without constantly fiddling. But, I'll opt for tight security if the fiddling is necessary.
Should you point me to a posting that specifies what to check/uncheck, that will save you some work.
If no such short list exists, your expertise is more than welcome.

Looking at your handle, if it is a neologism of a name and a state, I can tell you some interesting facts about the first in some small
recompense for your help. And I can slip a marvelous joke into the bargain which is safe for all audiences that don't mind laughter.

Thank you, as always.

Doppleganger
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36

barbaz
Master Bug Buster
Posts: 9986
Joined: Sat Aug 03, 2013 5:45 pm

Re: Uninstall Reinstall with site configuration retained

Post by barbaz » Tue Jun 15, 2021 12:22 pm

What NoScript version are you using? You don't mention any "unrestricted CSS" checkbox in the preset configurations, nor whether you have any XSS choices listed, is your NoScript version from before those were added?

But outdated NoScript isn't the problem here if a reset fixed it.
Guest wrote:
Tue Jun 15, 2021 5:04 am
ADVANCED
Checked: **enable setting permanent permissions in incognito mode
Unchecked: **revoke temporary permissions on NS updates even if browser not restarted **debug
What about "Sanitize cross-site suspicious requests" and XSS choices if any?

If your NoScript version is older than 11.2.x, look under "xssUserChoices" in your export file for the latter.
Guest wrote:
Tue Jun 15, 2021 5:04 am
I'm trying to maintain tight security without constantly fiddling. But, I'll opt for tight security if the fiddling is necessary.
Should you point me to a posting that specifies what to check/uncheck, that will save you some work.
If no such short list exists, your expertise is more than welcome.
That configuration is an interesting way to go about it. You're allowing scripts everywhere, but blocking frames and non-<script> forms of active content by default.

Using NoScript alone in that configuration is not what I would call "tight security". If you want some more relatively fiddling-free security, you could add uBlock Origin (in the right configuration) and Port Authority alongside your NoScript if you haven't already.
Guest wrote:
Tue Jun 15, 2021 5:04 am
Looking at your handle, if it is a neologism of a name and a state,
What are you talking abo.. oh. No, that's not what I had in mind :D
Temporarily off forum staff at my own request
*Always* check the changelogs BEFORE updating that important software!
-

Doppleganger

Re: Uninstall Reinstall with site configuration retained

Post by Doppleganger » Tue Jun 15, 2021 8:46 pm

Barbaz:

As noted, I'm using NS in a chrome browser on Windows 10. The NS version is 11.2.4, released on 3.26.21, which appears (after a bit of searching and running an update on all extensions) to be the latest chrome-compatible offering. I see no "unrestricted CSS" checkbox, no "XSS choices" and no "sanitize cross-site suspicious request" checkbox. Leaving out the "sites" section of the file exported from NS before the reset, is as follows :

"TRUSTED": {
"capabilities": [
"script",
"object",
"media",
"frame",
"font",
"webgl",
"fetch",
"ping",
"noscript",
"other"
],
"temp": false
},
"UNTRUSTED": {
"capabilities": [],
"temp": false
*****Sites (DELETED HERE)*****
],
"custom": {}
},
"enforced": true,
"autoAllowTop": false
},
"local": {
"debug": false,
"showCtxMenuItem": true,
"showCountBadge": true,
"showFullAddresses": false,
"amnesticUpdates": false,
"storage": "local",
"uuid": "ce66f475-485e-4347-8480-dd08463b1020"
},
"sync": {
"global": false,
"xss": true,
"cascadeRestrictions": false,
"overrideTorBrowserPolicy": false,
"clearclick": true,
"storage": "sync"
}
}

We will both see "xss":true in the 7th line from the bottom of the exported NS file.

If I changed NS from its original configuration via the checkboxes, I would be happy to confess but I don't recall monkeying around with the default configuration given that I certainly can confess my ignorance is dangerously oceanic in this area. That is why I came for advice.

Any help you can give me in resetting the choices in the check boxes listed in my last post to attain better security would be a marvelous aid.

I'm running UBlock origin. And I will search for advisories on the right configuration. Port Authority is unfamiliar to me but, pursuant to your commendation, I'll definitely put it on the list of system improvements.

Aside, I know FUBAR and the related SNAFU from life and their argued origin in military acronym culture.
Here's the first part of the joke which I hope is new to you: "How does a Buddhist monk order a hot dog?" Assuming the usual response ("I don't know"), I'll deliver the punchline in my next post.

Please have my renewed appreciation for your time and consideration.

Regards,

Doppleganger
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36

barbaz
Master Bug Buster
Posts: 9986
Joined: Sat Aug 03, 2013 5:45 pm

Re: Uninstall Reinstall with site configuration retained

Post by barbaz » Tue Jun 15, 2021 11:05 pm

Oops, my bad, I somehow completely missed that this was on Chrome and thought for some reason you were using Firefox! Image The features I was talking about don't exist on Chrome. Forget I metioned it.
Doppleganger wrote:
Tue Jun 15, 2021 8:46 pm
If I changed NS from its original configuration via the checkboxes, I would be happy to confess but I don't recall monkeying around with the default configuration given that I certainly can confess my ignorance is dangerously oceanic in this area. That is why I came for advice.

Any help you can give me in resetting the choices in the check boxes listed in my last post to attain better security would be a marvelous aid.
Default of DEFAULT is to check only "frame", "fetch", "noscript", and "other", leaving the rest un-checked. Does aligning your setup to this have any effect on the original issue?
(Assuming you set the exact same set of permissions on Google Voice when testing with reset NoScript as normally.)
Doppleganger wrote:
Tue Jun 15, 2021 8:46 pm
Port Authority is unfamiliar to me but, pursuant to your commendation, I'll definitely put it on the list of system improvements.
Port Authority is not available for Chrome at this time. Chrome doesn't have the required APIs to port it over (no pun intended)

As for the rest of your post, let's stay on topic while we help you get your technical issue resolved. Best save your joke for a final thanks post where you let us know the issue has been resolved to your satisfaction.
Temporarily off forum staff at my own request
*Always* check the changelogs BEFORE updating that important software!
-

Doppleganger

Re: Uninstall Reinstall with site configuration retained

Post by Doppleganger » Wed Jun 16, 2021 12:40 am

barbaz:

Good news. The defaults you specified (frame, fetch, noscript and other) are now all the only checked default items, which I owe to you and the directed reset. Google Voice functions perfectly under that setting regime. I'm satisfied and appreciative.

Here's the punchline to the joke, delivered by an imagined Buddhist monk behind a 10,000 mile stare:
"ONE...with everything."

Thank you for the intelligence.

Regards,

Doppleganger
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36

barbaz
Master Bug Buster
Posts: 9986
Joined: Sat Aug 03, 2013 5:45 pm

Re: Uninstall Reinstall with site configuration retained

Post by barbaz » Wed Jun 16, 2021 12:50 am

LOL! :lol:

You're welcome and thanks for reporting back.
Temporarily off forum staff at my own request
*Always* check the changelogs BEFORE updating that important software!
-

Post Reply