General discussion about the NoScript extension for Firefox
2 posts • Page 1 of 1
Hi. does still NS have some unique functionality when we have powerful adblockers nowadays, such as uBlock Origin, which is able to block all scripts by default and allow them selectively per site?
Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:54.0) Gecko/20100101 Firefox/54.0
- Giorgio Maone
- Site Admin
- Posts: 8659
- Joined: Wed Mar 18, 2009 11:22 pm
- Location: Palermo - Italy
Yes it is.Anakunda wrote:Hi. does still NS have some unique functionality when we have powerful adblockers nowadays, such as uBlock Origin, which is able to block all scripts by default and allow them selectively per site?
NoScript is not an adblocker by any means (for instance it doesn't even attempt to block images), but it takes its mission as a security enhancer very seriously: i.e. it's not meant to watch against annoyances, but to prevent as much as possible attacks on your web security.
Therefore NoScript goes to great lengths to ensure that potentially malicious active content doesn't work around either the "standard" security boundaries expected by the browser or the additional ones declared by the user as NoScript permission.
One egregious example of these additional countermeasures is the XSS filter, which prevents untrusted / default websites (which cannot run scripts by themselves because of their permissions) to inject code into a (likely) trusted site (e.g. mozilla.org), therefore getting it to run anyway.
It's not by chance that the Tor Browser integrates NoScript, rather than "an adblocker", in order to provide its users (who sometimes depend on it even for their physical security) with the maximum protection available.
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:61.0) Gecko/20100101 Firefox/61.0