"Embeddings," "Top-level", "2nd level domain," etc...
Posted: Mon Feb 17, 2020 2:54 pm
I'm an unskilled user struggling to better understand NoScript 11.0.13 in Firefox 73.0 under Windows 10 (1909). Having read through "https://www.ghacks.net/2018/08/13/noscr ... irefox-57/" and "https://blog.jeaye.com/2017/11/30/noscript/", I'm now browsing the "https://noscript.net/faq." I'm seeing stuff that I can't parse like the following:
FAQ 1.12: "Check NoScript Options|General|Temporarily allow top-level sites by default and select 2nd level domain, "Check the NoScript Options|Embeddings|Apply these restrictions to trusted sites as well preference."
FAQ 3.7: "Notice that if you've got NoScript Options|Embeddings|Apply these restrictions to trusted sites as well checked (not the default), you'll need to use Blockable Objects|Temporarily allow *@http://216.xxx.yyy.zzz instead."
One specific and one general question:
1) Specific -- Although I do see the check box for Options/General/"Temporarily set top-level sites to TRUSTED" (apparently not site-specific), I do not see anything about "Embeddings" or "Blockable Objects" on any tab under Options, nor do I see an obvious way to refer to a "2nd level domain." What am I missing about these more advanced options?
2) General -- I had gotten it into my head that NoScript could allow scripting from specific 3rd-party sites on a per-top-level-site basis. For example, it could allow "...addthis.com" on the "...weather.gov" Web page without also allowing it on any other top-level site. This a conclusion appears to be wrong, however, since the listing at Options/Per-site Permissions is not hierarchical, not organized by top-level site. How much (if any) of this kind of detailed permission is afforded by NoScript?
One more specific question:
3) Where does NoScript store its settings and permissions? (I use Firefox inside of Sandboxie, and I want these settings to carry over between sessions.)
I have read that there isn't anything like an official user guide available for NoScript, but any clarity on these issues would be much appreciated! -- jclarkw
FAQ 1.12: "Check NoScript Options|General|Temporarily allow top-level sites by default and select 2nd level domain, "Check the NoScript Options|Embeddings|Apply these restrictions to trusted sites as well preference."
FAQ 3.7: "Notice that if you've got NoScript Options|Embeddings|Apply these restrictions to trusted sites as well checked (not the default), you'll need to use Blockable Objects|Temporarily allow *@http://216.xxx.yyy.zzz instead."
One specific and one general question:
1) Specific -- Although I do see the check box for Options/General/"Temporarily set top-level sites to TRUSTED" (apparently not site-specific), I do not see anything about "Embeddings" or "Blockable Objects" on any tab under Options, nor do I see an obvious way to refer to a "2nd level domain." What am I missing about these more advanced options?
2) General -- I had gotten it into my head that NoScript could allow scripting from specific 3rd-party sites on a per-top-level-site basis. For example, it could allow "...addthis.com" on the "...weather.gov" Web page without also allowing it on any other top-level site. This a conclusion appears to be wrong, however, since the listing at Options/Per-site Permissions is not hierarchical, not organized by top-level site. How much (if any) of this kind of detailed permission is afforded by NoScript?
One more specific question:
3) Where does NoScript store its settings and permissions? (I use Firefox inside of Sandboxie, and I want these settings to carry over between sessions.)
I have read that there isn't anything like an official user guide available for NoScript, but any clarity on these issues would be much appreciated! -- jclarkw