always allow everything but...

Ask for help about NoScript, no registration needed to post
Jarichardusa

always allow everything but...

Post by Jarichardusa »

Is there a way to, on a specific website, set specific things that are allowed but then, on every visit to the page, automatically untrust anything else that comes up? There is one site I visit frequently; there are a few main components that have to be trusted and then some scripts that need to be blocked. Every visit to that page, the script address changes, and so I have to go in and block those. Every time.
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Edg/131.0.0.0
User avatar
Giorgio Maone
Site Admin
Posts: 9501
Joined: Wed Mar 18, 2009 11:22 pm
Location: Palermo - Italy
Contact:

Re: always allow everything but...

Post by Giorgio Maone »

You can explicitly set them as UNTRUSTED. Does it work for you?
Mozilla/5.0 (X11; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
User avatar
Giorgio Maone
Site Admin
Posts: 9501
Joined: Wed Mar 18, 2009 11:22 pm
Location: Palermo - Italy
Contact:

Re: always allow everything but...

Post by Giorgio Maone »

posting on behalf of @fatboy, who PMed me that the spam filter does not like this message):
fatboy wrote: It seems to me that UNTRUSTED is not quite what we need.
I have roughly the same situation (if I understand correctly).
There is a page: https://www.cdek.ru/ru/offices/view/msk205/

On this page, I need to block two domains whose addresses change periodically:
https?://code\.[a-z]{2}[0-9][a-z]{3}\.ru
and
https?://[a-z0-9]{6}\.de (it's not there now, but it happens).

uBO (ru Adlist) has two rules:
||de/|$third-party,xmlhttprequest
||code.*.ru/|$third-party,script

It would be nice if CUSTOM was used for UNTRUSTED.
That is, it would be possible to add to the UNTRUSTED domain "de" only for cdek.ru
Or it would be possible to use regular expressions.
I imagine your DEFAULT rule is permissive, and that's why you need to block those random sites explicitly?
Mozilla/5.0 (X11; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
fatboy
Senior Member
Posts: 103
Joined: Fri Jul 25, 2014 6:56 am
Contact:

Re: always allow everything but...

Post by fatboy »

Thanks for your help with the anti-spam filter.

DEFAULT - font, fetch, noscript, other (they probably won't do any harm, but it's better to be safe.)

Let's say there's an important account on site.gov
What would be ideal is what Jarichardusa asked ("... automatically untrust anything else that comes up").

That is, create a rule to UNTRUSTED:
https?://(?!(cdn\.)?site\.gov).+

You could, of course, create a separate proifle and add all tld except "gov" to UNTRUSTED, but that's inconvenient.

It's just a dream. I realize that there are more important tasks.
Mozilla/5.0 (Windows NT 10.0; rv:109.0) Gecko/20100101 Firefox/115.0
barbaz
Senior Member
Posts: 10973
Joined: Sat Aug 03, 2013 5:45 pm

Re: always allow everything but...

Post by barbaz »

fatboy wrote: Sat Dec 14, 2024 7:21 pm I realize that there are more important tasks
... one of which is bringing back ABE, which would provide a way to achieve this
*Always* check the changelogs BEFORE updating that important software!
Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0
Post Reply