always allow everything but...
always allow everything but...
Is there a way to, on a specific website, set specific things that are allowed but then, on every visit to the page, automatically untrust anything else that comes up? There is one site I visit frequently; there are a few main components that have to be trusted and then some scripts that need to be blocked. Every visit to that page, the script address changes, and so I have to go in and block those. Every time.
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Edg/131.0.0.0
- Giorgio Maone
- Site Admin
- Posts: 9501
- Joined: Wed Mar 18, 2009 11:22 pm
- Location: Palermo - Italy
- Contact:
Re: always allow everything but...
You can explicitly set them as UNTRUSTED. Does it work for you?
Mozilla/5.0 (X11; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
- Giorgio Maone
- Site Admin
- Posts: 9501
- Joined: Wed Mar 18, 2009 11:22 pm
- Location: Palermo - Italy
- Contact:
Re: always allow everything but...
posting on behalf of @fatboy, who PMed me that the spam filter does not like this message):
I imagine your DEFAULT rule is permissive, and that's why you need to block those random sites explicitly?fatboy wrote: It seems to me that UNTRUSTED is not quite what we need.
I have roughly the same situation (if I understand correctly).
There is a page: https://www.cdek.ru/ru/offices/view/msk205/
On this page, I need to block two domains whose addresses change periodically:
https?://code\.[a-z]{2}[0-9][a-z]{3}\.ru
and
https?://[a-z0-9]{6}\.de (it's not there now, but it happens).
uBO (ru Adlist) has two rules:
||de/|$third-party,xmlhttprequest
||code.*.ru/|$third-party,script
It would be nice if CUSTOM was used for UNTRUSTED.
That is, it would be possible to add to the UNTRUSTED domain "de" only for cdek.ru
Or it would be possible to use regular expressions.
Mozilla/5.0 (X11; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0
Re: always allow everything but...
Thanks for your help with the anti-spam filter.
DEFAULT - font, fetch, noscript, other (they probably won't do any harm, but it's better to be safe.)
Let's say there's an important account on site.gov
What would be ideal is what Jarichardusa asked ("... automatically untrust anything else that comes up").
That is, create a rule to UNTRUSTED:
https?://(?!(cdn\.)?site\.gov).+
You could, of course, create a separate proifle and add all tld except "gov" to UNTRUSTED, but that's inconvenient.
It's just a dream. I realize that there are more important tasks.
DEFAULT - font, fetch, noscript, other (they probably won't do any harm, but it's better to be safe.)
Let's say there's an important account on site.gov
What would be ideal is what Jarichardusa asked ("... automatically untrust anything else that comes up").
That is, create a rule to UNTRUSTED:
https?://(?!(cdn\.)?site\.gov).+
You could, of course, create a separate proifle and add all tld except "gov" to UNTRUSTED, but that's inconvenient.
It's just a dream. I realize that there are more important tasks.
Mozilla/5.0 (Windows NT 10.0; rv:109.0) Gecko/20100101 Firefox/115.0
Re: always allow everything but...
... one of which is bringing back ABE, which would provide a way to achieve this
*Always* check the changelogs BEFORE updating that important software!
Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0