[RESOLVED] Some security with "Allow Scripts Globally"

??? · Post by **???** » Fri Nov 13, 2009 4:00 am

Posting this here because: is it a support question or a feature request question?? (depends on the answer!)

Installed NoScript on a relative's new computer and she can't handle it. No patience. She wants to surf with no effort on her part. It's really looking like I may have to allow scripts globally (ack!) in order to at least keep the *other* NoScript protections in place. So here's the question: is there any way to allow scripts globally EXCEPT for sites listed as untrusted? Already have a large number of untrusted along the lines of google analytics -- sites that there's no way she will ever have cause to make trusted (especially with the NoScript surrogate scripts)--and it would be really great to have a way to keep these sites' locked up even while opening up the rest of the web to, well, whatever…

Post by **Alan Baxter** » Fri Nov 13, 2009 5:09 am

If I recall correctly, sites marked untrusted aren't allowed even in Globally Allowed mode. It should be easy for you to check.

Post by **Giorgio Maone** » Fri Nov 13, 2009 8:27 am

Yes, when you use "Allow scripts globally", whatever you forbid from then on is automatically marked as untrusted and prevented from running.
In other words, you go in "Blacklist Mode". It's like YesScript, but with much more protection features (anti-XSS, anti-Clickjacking, ABE and so on).

??? · Post by **???** » Fri Dec 04, 2009 8:46 pm

Thanks!
Sorry it took so long to respond...

InformAction Forums

[RESOLVED] Some security with "Allow Scripts Globally"

[RESOLVED] Some security with "Allow Scripts Globally"

Re: Some security with "Allow Scripts Globally"

Re: Some security with "Allow Scripts Globally"

Re: Some security with "Allow Scripts Globally"