Hi all,
current version of NoScript Firefox Add-on 1.9.9.93
Clicking on Inbox() or links at the top (people, mail , etc) I am getting Clickjacking Warning.
Either MS added some stuff again similar to current inability to logoff until you clear cookies
or
it is some bug in this version of NoScript.
I was not visiting my hotmail account for several days. There were no problems, say 20/01/10 and earlier
NoScript was updated 21/01 or 22/01
Any ideas, guys?
Thanks in advance
[RESOLVED] Clickjacking on MS Hotmail page
-
ScrGuest
[RESOLVED] Clickjacking on MS Hotmail page
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6 (.NET CLR 3.5.30729)
-
Giorgio Maone
- Site Admin
- Posts: 9524
- Joined: Wed Mar 18, 2009 11:22 pm
- Location: Palermo - Italy
- Contact:
Re: Clickjacking on MS Hotmail page
It seems something Firefox 3.6-specific, unrelated to the recent NoScript updates.
I already had one report from a Mac OS X user, but you're on Windows so it's cross-platform.
Anyway I couldn't reproduce it yet. Could you use the "Report" button and tell me the assigned ID?
Also, are you using some non-standard zoom level?
Does disabling all extensions except NoScript help?
I already had one report from a Mac OS X user, but you're on Windows so it's cross-platform.
Anyway I couldn't reproduce it yet. Could you use the "Report" button and tell me the assigned ID?
Also, are you using some non-standard zoom level?
Does disabling all extensions except NoScript help?
Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US; rv:1.9.1.7) Gecko/20091221 Firefox/3.5.7 (.NET CLR 3.5.30729)
-
Guest
Re: Clickjacking on MS Hotmail page
Hi Giorgio,
Thank you for reply
That would be not easy task to check with all Add-ons disabled since I have a lot
Currently, after the release of Fox3.6 there are many incompatible Add-ons
That could indeed contribute to the problem
So, I fired up the portable 3.6 version that has just a few Add-ons including incompatible
and NoScript worked as it suppose to in conjunction with hotmail – no click-hijacking
As you asked below are few IDs
I am not sure whether that is expected behaviour when generating Report Ids, but
the IDs are different if Fox closed & restarted, despite clicking on the same link(s):
e.g. 725189 ; 725212, etc.
My regards
Thank you for reply
That would be not easy task to check with all Add-ons disabled since I have a lot
Currently, after the release of Fox3.6 there are many incompatible Add-ons
That could indeed contribute to the problem
So, I fired up the portable 3.6 version that has just a few Add-ons including incompatible
and NoScript worked as it suppose to in conjunction with hotmail – no click-hijacking
As you asked below are few IDs
I am not sure whether that is expected behaviour when generating Report Ids, but
the IDs are different if Fox closed & restarted, despite clicking on the same link(s):
e.g. 725189 ; 725212, etc.
My regards
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6 (.NET CLR 3.5.30729)
-
Giorgio Maone
- Site Admin
- Posts: 9524
- Joined: Wed Mar 18, 2009 11:22 pm
- Location: Palermo - Italy
- Contact:
Re: Clickjacking on MS Hotmail page
However your second check confirmed it's an extension conflict, so Standard Diagnostic would be beneficial to everyone of us.Guest wrote:That would be not easy task to check with all Add-ons disabled since I have a lot
Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US; rv:1.9.1.7) Gecko/20091221 Firefox/3.5.7 (.NET CLR 3.5.30729)
-
Guest
Re: Clickjacking on MS Hotmail page
Hi Giorgio Maone,
Thanks for reply again.
Well, I tested all as suggested regarding Compatible Add-ons
I wanted to report the negative result and move to checking with all currently incompatible...
and all of a sudden NoScript v1.9.9.42 came, which fixed the problem
Cheers!
Thanks for reply again.
Well, I tested all as suggested regarding Compatible Add-ons
I wanted to report the negative result and move to checking with all currently incompatible...
and all of a sudden NoScript v1.9.9.42 came, which fixed the problem
Cheers!
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6 (.NET CLR 3.5.30729)