[enhancement]permit with ABE

[lestofante]

Hi,
i want to ask you this enchantment:
I like very much the ABE per-site selection, but it is frustrating that when i want to allow a specific resource on a scecific website.
with "permit temporanealy X" and "permit X", it would be very usefull "permit X with ABE" or similar

If clicked, from noScript engine side, it is exaclty as "permit X", BUT it will add a rule on ABE so the specic resource will be allowed ONLY to the specific site where we where when cliked the "permit X with ABE"; the resul will be comulative.

For example: first time i set up abe, i added a rule for youtube to display video. Then i wantet to add youtube feature to some forum, but not for all the internet. Every time i go on a new forum, i have to manually change ABE. With thismod it will be only 2 click away, and no typos!
This apply for example on jquery (many site work well without it and just basic JS, others are pain), also this is very helpfull during the setup time: now that i have to build rule for my 3 PC (home, work, notebook), andi want to alway permit a site, i have to go trough many menus and then manually add the rule... as said, that is frustrating, and error prone!

thanks for your attention

[Thrawn]

My current SABER plans might actually help with this. They will allow you to write ABE rules that apply to all trusted (or untrusted) sites, so you could write rules such as:

Code: Select all

Site <all trusted sites>
Accept from SELF++
Accept from foo.com
Deny

Would this be useful to you?

[lestofante]

basically ABE works as a blacklist: all site are usable by default, unless there is a rule specifically about them.
But i want create a "whitelist"; ABE by default block everything, then i want to allow what and where.

As far as i can understand, with your system (is it a concept, it has been conded and pending approval, or what?) i can do something like:

Code: Select all

#BLOCK EVERITHING AS DEFAULT
Site <all trusted sites>
Deny ALL

#let foo.com execute in itself and on lol.com
Site foo.com
Accept from foo.com lol.com

ok, this work if the specific rule (or the bottom rule) as bigger priority. I don't know if ABE or your sistem has priority, and if it has one, if it is top to bottom (as a switch with break), bottom to top(as a switch without break), or generic to specific (as CSS).

[Giorgio Maone]

basically ABE works as a blacklist: all site are usable by default, unless there is a rule specifically about them.
But i want create a "whitelist"; ABE by default block everything, then i want to allow what and where.

Code: Select all

Site trusted1.com trusted2.net trusted3.com
Accept

Site *
Deny

(rules in the same ruleset are processed from top to bottom until any rule is matched).

[GµårÐïåñ]

You have to put the rules in order of "least restrictive" to "most restrictive" so if you put a rule that blocks everything at the beginning, then guess what, it will block EVERYTHING and never get a chance to get to where you say allow so and so do something. So you need to put the rules that allow someone to do something BEFORE you put the ultimate don't allow anyone to do anything.

[Thrawn]

As far as i can understand, with your system (is it a concept, it has been conded and pending approval, or what?)

It has been partially coded. You can use it to write ABE rules with special keywords that mean 'all trusted sites', etc, but it's not ready for release, eg it doesn't properly clean up after itself when disabled or uninstalled, I haven't reviewed the metadata, etc. And the most important feature - providing a graphical interface to help you write rules - is still a work in progress.

I don't know if ABE or your sistem has priority

Actually my addon works by inserting an extra, hidden ABE ruleset, so it works alongside your existing rules.

If you want to know more about the interaction of ABE rulesets, see this thread.

[lestofante]

basically ABE works as a blacklist: all site are usable by default, unless there is a rule specifically about them.
But i want create a "whitelist"; ABE by default block everything, then i want to allow what and where.

Code: Select all

Site trusted1.com trusted2.net trusted3.com
Accept

Site *
Deny

(rules in the same ruleset are processed from top to bottom until any rule is matched).

THIS!
but i let GET and POST pass, or it will be unusable

Code: Select all

Site *
Accept GET POST
Deny

[Thrawn]

THIS!
but i let GET and POST pass, or it will be unusable

Code: Select all

Site *
Accept GET POST
Deny

Er...if you allow GET and POST, then what are you blocking?! That's 99.9% of web traffic. HEAD and OPTIONS are rarely used.

What you probably want is:

Code: Select all

Site ALL
Accept from SELF++
Deny

[lestofante]

script. I want to block cross site script. with noscript, if you enable a script, it is enabled o all page.
I don't like that;
I want that, for example FB script, are executed only if i'm on their site.

Also seems like this rule block some cross GET, as it block many site open with search engine, i have to enter directly the url (well actually just press enter after selecting the adress bar, as the url is automagically entered), but maybe it is blocking some redirect or something like this.

[Thrawn]

script. I want to block cross site script. with noscript, if you enable a script, it is enabled o all page.

Then you don't want to accept all GET requests, because that's how sites retrieve scripts.

I don't like that;
I want that, for example FB script, are executed only if i'm on their site.

Try this:

Code: Select all

Site ALL
Accept from SELF++
Deny INC(SCRIPT)