Website Safe list's

General discussion about the NoScript extension for Firefox
Post Reply
JadStr1
Posts: 4
Joined: Mon Feb 12, 2018 4:41 am

Website Safe list's

Post by JadStr1 »

Is there a way to start convincing websites to start making a "SAFE LIST" for those websites that are suppose to be connecting threw their domains?

I am getting real tired of seeing dozens of web addresses popping up in my NoScript list that all look suspicious, yet have no other way to see if the website will start functioning correctly without going threw the list of them and setting them to temp allow, with the full undesirable risk that the domain maybe malicious.
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:58.0) Gecko/20100101 Firefox/58.0
barbaz
Senior Member
Posts: 10841
Joined: Sat Aug 03, 2013 5:45 pm

Re: Website Safe list's

Post by barbaz »

JadStr1 wrote:Is there a way to start convincing websites to start making a "SAFE LIST" for those websites that are suppose to be connecting threw their domains?
Websites' definition of "safe" is everything they load, including third-party ads (which risk malvertising). Does that match your definition of "safe"?
JadStr1 wrote:I am getting real tired of seeing dozens of web addresses popping up in my NoScript list that all look suspicious, yet have no other way to see if the website will start functioning correctly without going threw the list of them and setting them to temp allow, with the full undesirable risk that the domain maybe malicious.
Yeah, unfortunately is just trial-and-error. But you can reduce the amount of trial-and-error. Here's one way - https://forums.informaction.com/viewtop ... 314#p75314
*Always* check the changelogs BEFORE updating that important software!
-
JadStr1
Posts: 4
Joined: Mon Feb 12, 2018 4:41 am

Re: Website Safe list's

Post by JadStr1 »

Do they even know what is loading? Some of those websites I see to select and choose between allow and deny are seeming far to often and show up on far to many websites sometimes. Some didn't pop up on websites I visited before. Thought they might allow the website I first found them on would allow the site to work, didn't do anything, and now they show up on websites I never saw them on before. It seems like they really do need to make a list of the sites that are suppose to be connecting threw them, so when you do look at your NoScript list, you will know which ones are not at all suppose to be allowed.
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:58.0) Gecko/20100101 Firefox/58.0
barbaz
Senior Member
Posts: 10841
Joined: Sat Aug 03, 2013 5:45 pm

Re: Website Safe list's

Post by barbaz »

Perhaps I wasn't clear.

Point is, there is no security in asking a website to tell you how to configure your NoScript. You don't know if it's like asking a hungry wolf how to manage the chicken coop. Not a smart risk to take.

You could be OK with allowing all the ad networks and Internet trackers in existance, and this fact wouldn't change.
*Always* check the changelogs BEFORE updating that important software!
-
JadStr1
Posts: 4
Joined: Mon Feb 12, 2018 4:41 am

Re: Website Safe list's

Post by JadStr1 »

You don't understand what I am asking.
I am don't asking for them to configure my noscript. I want to know what websites they actually have connections and contracts with.
You didn't take into account what I said about websites that didn't show up before suddenly showing up on websites I never seen them popup on my noscript list.
Websites like googlevideos.com shouldn't be showing up in a yahoo mail account, especially when there are no other connections and looking at an email was the first web thing done at the startup of a computer.
If websites had to provide a list of their authorized connections, it would be a lot easier to figure out who wasn't suppose to be on that list in noscript. On top of that, if one of the sites they had listed was a malicious actor, it would be easier to hold them responsible for having contracts with such malicious web services.
I am pretty sure, your not suppose to see 30+ websites connecting threw 1 webpage. That is just plain overkill. You shouldn't need that many different services just so you can have a couple pictures, a couple ads, and a couple products or videos on your site. Something is just plain wrong about that.
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:58.0) Gecko/20100101 Firefox/58.0
barbaz
Senior Member
Posts: 10841
Joined: Sat Aug 03, 2013 5:45 pm

Re: Website Safe list's

Post by barbaz »

JadStr1 wrote:I am don't asking for them to configure my noscript. I want to know what websites they actually have connections and contracts with.
Ah. Many websites already provide this info. It's usually called something like "Terms of use" and/or "Privacy Policy"
JadStr1 wrote:I am pretty sure, your not suppose to see 30+ websites connecting threw 1 webpage.
In my experience, 30+ websites connecting through 1 webpage is not unusual, for websites with ads and tracking.
*Always* check the changelogs BEFORE updating that important software!
-
JadStr1
Posts: 4
Joined: Mon Feb 12, 2018 4:41 am

Re: Website Safe list's

Post by JadStr1 »

There is defiantly no need for that many things posting Ads and Tracking. Anything more then 10 is questionable. Accepting it as normal and ok is complacency. Is there any wonder why Ads have been the choice method for hacker attacks for the past few years? And it seems most of those tracking things often times don't start from a website you are viewing but a website you pasted by and left. This practice should not be ok, even if you can cancel it out with just a simply closing the web browser. And I been noticing that these extra websites that get linked up to something you went to often times have weird random letter and numbers and every time I google search them, I keep seeing this SEO thing about domain name linking pop up. Some of these extra Domains follow you to other websites you never seen them before, and doesn't disconnect, fails to unload, when you leave the main website it was attached too. This seem a bit too much like exploiting.

Plus the Terms of Service and Privacy Statements almost never list ANY of the companies or their website domain names they are connected with. Just about every TOS and PS I have seen almost always make statements about if they do or don't share information with organizations they know and don't know, but almost never an actual list of who they are. For you to actually use those as the reference of websites providing that information raise a red flag for your integrity and intentions.
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:58.0) Gecko/20100101 Firefox/58.0
barbaz
Senior Member
Posts: 10841
Joined: Sat Aug 03, 2013 5:45 pm

Re: Website Safe list's

Post by barbaz »

JadStr1 wrote:There is defiantly no need for that many things posting Ads and Tracking. Anything more then 10 is questionable. Accepting it as normal and ok is complacency.
JadStr1, I'm noticing a disturbing pattern in your posts here. It seems that whenever a fact doesn't agree with your preconceived notions, you would insist it's a red flag on the messenger's end. No internet forum can help you in the face of that.
JadStr1 wrote:it seems most of those tracking things often times don't start from a website you are viewing but a website you pasted by and left. This practice should not be ok, even if you can cancel it out with just a simply closing the web browser. And I been noticing that these extra websites that get linked up to something you went to often times have weird random letter and numbers and every time I google search them, I keep seeing this SEO thing about domain name linking pop up. Some of these extra Domains follow you to other websites you never seen them before, and doesn't disconnect, fails to unload, when you leave the main website it was attached too.
Sorry, I didn't understand the details of the behavior you were referring to! (Language barrier?)

This behavior seems far too intrusive for a normal website. You might consider scanning your system for malware.
JadStr1 wrote:Just about every TOS and PS I have seen almost always make statements about if they do or don't share information with organizations they know and don't know, but almost never an actual list of who they are. For you to actually use those as the reference of websites providing that information raise a red flag for your integrity and intentions.
Again making a red flag out of a fact that disagrees with your preconceived notions.

I have seen many ToS and privacy policies that DO list the companies they are connected with. Not all of them do this, but many do. This sticky was created entirely based on such ToS and privacy policies.

JadStr1, I don't think your intent is to troll this forum. But to personal attack me solely because you disagree with a fact I stated, is very border-line. Rein it in now.
*Always* check the changelogs BEFORE updating that important software!
-
barbaz
Senior Member
Posts: 10841
Joined: Sat Aug 03, 2013 5:45 pm

Re: Website Safe list's

Post by barbaz »

Received this in PM -
JadStr1 wrote:If there is Malwar on my computer, even now after a full all hard drives wipe and installation of a new drive and New OS, even after the use of different protection software like Kaspersky and McAffee and more, finding little to nothing, then what ever malware that exist on my computer is a high level one made to evade detection. I have already called the FBI and Cyber Crime asking for help twice over the years and both times they told me "We can't help you, your not a child abuse victim, rape abuse victim or a large company losing millions, your a 'street level issue.'" and I can't afford a computer security specialist to find what the problem is that official well know security software can't, on MAX settings.

SO EXCUSE ME IF I Am SO TIRED AND PISSED OFF ABOUT THESE STRANGE THINGS HAPPENING AND CAN'T GET HELP FOR THEM THAT I OFFEND YOU!
*Always* check the changelogs BEFORE updating that important software!
-
Post Reply