Setting top-level domain trust level

Ask for help about NoScript, no registration needed to post
User avatar
ronks
Posts: 10
Joined: Tue Jun 12, 2012 3:31 am

Setting top-level domain trust level

Post by ronks »

Jeaye's excellent guide says about top-level domain configuration that
> NoScript 10 allows you to modify the trust level of the specific domain used (such as blog.jeaye.com), as well as the entire top-level domain (such as ...jeaye.com)

But I don't see how. My settings show several pairs like
...d1z2jf7jlzjs58.cloudfront.net
https://d1z2jf7jlzjs58.cloudfront.net

with only that first string varied.
I would like to trust all ...cloudfront.net variations
and some other top levels domains like it.
How does one do that?
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0
barbaz
Senior Member
Posts: 10841
Joined: Sat Aug 03, 2013 5:45 pm

Re: Setting top-level domain trust level

Post by barbaz »

You can only allow up to second-level domains from the UI.

Allowing *.cloudfront.net is comparable to allowing *.com, or any other TLD. Anyone can get a cloudfront.net subdomain and put their content there. It's a lot safer to only whitelist the specific cloudfront.net subdomains you need.
*Always* check the changelogs BEFORE updating that important software!
-
User avatar
ronks
Posts: 10
Joined: Tue Jun 12, 2012 3:31 am

Re: Setting top-level domain trust level

Post by ronks »

Thanks! It's just that cloudfront and some other sites have an awful lot of those URLs; it becomes a sort of scripting whack-a-mole.
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0
Post Reply