Yahoo two-factor auth vs Full Addresses
Posted: Sat Jul 06, 2013 11:04 am
I've configured NoScript to use full addresses for whitelisting, instead of base domains. However, I'm hitting a complication with my Yahoo account.
I've enabled two-factor authentication for my Yahoo account, and ever since then, the login page has included a script that shows up in the NoScript menu as 'Allow yahoo.com' - even with NoScript configured to show full addresses. If I don't allow it, then the two-factor authentication process doesn't function, and I can't log in. But if I allow it, then because of the way the NoScript whitelist works, every Yahoo subdomain will be allowed, which is not what I want (eg I don't want to allow adserver.yahoo.com).
Adding 'http://yahoo.com' and 'https://yahoo.com' to the whitelist doesn't seem to fix it, either; 'yahoo.com' is still blocked in the NoScript menu, and I can't log in.
Any ideas on how to fix things while only allowing specific Yahoo domains and protocols?
I've enabled two-factor authentication for my Yahoo account, and ever since then, the login page has included a script that shows up in the NoScript menu as 'Allow yahoo.com' - even with NoScript configured to show full addresses. If I don't allow it, then the two-factor authentication process doesn't function, and I can't log in. But if I allow it, then because of the way the NoScript whitelist works, every Yahoo subdomain will be allowed, which is not what I want (eg I don't want to allow adserver.yahoo.com).
Adding 'http://yahoo.com' and 'https://yahoo.com' to the whitelist doesn't seem to fix it, either; 'yahoo.com' is still blocked in the NoScript menu, and I can't log in.
Any ideas on how to fix things while only allowing specific Yahoo domains and protocols?