[bug?] facebook.com is missing in the allow list
Posted: Sat Nov 09, 2013 10:21 am
Hello,
In the "appearance" tab, I have all marks checked to get 2nd level domains, full domains and full protocol addresses. I especially use the last one to make sure my browser only allow scripts executing through SSL connections.
When going on Facebook, the authorization list shows https://www.facebook.com and https://fbstatic-a.akamaihd.net. If these get authorized, Facebook will still not function because there are also scripts being blocked from https://facebook.com. The address has to be added manually in the whitelist for FB to function.
It appears that NS doesn't offer to also allow https://facebook.com. I am not sure if this is a bug or a normal feature but I guess it may induce some people in allowing the domain without the https enforcement.
kind regards,
sb3k
In the "appearance" tab, I have all marks checked to get 2nd level domains, full domains and full protocol addresses. I especially use the last one to make sure my browser only allow scripts executing through SSL connections.
When going on Facebook, the authorization list shows https://www.facebook.com and https://fbstatic-a.akamaihd.net. If these get authorized, Facebook will still not function because there are also scripts being blocked from https://facebook.com. The address has to be added manually in the whitelist for FB to function.
It appears that NS doesn't offer to also allow https://facebook.com. I am not sure if this is a bug or a normal feature but I guess it may induce some people in allowing the domain without the https enforcement.
kind regards,
sb3k