InformAction Forums

Posted: **Wed Jan 08, 2014 4:24 pm**

Does Disabling XSS features Require a browser Restart?
Options | Advanced -> XSS, uncheck

I suppose it does.

Posted: **Wed Jan 08, 2014 11:49 pm**

My guess is "no". Have you had trouble with it?

Posted: **Thu Jan 09, 2014 8:00 pm**

URL: http://e.staples.com/a/hBSzTa7B7SHGCB83 ... bc@def.com

Allow, staplesfeedbackforum.com

Next
Both, Next
Business, Next

When were you born?

Allow, cogprogramming.googlecode.com, ajax.googleapis.com

(Enter year), Next

> (1) The answer is not a valid date.

Code: Select all

[NoScript] Blocking cross-site Javascript served from https://cogprogramming.googlecode.com/files/common_v1.5.js with wrong type info text/plain, attachment; filename="common_v1.5.js" and included by https://www.staplesfeedbackforum.com/S.aspx?r=qzDQHMdNxUOoo2VdgZl2xw&s=902&a=1314

Code: Select all

[NoScript] Blocking cross-site Javascript served from https://cogprogramming.googlecode.com/files/common_v1.5.js with wrong type info text/plain, attachment; filename="common_v1.5.js" and included by https://www.staplesfeedbackforum.com/S.aspx?r=qzDQHMdNxUOoo2VdgZl2xw&s=902&a=1314

Options | Advanced -> XSS, uncheck

Open a new window & try again.
Same results.

Posted: **Thu Jan 09, 2014 9:53 pm**

that's not the xss filter
to disable that protection: about:config -> toggle noscript.inclusionTypeChecking ?

you can "fix" that specific site by adding

Code: Select all

https://cogprogramming.googlecode.com/files/

to noscript.inclusionTypeChecking.exceptions (i'm assuming you know the implications of doing that and why fix is in quotes

)

and a quick test with 0.0.0.0 indicates that disable xss does not require browser restart

Posted: **Thu Jan 09, 2014 11:48 pm**

Ah, thanks.

InformAction Forums

Does Disabling XSS Require Restart?

Does Disabling XSS Require Restart?

Re: Does Disabling XSS Require Restart?

Re: Does Disabling XSS Require Restart?

Re: Does Disabling XSS Require Restart?

Re: Does Disabling XSS Require Restart?