[RFE/ACCEPTED] Enhanced Object Whitelisting
Posted: Tue Jun 01, 2010 6:55 pm
Hello,
Would it be possible to extend noscript.allowedMimeRegExp such that the allowed object can be restricted to specific sites? For example, if I want to allow the audio/x-amzxml object only at Amazon I'd like to put in something like:Right now, to my knowledge, I have to allow audio/x-amzxml on all sites. I realize the likelihood of someone exploiting this is minimal, maybe even trivial, in this one case, but there are other situations where it might be used (e.g. PDFs) where opening it for all sites would be much riskier.
Including this functionality in the GUI might be nice as well for some folks, but using about:config doesn't bother me.
Thank you,
Greg
Would it be possible to extend noscript.allowedMimeRegExp such that the allowed object can be restricted to specific sites? For example, if I want to allow the audio/x-amzxml object only at Amazon I'd like to put in something like:
Code: Select all
audio/x-amzxml@http://www.amazon.comIncluding this functionality in the GUI might be nice as well for some folks, but using about:config doesn't bother me.
Thank you,
Greg