solistic wrote:
Thank you. I have already seen this post. However, the issue of a few bytes every five or fifteen minutes is irrelevant. What is relevant is the fact that I have spent three unproductive days trying to figure out what was going on, so it is not helpful to be so dismissive of my concerns. All I knew was that something was happening, but what exactly it was I did not know.
That's exactly why I've added the User Agent modification which I was talking about in that post which you claimto have already seen.
If I was "dismissive", I wouldn't have further change this feature in order to help people in your position to quickly figure out what's going on even if they don't read NoScript's release notes, the privacy policy and the news articles about this feature which were published, for instance, on The Register and Heise.
solistic wrote:
I note somewhere that you defend the activities of the ABE feature by saying that it is documented within the EULA.
NoScript is free software, and as such has no EULA whatsoever. Maybe you mean the Privacy Policy? Or the release notes? or my blog? or the news announcing the new feature?
Furthermore, I don't need to "defend" the activities of ABE. I could as well leave them as they were before, but in the light of the widespread router flaw they wouldn't have been as effective as originally specified anymore, hence from my point of view (and the point of view of users which relied on it for intranet security) that was a bug in need of a fix.
On a side note, this feature which according to you I should need to "defend", did cost me an auto-inflicted initial DOS and still costs me lots of traffic GB and CPU cycles because of the millions of ipecho pings my servers gets daily in order to ensure its reliability. If I was motivated by anything else than making NoScript an effective security tool I would much better (financially speaking) drop this feature right now.
solistic wrote:The fact that Noscript now appears to be communicating with and testing router defences, without authorisation or knowledge
This is not a fact, it's just your speculation. NoScript is just reading whatever responds on the WAN IP, in order to detect changes and have a hint about that IP being reassigned to a different user.
That's not "testing router defences", it's just taking a necessary step to defend your LAN.
solistic wrote:I run my own computer repair business, and I am in a position to recommend software to a large number of people. In fact, i have in the past, recommended Noscript to my customers, but I shall be reconsidering that advice, in light of my experiences and your dismissive attitude.
I'm grateful for the word you spread in the past and sad for you reconsidering that, but you can't call me "dismissive", because I pointed you to a way to disable this feature if it really was a concern, tried to give as much publicity as possible to this feature (without making it opt-in because 99% of users, if asked by a prompt, wouldn't have easily figured out what was best to choose) and already changed it in order to be easier to discover even for those who don't read software documentation.