Page 1 of 1
Automatically Allow HTTPS
Posted: Thu Sep 29, 2011 7:25 pm
by asmuk
hello is there a way to allow javascript code for a Valid HTTPS certificate?
if no will it be added in the near future... because a valid certified HTTPS means the site is legit and there is very lil chance to get attacked from those sites so i think there is no reason to block javascript from those sites.
Re: Automatically Allow HTTPS
Posted: Thu Sep 29, 2011 7:38 pm
by asmuk
to extend this feature more once noscript stumble upon valid HTTPS for specific domain automatically put the domain in white list since the domain is legit.
thanks can you add this features
Re: Automatically Allow HTTPS
Posted: Thu Sep 29, 2011 9:29 pm
by dhouwn
asmuk wrote:because a valid certified HTTPS means the site is legit and there is very lil chance to get attacked from those sites so i think there is no reason to block javascript from those sites.
The site might have user-generated content, the site might get hacked, the site might serve annoying content…
Re: Automatically Allow HTTPS
Posted: Fri Sep 30, 2011 6:56 am
by asmuk
dhouwn wrote:asmuk wrote:because a valid certified HTTPS means the site is legit and there is very lil chance to get attacked from those sites so i think there is no reason to block javascript from those sites.
The site might have user-generated content, the site might get hacked, the site might serve annoying content…
there is no 100% security i said that there is lil chance ..............the site might get hacked bla bla there will be always a hole no matter how secure u are and if you whitelist a site it might get hacked too or there will be user generated content and stuff like that. it would be good to give users more options for flexibility i like to see this with default disabled so users who want will go to options and enable it.
Re: Automatically Allow HTTPS
Posted: Fri Sep 30, 2011 2:22 pm
by Giorgio Maone
NoScript Options|Whitelist, add "
https:" and never accept funny certificate.
Re: Automatically Allow HTTPS
Posted: Sat Oct 01, 2011 4:22 pm
by asmuk
Giorgio Maone wrote:NoScript Options|Whitelist, add "
https:" and never accept funny certificate.
thanks bro it works!! i didnt know there was already
Re: Automatically Allow HTTPS
Posted: Sat Oct 01, 2011 4:54 pm
by asmuk
Giorgio Maone wrote:NoScript Options|Whitelist, add "
https:" and never accept funny certificate.
what if i want to browse funny certified websites with javascript disabled do i have to go back and remove https from a white list or is there other quick ways to do it.
Re: Automatically Allow HTTPS
Posted: Sat Oct 01, 2011 6:54 pm
by dhouwn
Probably, it's all the same HTTPS for NoScript.