InformAction Forums

Firefox9.01/NoScript2.2.5

On http://www.aarhus.dk/da/job.aspx is listed categories as links with more jobs. These categories should open and show links from http://job.ofir.dk/bla/bla/bla but nothing happens. Right-click on a link and "Open in New Tab/Window" works.

I have allowed everything and can't see what could make the content appear.

Regards
Kent Knudsen

I assume you have allowed aarhus.dk in NoScript menu?

On Firefox 3.6.25, I can either click the placeholder (NoScript red block-logo) and allow it, or point to Blocked Objects, allow any of them, and then all the job links work.

Will confirm on Fx 9.01, but please try that.

It is the same on Firefox 9.01.

Also, you may have to allow job.ofir.dk. It will appear in the menu after allowing the first set of permissions, as above.

Tom T. wrote:It is the same on Firefox 9.01.

Also, you may have to allow job.ofir.dk. It will appear in the menu after allowing the first set of permissions, as above.

Both aarhus.dk and job.ofir.dk are allowed to no avail. Even if I select "Allow Scripts Globally" the links doesn't appear. Still if I click the link "Akademiker/konsulent (4)" I get a page with no job links.

Only if I totally disable the add-on I have access. Maybe it's a XSS issue?

forestmountain wrote:Both aarhus.dk and job.ofir.dk are allowed to no avail. Even if I select "Allow Scripts Globally" the links doesn't appear. Still if I click the link "Akademiker/konsulent (4)" I get a page with no job links.

Did you point to "Blocked Objects", and allow one? The list starts either with <IFRAME>, *@http, or unknown@htttp --- then job.ofir.dk.

Also, I see a placeholder (red S over a blue snake), which if clicked, gives this confirmation prompt: Allowing, or temporarily allowing, this will also make good the links to job.ofir, and all of the links to jobs will work properly.

forestmountain wrote:Only if I totally disable the add-on I have access. Maybe it's a XSS issue?

You would see a XSS warning in the NoScript menu or a notification bar, depending on your choice in NS Options > Notifications > XSS.

Also, the Error Console would give an XSS message, as per the XSS FAQ.

So there is no XSS issue here. Please try allowing the Blocked Object by one or more of the above methods.
*********************************************
By the way, it also works if you uncheck NS Options > Embeddings > "Apply these restrictions to whitelisted sites too".

Or if you leave all checked except "Forbid <IFRAME>", then it works even with *no* scripting allowed.

But both of these permissions apply globally, to all whitelisted sites in the first case, and to *all* sites in the second case. It is much safer to keep this whole Embeddings page checked, and to allow only these sites that you have decided to trust.

Did you disable Adblock Plus?

WFM if I do that .

Otherwise, the only way to get the listings to display, is to open the link in a new tab (as you mentioned).

Actually, if you disable ABP, then you do not need anything Allowed in NoScript & it will work.

Problem solved AND WTF.....its was Adblock Plus that spoiled my day. I thought I had certified ABP didn't block anything, but no! Normally I don't have any problems with having both ABP and NS. Oh well...

Thanks both to Tom T. and therube.

forestmountain wrote:Problem solved AND WTF.....its was Adblock Plus that spoiled my day. I thought I had certified ABP didn't block anything, but no! Normally I don't have any problems with having both ABP and NS. Oh well...

Sorry, never occurred to me, because I don't use ABP ... and this is one reason why. (I still never see ads, anyway.)

forestmountain wrote:Thanks both to Tom T. and therube.

On behalf of both of us, you're very welcome.

Regards,
- Tom