![]() That would completely break the web far every FF user. This is what the vast majority of web-based exploits and malware use to do their thing.Īnd while FF 57 may block Java and Silverlight by default (honestly I assumed web browsers were already doing this long ago) it certainly does NOT block all javascript by default. Javascript on the other hand is entirely handled by each browser's own parsing engine. Since bother require runtime engines that are independent of the browser and aren't even likely to be installed these days they are not that common a method for distributing malware. The same applies to Silverlight (which is just the. The web browser is just used as a convenient delivery mechanism but in general they only use the browser as a display surface. Java apps are essentially compiled executables that rely on the Java Runtime Engine. You don't seem to recognize there's a difference between Java and Javascript. ![]() You're right, and that's what I said about Javascript blocked by default now in FF, as tracking protection being enforced, pop-ups can be disabled (and works well for the moment), improved protection against phising (not sure if clickjacking is included in, didn't read full specs), and so on.īut you're right, the list above exhaustive for sure (your list about NoScript), and there are plenty of protections still brought by this extension, but actually my previous post was to mention and compare what is done now natively by FF, and what is still implemented by NoScript, to be more precise.īut we'll see that later, when NoScript is released, and then maybe open a new dedicated topic. The loss of NoScript is the loss of a significant amount of security, and no matter how temporary the loss is, "complaining" about it is well justified. It also blocks Javascript, filters cross-site scripting attacks, prevents websites from tampering with your local network, blocks clickjacking, blocks online resource abuse, enforces HTTPS, manages secure cookies. of-firefoxĭon't forget to change your automatic update settings in firefox.īarbaz wrote:GOGI, NoScript is a lot more than just a plugin blocker. I'm sure many will find this link helpful. I prefer having peace of mind on tried and true systems then to jump the boat too soon and hope for the best. ![]() For security/safety I prefer to air on the side of caution. With new systems have a high chance to be exploited, not saying they will be. I even wonder, once now Firefox disabled all of this by default, what will the WebExt protect us from, I mean by this I'm expecting to see detailed description of specs from Giorgio Maone and staff about this new version once it is released to better uderstand why it is still useful. ) and Flash can only be enabled on request, so surfing on the web with FF57 has nothing to do with previous versions, having on mind that most of those scripts wich used to cause PITA where Java ones. Unlike previous versions, Firefox 57 comes with most kind of scripts blocked by default (Java, Silverlight. I don't really understand why you people complain so much about NoScript not yet released, I mean don't get offended I'm not talking about you in particular but in general. If its longer than a week, then I will gladly stick with firefox56 till then.Īnother donation will be well earned for this major update, I encourage others to do the same If there are "major" delays, then please advise. Dev-A wrote:I feel like a fish out of water without NS.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |