This extension allows javascript and Java execution only for trusted domains of your choice.
This whitelist based pre-emptive script blocking approach prevents exploitation of security vulnerabilities with no loss of functionality .
You can enable javascript/Java execution for websites you trust with a simple click on the NoScript statusbar icon or by using the contextual menu , for easier operation in popup statusbar-less windows .
Key features of NoScript :
Several new Anti-anti-adblocker Surrogate Scripts to prevent pages from breaking when ads are disabled .
Exclusive protection against DNS-rebinding attacks targeted to routers , including WAN IP variants .
Built-in ABE ruleset editor .
NoScript 1 .10 .x is the last serie supporting Firefox 2 .0 and older browsers . It will be updated only if affected by serious security vulnerabilities . This will allow the upcoming NoScript 2 .x series to
be developed faster and better , by removing legacy compatibility code and fully leveraging the latest APIs and language features . li>Increased ClearClick accuracy on very complex nested pages .
Faster and more compatible anti-XSS protection .
Better Surrogate Scripts error management and new built-in surrogates to securify AMO add-ons installation against MITM attacks and improve Google search experience when scripts are disabled .
Important ABE enhancements : same domain origin matching ( SELF+ ) , same base domain origin matching ( SELF++ ) and INCLUSION pseudo-method for fine-grained subrequests matching , see the updated ABE rules specification for details .
Full protection against Aviv Raff's scriptless tabnagging variant , by blocking refreshes triggered on unfocused untrusted tabs . See the changelog for more details .
Improved and updated Firefox Mobile ( Fennec ) support : NoScript's UI has been moved inside the location bar , and options have been simplified down to 4 preset configurations ( you can still perform fine-grained cofiguration in about :config or via Weave Sync ) .
The long awaited pluggable site info page , can be opened by middle-clicking or shift+clicking on any site entry in NoScript's menus .
Enhanced usability of universal Flash blocking .
Improved HTTPS enforcing .
Strict Transport Security support .
New Import/Export buttons in the NoScript Options dialog , backup the whole NoScript configuration in a single JSON file , as a disconnected alternative to the Weave/XMark synchronization functionality .
Experimental external filters for plugin content ( e .g . Blitzableiter to sanitize Flash applets ) . It requires Firefox 3 .5 and above , and it can be configured from the new NoScript Options|Advanced|External Filters panel . To activate the built-in Blitzableiter support you need to enable filters , download Blitzableiter binaries and tell NoScript where the executable is . Please notice that Blitzableiter is in its early development stages , and it breaks a lot of Flash content .
You can download this add-on from here .
No comments:
Post a Comment