On Sat, Jun 13, 2015 at 12:05:16PM -0600, jd1008 wrote:> Mark, please be aware that noscript has also a whitelist > that is not viewable by the user. > The whitelist tab does NOT list the hidden white listed > entries.You mean the noscript.mandatory about:config entry? I looked at it on my computer and it wasn't really web sites, just internal chrome URLs like "about:config". -- Jonathan Billings <billings at negate.org>
On 06/12/2015 11:25 AM, m.roth at 5-cent.us wrote:> jd1008 wrote: >> On 06/12/2015 07:28 AM, g wrote: >>> On 06/10/2015 03:56 AM, Always Learning wrote: >>>> I displayed, as a web page, a list of search results created in PHP, >>>> from MySQL. >>> i am still using 24.8.0 and do not have to contend with all the >>> bugs introduced by moz dev and their 'bells and whistles' when >>> they started try to get ahead of gaagle chrome web browser. >>> >>> you will get better results for your problems it you would post >>> them to the mozilla-support-firefox at lists.mozilla.org which you >>> can join subscribing to list at; >>> >>> https://lists.mozilla.org/listinfo/support-firefox >>> >>>> A candidate for upstream bugzilla ? >>> maybe at mozilla.org, but not at centos.org. >>> >>> >> The most offensive problems of using browsers is that >> they do not tell you nor ask your permission when javascripts >> spy on your entire storage contents. >> I had asked a java developer at Sun Microsystems about >> what Sun means when it says that Java runs in a sandbox? >> Just what is the sandbox? >> I also asked if browsers that execute javascripts are retricted >> to this notion of a sandbox that does not leak out into >> the rest of the system. >> >> He said the "sandbox" is the entire storage on your computer. >> >> Enough said. > Please note that java and javascript are two separate languages.... And I > have noscript installed everywhere.... > > mark >Mark, please be aware that noscript has also a whitelist that is not viewable by the user. The whitelist tab does NOT list the hidden white listed entries.
On 06/12/2015 12:18 PM, Jonathan Billings wrote:> On Sat, Jun 13, 2015 at 12:05:16PM -0600, jd1008 wrote: >> Mark, please be aware that noscript has also a whitelist >> that is not viewable by the user. >> The whitelist tab does NOT list the hidden white listed >> entries. > You mean the noscript.mandatory about:config entry? I looked at it on > my computer and it wasn't really web sites, just internal chrome URLs > like "about:config". >No Jonathan. I mean websites whitelisted and not exposed in the whitelist tab.
On 06/13/2015 01:05 PM, jd1008 wrote: <<<>>>> Mark, please be aware that noscript has also a whitelist > that is not viewable by the user. > The whitelist tab does NOT list the hidden white listed > entries.and you know this how? i do not really believe there is a 'hidden whitelist'. it is more like there are sites that are used to check on sites you connect to. gaggle is one of them. :-P something you will/may find interesting, open about:config, enter "Search: whitelist" for info on noscript 'whitelist'. if you enter "Search: noscript", you will see that noscript stores one hell of a lot of info. see pages; https://noscript.net/faq then <ctrl-f> enter "find: whitelist", read all for more whitelist info. https://noscript.net/features#xss https://noscript.net/faq#xss then open noscript options select Advanced -> XSS, be sure both selections are checked. you should also register here; https://forums.informaction.com/viewforum.php?f=3 to find out more about noscript and ask about 'hidden whitelist'. for further protection when surfing, get the 'wot' [web of trust] add-on; https://addons.mozilla.org/en-US/firefox/addon/wot-safe-browsing-tool/ https://www.mywot.com/ https://www.mywot.com/en/settings/en-US/firefox/20131030/welcome https://en.wikipedia.org/wiki/WOT_Services -- peace out. -- If Bill Gates got a dime for every time Windows crashes... ...oh, wait. He does. THAT explains it! -- in a world with out fences, who needs gates. -- CentOS GNU/Linux 6.6 tc,hago. g .
On 06/13/2015 02:02 PM, g wrote:> > On 06/13/2015 01:05 PM, jd1008 wrote: > <<<>>> > >> Mark, please be aware that noscript has also a whitelist >> that is not viewable by the user. >> The whitelist tab does NOT list the hidden white listed >> entries. > and you know this how? > > > i do not really believe there is a 'hidden whitelist'. it is more like > there are sites that are used to check on sites you connect to. gaggle > is one of them. :-P > > something you will/may find interesting, open about:config, enter > "Search: whitelist" for info on noscript 'whitelist'. if you enter > "Search: noscript", you will see that noscript stores one hell of a > lot of info. > > > see pages; > > https://noscript.net/faq > > then <ctrl-f> enter "find: whitelist", read all for more > whitelist info. > > https://noscript.net/features#xss > https://noscript.net/faq#xss > > then open noscript options select Advanced -> XSS, be sure both > selections are checked. > > you should also register here; > > https://forums.informaction.com/viewforum.php?f=3 > > to find out more about noscript and ask about 'hidden whitelist'. > > > for further protection when surfing, get the 'wot' [web of trust] > add-on; > > https://addons.mozilla.org/en-US/firefox/addon/wot-safe-browsing-tool/ > > https://www.mywot.com/ > https://www.mywot.com/en/settings/en-US/firefox/20131030/welcome > > https://en.wikipedia.org/wiki/WOT_ServicesLook, I am not trying to discourage anyone from using noscript. I myself do use it. But I do not put my trust in it due to my prior experience with it. If you think it floats your boat, fine with me. No need to beat on this any further.