I’ve been using NoScript recently. It’s a add on for Firefox that only
to happen. I’ve started doing this because I’ve read that running untrusted
online. Do you think I’m overdoing it? What are your thoughts on the topic of
safe – nothing is – but safe enough.
Having said that, I should tell you that I also run NoScript.
Let’s look at what that all means.
Become a Patron of Ask Leo! and go ad-free!
If you read that carefully you’ll realize that this means a web page – any
web page – can now include a computer program. Rather than just displaying text
and pictures, web pages can now “do” things. A popular
present a very complete and functional email program – all in a web page.
anything harmfully to your computer.
However, as we all know, all software has bugs. This holds true for the
runs in. Some of those bugs can, when discovered, be exploited to bypass the
sandbox, or to perform other malicious actions on your machine.
The good news is that it’s very rare. And once again, as long as you keep
your computer up-to-date with the latest patches and versions of the operating
actually how I run most of my other machines.
interpreter, you’re likely quite safe”
However, after learning about NoScript, I decided to give it a try. Exactly
you tell it. If you visit a site that you haven’t OK’ed, NoScript tells you,
is that some web sites simply don’t work, while others might only work
partially. The point is that you now have the choice of whether or not to
for the site in question, only to be told that other domains that site
references are still blocked – often because those other domains are used to
present some of the ads or content on the original page.
does protect you from any attempts at malicious behavior, whether or not they
could actually succeed.
thing and many, many sites now require it for full functionality. If you’re at
all concerned, or just want to turn off some of the content that it implies,
NoScript is a fine approach for FireFox users to take control.
but how do we know that “NoScript” is actually safe itself? Thanks,
interesting and concise. Thank you.
I have heard a great deal about java script and for the most part not too many good things. However I can see the advantage of having java script, it makes the site pages come alive. Safety is a concern of mine as well, therefore I am asking you about No Script. What exactly is NoScript? A program in and of itself? Or a helper dll that can be activated and deactivated at will? Where does one find NoScript at?
A great strait-to-the-point and accurate article!
The problem is, as the intaknetz evolves, users demand more functionality, which means handing more power over to the developers. But this also means people with a malicious intent have more tools at their disposal.
But as well as this, rumors get started and spread quickly about “how dangerous JS really is”. I do not deny it can be used to very dubious effects, like stealing data stored in cookies for example. But people do get paranoid about these things, and thinks everyone is out to get them, which isn’t true.
And as for NoScript… Never used it because i’ve never felt a reason to do so; i feel competent enough to judge whether a site is trustworthy and would not allow itself to be compromised (My fault if i’m wrong.). But yes, if a friend asked me: “How can i improve the security of Firefox?”(I don’t know of any NoScript equivalents for the other “major” browsers.), i would recommend it, as by completely denying the code to be executed until explicitly allowed to do so, you will lower your chances of getting any nasty surprises, but you have to remember, there is nothing stopping you allowing something malicious to run.
Oh the irony of it…