0NoScript logoImprove your browsing security without crippling lots of sites

I always recom­mend that people install an altern­at­ive browser to Inter­net Explorer. Per­son­ally I prefer Fire­fox to the oth­er altern­at­ives (Chrome, Opera, Safari) as I find the huge num­ber of addons on offer give it an unas­sail­able advant­age. I’ve recently exper­i­mented with the NoScript addon, which enhances secur­ity by block­ing act­ive objects and scripts unless expli­citly approved. How­ever I found that I was forever hav­ing to grant per­mis­sion to every site I vis­ited for it to work cor­rectly.


The main reas­on I wanted NoScript was to pre­vent XSS exploits, but I didn’t want genu­ine loc­al scripts blocked. This can be achieved with NoScript by open­ing its options, tick­ing “tem­por­ar­ily allow top-level sites by default” and choos­ing “Base 2nd level Domains (noscript.net)”. This should sub­stan­tially reduce how fre­quently you need to grant a site per­mis­sions.

I’m sure some people will try to preach that this isn’t ‘prop­erly’ secure, but for most users if they have to choose between remov­ing NoScript, or hav­ing it in its default con­fig­ur­a­tion, the major­ity will choose to go without it. Using it in this con­fig­ur­a­tion will block XSS exploits and offer sig­ni­fic­antly improved secur­ity without much com­prom­ise to ease of brows­ing.

Got some thoughts of your own? Indulge yourself below by commenting! If you would like to subscribe please use the subscribe link on the menu at the top right. You can also share this with your friends by using the social links below. Cheers.

Leave a Reply