0NoScript的标志Improve your browsing security without crippling lots of sites

I always recom­mend that people install an altern­at­ive browser to Inter­net Explorer. Per­son­ally I prefer 火狐 to the oth­er altern­at­ives (, 歌剧, 苹果浏览器) as I find the huge num­ber of addons on offer give it an unas­sail­able advant­age. I’ve recently exper­i­mented with the NoScript 加上, which enhances secur­ity by block­ing act­ive objects and scripts unless expli­citly approved. How­ever I found that I was forever hav­ing to grant per­mis­sion to every site I vis­ited for it to work cor­rectly.


The main reas­on I wanted NoScript was to pre­vent XSS exploits, but I did­n’t want genu­ine loc­al scripts blocked. This can be achieved with NoScript by open­ing its options, tick­ing “tem­por­ar­ily allow top-level sites by default” and choos­ing “Base 2ND level Domains (noscript.net)”. This should sub­stan­tially reduce how fre­quently you need to grant a site per­mis­sions.

I’m sure some people will try to preach that this isn’t ‘prop­erly’ secure, but for most users if they have to choose between remov­ing NoScript, or hav­ing it in its default con­fig­ur­a­tion, the major­ity will choose to go without it. Using it in this con­fig­ur­a­tion will block XSS exploits and offer sig­ni­fic­antly improved secur­ity without much com­prom­ise to ease of brows­ing.

有你自己的一些想法? 下面放纵自己通过评论! 如果您想订阅,请使用菜单上的订阅链接右上方. 您还可以通过使用下面的链接社会分享这与你的朋友. 干杯.

发表评论