[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Quick question on Torbutton and NoScript



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I figured it would work the same way but interestingly enough, even with
noscript on allow everything, some javascript still fails to work. I'm
guessing this means TorButton is doing some work in the background, but
I could be wrong.

I have heard that js has an option to bypass proxies or contact local
routers, which is part of the "dangerous javascript" that I assume
torbutton would hook. For good measure, I've manually blocked anything
in the local subnets but I think that might be overkill.

Ringo

Marco Bonetti wrote:
> Ringo wrote:
>> Does the TorButton "hook dangerous javascript" function still work if
>> you tell noscript to allow scripts on certain pages/sites?
> IIRC when I was questioning about the torbutton/noscript compatibility I
> received this answer: "if you turn on js, you break torbutton
> functions". This was long time before the noscript restriction of active
> content during https and many versions of torbutton ago, when noscript
> was still an unfriendly tor extension, so take it with a pinch of salt ;-)
> I'm assuming that, yes, enabling js via noscript will take over
> torbutton block mechanism but the ability of noscript to restrict the
> active contents from https only is a great aid in such situations.
> 
> ciao
> 
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAktC/HUACgkQETpif9i/sroolwCeJ0iKt4nojAYWaTiZRJ7RI4Rc
ewMAn1iJLNRquR/d9KYedH6EyujLpEqx
=hzBJ
-----END PGP SIGNATURE-----
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/