Post · bonfire.cafe

Post

#NoScript 13.5 is out, with many user experience improvements!

The most visible:
- new "cascade permissions" mode
- the onboarding / site classification behavior panel (in the picture)
- many #usability and #security enhancements regarding blocked content and click-to-play

The greatest thanks(giving) to the Open Technology Fund #otf for strenuously supporting NoScript during the past 2 years, especially through the Manifest V3 compatibility ordeal.

https://noscript.net/

A screenshot of the new NoScript Onboarding / Site Classification Behavior page.

Text:

**Site Classification Behavior**

Please select the way NoScript behaves when encountering unclassified sites. You can revisit this choice from the NoScript Options page and whenever you reset NoScript.

- STRICT / Default Deny

The traditional and most secure NoScript behavior: unclassified sites, marked as "DEFAULT", are NOT considered trusted. Potentially harmful capabilities, including scripts, are disabled. You can manually enable the sites you trust by opening the NoScript interface and marking them as "TRUSTED", or further customize their capabilities by selecting "CUSTOM". Cross-site protections are always enforced.

- EASIER / Auto

A compromise between security and convenience: the top level site, whose address is shown in the navigation bar, is automatically promoted to "Temporarily TRUSTED" unless already manually classified. 3d party sites still need to be classified manually. Cross-site protections are always enforced.

- EASIEST / Default allow

The most relaxed behavior: unclassified top-level sites are promoted to "Temporarily TRUSTED", and capabilities enabled for the top-level site are automatically cascaded to all its 3rd party unclassified sub-resources. Sites already classified as "UNTRUSTED" and "CUSTOM" are not affected. Cross-site protections are always enforced. — A screenshot of the new NoScript Onboarding / Site Classification Behavior page. Text: **Site Classification Behavior** Please select the way NoScript behaves when encountering unclassified sites. You can revisit this choice from the NoScript Options page and whenever you reset NoScript. - STRICT / Default Deny The traditional and most secure NoScript behavior: unclassified sites, marked as "DEFAULT", are NOT considered trusted. Potentially harmful capabilities, including scripts, are disabled. You can manually enable the sites you trust by opening the NoScript interface and marking them as "TRUSTED", or further customize their capabilities by selecting "CUSTOM". Cross-site protections are always enforced. - EASIER / Auto A compromise between security and convenience: the top level site, whose address is shown in the navigation bar, is automatically promoted to "Temporarily TRUSTED" unless already manually classified. 3d party sites still need to be classified manually. Cross-site protections are always enforced. - EASIEST / Default allow The most relaxed behavior: unclassified top-level sites are promoted to "Temporarily TRUSTED", and capabilities enabled for the top-level site are automatically cascaded to all its 3rd party unclassified sub-resources. Sites already classified as "UNTRUSTED" and "CUSTOM" are not affected. Cross-site protections are always enforced.

bonfire.cafe

A space for Bonfire maintainers and contributors to communicate

bonfire.cafe: About · Code of conduct · Privacy · Users · Instances

Bonfire social · 1.0.1 no JS en

Automatic federation enabled