NoScript's cross site scripting blocking does more harm than good /g/. 99% of the time cross site scripting is legit. Why would you want to use this? Tried to make a payment on a site only for it to fuck up because it was trying to bring up my bank's verification process in the checkout.
>99% of the time cross site scripting is legit
Nigga, seriously now. XSS is one of the biggest web security problems and it has been it for over a decade.
Regardless of what NoScript's XSS protection does, XSS is a genuine problem.
>>57869148
On a trusted site, it should be fine. They have security audits.
>>57869063
Turn off noscript when making a payment, or whitelist the site...
>>57869063
>Not using a browser without addons exclusively to transactions.
>>57869351
>turn it off when you need it most
Don't breed.
What bothers me about NoScript/uMatrix is that its protection is rendered useless when you have to make a payment because the reloading means you have to disable it so the payment doesn't go through twice or not at all.
>>57869063
>firefox 3.x
oh my laaaaard
those were good fucking days i tell ya hwut
>>57869063
That's sort of flawed system.
It should redirect you to the bank's website with a prefilled info form.
Then once you make a payment it should do a callback to the seller's website and redirect you to a success/failure message.
>>57869063
ScriptSafe > NoScript