Thread replies: 10
Thread images: 2
Thread images: 2
NoScript's cross site scripting blocking does more harm than good /g/. 99% of the time cross site scripting is legit. Why would you want to use this? Tried to make a payment on a site only for it to fuck up because it was trying to bring up my bank's verification process in the checkout.
>>
>99% of the time cross site scripting is legit
Nigga, seriously now. XSS is one of the biggest web security problems and it has been it for over a decade.
Regardless of what NoScript's XSS protection does, XSS is a genuine problem.
>>
>>57869148
On a trusted site, it should be fine. They have security audits.
>>
>>57869063
Turn off noscript when making a payment, or whitelist the site...
>>
>>57869063
>Not using a browser without addons exclusively to transactions.
>>
>>57869351
>turn it off when you need it most
Don't breed.
>>
What bothers me about NoScript/uMatrix is that its protection is rendered useless when you have to make a payment because the reloading means you have to disable it so the payment doesn't go through twice or not at all.
>>
>>57869063
>firefox 3.x
oh my laaaaard
those were good fucking days i tell ya hwut
>>
>>57869063
That's sort of flawed system.
It should redirect you to the bank's website with a prefilled info form.
Then once you make a payment it should do a callback to the seller's website and redirect you to a success/failure message.
>>
File: 1463591722274.png (35KB, 577x253px) Image search:
[Google]
35KB, 577x253px
>>57869063
ScriptSafe > NoScript
Thread posts: 10
Thread images: 2
Thread images: 2