Many people do not like to use the NoScript add-on for Firefox because it is pretty restrictive out of the box and requires time to tune it to where you do not notice it running. While I can certainly understand this point of view, one thing you may not know is that even if allow global scripts to run (which removes the restrictions people find annoying), NoScript still protects you from XSS.
If you are not familiar with what XSS is, you can read the full description of the protection provided by NoScript on their site.
Cross-Site Scripting (XSS) vulnerabilities are usually programming errors made by web developers, which allow an attacker to inject his own malicious code from a certain site into a different site. They can be used, for instance, to steal your authentication credentials and, more in general, to impersonate you on the victim site (e.g. your online banking or your web mail).
While there is no doubt taking advantage of NoScript’s full range of protection will give you significant protection, at the very least the XSS protection alone makes this add-on worth having.
Jason Faulkner is the man who brings you our daily tips. He is based in Atlanta, Georgia.
![Jarte, The Ultimate Lightweight Word Processor? [Video]](/videothumbs/jarte.jpg)
I totally agree! There is nothing else that can even compete with it. If you are security concious and, you are a stumbler… this is a must have!
I think it is invaluable and the best browser security tool out there.
I run noscript and I notice that your web page wants to run 9 scripts in addition to the one for pcmech.com. What are they for and why do you think they are necessary to your operation? I have them all blocked and the page works satisfactorily. Inquiring minds want to know!
Thanks for producing a great site.
They are most likely for advertising affiliates and statistics tracking. Considering this site is supported by ads, I would definitely say they are necessary.