You Should Have NoScript Installed On Firefox

by on Jun 5, 2009 | 4 comments

Many people do not like to use the NoScript add-on for Firefox because it is pretty restrictive out of the box and requires time to tune it to where you do not notice it running. While I can certainly understand this point of view, one thing you may not know is that even if allow global scripts to run (which removes the restrictions people find annoying), NoScript still protects you from XSS.

If you are not familiar with what XSS is, you can read the full description of the protection provided by NoScript on their site.

Cross-Site Scripting (XSS) vulnerabilities are usually programming errors made by web developers, which allow an attacker to inject his own malicious code from a certain site into a different site. They can be used, for instance, to steal your authentication credentials and, more in general, to impersonate you on the victim site (e.g. your online banking or your web mail).

While there is no doubt taking advantage of NoScript’s full range of protection will give you significant protection, at the very least the XSS protection alone makes this add-on worth having.

Free eBook!

Like what you read?

If so, please join over 28,000 people who receive our exclusive weekly newsletter and computer tips, and get FREE COPIES of 5 eBooks we created, as our gift to you for subscribing. Just enter your name and email below:

Post A Comment Using Facebook

  • http://www.Tribee.co.uk Mark Illingworth

    I totally agree! There is nothing else that can even compete with it. If you are security concious and, you are a stumbler… this is a must have!

  • http://TriumphTalk.com Carl S

    I think it is invaluable and the best browser security tool out there.

  • Fergus

    I run noscript and I notice that your web page wants to run 9 scripts in addition to the one for pcmech.com. What are they for and why do you think they are necessary to your operation? I have them all blocked and the page works satisfactorily. Inquiring minds want to know!

    Thanks for producing a great site.

    • Jason Faulkner

      They are most likely for advertising affiliates and statistics tracking. Considering this site is supported by ads, I would definitely say they are necessary.

What’s Your Preference?

Daily Alerts

Each day we send out a quick email to thousands of PCMECH readers to notify them of new posts. This email is just a short, plain email with titles and links to our latest posts. You can unsubscribe from this service at any time.

You can subscribe to it by leaving your email address in the following field and confirming your subscription when you get an email asking you to do so.

Enter your email address for
Daily Updates:

Weekly Newsletter

Running for over 6 years, the PCMECH weekly newsletter helps you keep tabs on the world of tech. Each issue includes news bits, an article, an exclusive rant as well as a download of the week. This newsletter is subscribed to by over 28,000 readers (many who also subscribe to the other option) - come join the community!

To subscribe to this weekly newsletter simply add your email address to the following field and then follow the confirmation prompts. You will be able to unsubscribe at any time.

Enter your email address for
Free Weekly Newsletter: