Comments on: YesScript is NoScript’s Antagonist

By: Thrawn

Thrawn — Fri, 18 Nov 2011 00:35:28 +0000

Actually, the web is a jungle – or, at least, parts of it are, and until you visit a page, you don’t know whether it’s safe or not. But since YesScript isn’t a security addon, that’s not the key point.

YesScript is redundant when NoScript can be easily configured to do the same job, only better.

By: LOL

LOL — Thu, 18 Aug 2011 18:34:03 +0000

“there’s so much to block that it would be a lot more work to do that than just to unblock selected sites”

LOL, Are you crazy?

The web is not a jungle where you’ll be raped in any corner with the “cock Javascript”. Thanks NoScript for creating users paranoid.

@x +1

By: Thrawn

Thrawn — Fri, 04 Mar 2011 06:31:24 +0000

I’m with Pietzki…there’s so much to block that it would be a lot more work to do that than just to unblock selected sites. And NoScript in Allow Scripts Globally mode will behave the same way as YesScript, except that it adds silent protection against XSS, CSRF, etc.

By: x

Mon, 19 Apr 2010 03:14:22 +0000

Old post but still relevant today. The replies are obviously from NoScript fans, stuck in mindless “NoScript is a panacea” mode.

YesScript isn’t meant as a security solution, and it isn’t useless. It lets you block scripting on sites that have problematic scripts, and allow everything else. It’s really not hard to understand. Unless you’re mindless.

By: Stephan Sokolow

Stephan Sokolow — Mon, 29 Sep 2008 02:19:24 +0000

I have to agree that blacklisting is bad. I assume you’ve never read “The Six Dumbest Ideas in Computer Security”? Enumerating badness is always doomed to failure.

http://www.ranum.com/security/computer_security/editorials/dumb/index.html

By: David Bradley

David Bradley — Mon, 18 Aug 2008 14:33:46 +0000

This is an interesting…but totally useless idea. It’s like having a house with NoKeys enabled. All doors are left unlocked unless you blacklist them for a particular person…a burglar say…but how would you know in advance that a particular person is not trustworthy?

By: Little Firefox gems « A stench of genius

Little Firefox gems « A stench of genius — Sat, 16 Aug 2008 11:11:44 +0000

[...] NoScript (homepage): This is really one of my favourite add-ons, effectively blocking all JavaScript unless you allow it (either permanently or temporarily). While this might not be for everyone, if you want to take control of your browsing experience, this is a must have. NoScript has received an antagonist: YesScript. More information can be found on gHacks. [...]

By: Pietzki

Pietzki — Wed, 13 Aug 2008 10:52:36 +0000

er, how is that useful? Isnt it MORE of a hassle to manually blacklist bad scripts (by which time the script would already have run anyway)?! Besides, this doesn’t protect you against cross site scripting either..

By: Transcontinental

Transcontinental — Tue, 12 Aug 2008 15:21:49 +0000

I use YesScript and QuickJava, the latter being a quick Java/script on-off button for when I wander in red light zone districts :)
I never liked NoScript, too heavy but above all, participates to a negative approach of the Web as a whole. So many sites use java nowadays, even to load a page, to download a file. Better off with Java on — besides exceptions — within a very good if not sophisticated system security overall.

By: indy

indy — Tue, 12 Aug 2008 15:08:24 +0000

it’s totally useless! :D

I agree with Tony, NoScript has that option and it works really good. It’s between “block all” and “allow all”, we can say “block extra”. I find it is a good approach

By: Tony S.

Tony S. — Tue, 12 Aug 2008 14:27:16 +0000

In NoScript’s options, you can enable that any 1st level domain (i.e. ghacks.net) has scripting allowed by default.

(and then you can ban some page, if you want)

By: Tim

Tim — Tue, 12 Aug 2008 13:55:20 +0000

This looks useful.

The tool I have been searching for is a CPU Usage Meter that indicates the processor load imposed by each tabbed web page. It can display the average/max cpu load in a tool-tip box when the mouse hovers the tab. Then I can take more informed action on the offending site.