If I had to pick one extension that I can't browse the Internet without it is Firefox's NoScript extension. You have probably heard about it or are using it as well to block all scripts on all websites that you connect to automatically. This is huge from a security point of view as it blocks many attack vectors that other Internet users are exposed to.
Some users may not like NoScript because of this, as it may render websites partially or fully unusable by default. It is then up to you to change the necessary permissions so that you can browse the site normally. While that is certainly a drawback, it is clearly less important than being safe on the Internet.
I have been using NoScript for a long time and most websites work out of the box when the extension is enabled in the browser. You can get most sites to work by allowing scripts to run on the domain the website is hosted on. Only rarely is it required to enable other scripts for sites to work in the browser.
I'd like to share 6 NoScript features with you that are not known by many of the extension's users.
Top 6 secret NoScript features
- You can middle-click the toolbar button of the extension to temporarily allow all scripts to run on the site. This can be useful if you want to allow them all as it takes only one click.
- A middle-click on any domain listed in NoScript's interface opens the security and privacy info page in a new tab. It links to services like Web of Trust, McAfee SiteAvisor or hpHost Report so that you can look up information about a particular domain with two clicks.
- You know that NoScript supports whitelisting websites temporarily or permanently so that scripts are allowed to run on the added sites. What you may not know however is that the extension ships with a set of domains that are whitelisted by default including youtube.com, yahoo.com, google.com, microsoft.com or firstdata.com You can remove those sites in the whitelist options.
- A right-click on a domain listed by NoScript copies it to the system's clipboard.
- You can use the Ctrl-Shift-\ shortcut to temporarily allow the top-level site. You can modify the shortcut in about:config by changing the value of the noscript.keys.toggle preference.
- The blacklist is useful if you want to exclude domains from appearing in NoScript's interface. Any blacklisted site will not be allowed even if you use the "allow all temporarily" or "allow all permanently" feature. To mark a domain as untrusted, open the NoScript > Untrusted menu and select it. To mass-add untrusted domains open about:config and add them to the noscript.untrusted parameter.
Have a tip of your own to share or want to comment on one of the tips above? Feel free to post a comment below.