jdh
May 2nd, 2007, 03:20 PM
The most recent versions of NoScript allow blocking the playing / displaying of plug-in media from Untrusted sites.
Click the NoScript icon, then click Options, then click the Advanced tab, and disable the plug-ins you want to block.
Microsoft Windows, Microsoft Internet Explorer, and Firefox are not the only softwares that "hatch bugs".
Browser plug-ins such as: Adobe Acrobat Reader, Apple Quicktime, Adobe Macromedia Flash Player, RealAudio, Windows Media Player also have security holes. And it not easy to keep up to date on their vulnerabilities (I subscribe to RSS news feeds from http://isc.sans.org [Internet Storm Center] to learn about such security holes but I'm not sure that is the best news source for home users).
But by disabling the playing of plug-in media on Untrusted sites, I figure one is pretty well protected from exploits against plug in programs, even if one does not keep one's plug-ins well patched.
Of course, the assumption behind this is that media from trusted sites will not contain exploits. Not a bullet-proof guarantee, so best to patch your plug-in programs too.
I still use FlashBlock extension too, to block the playing of Flash media (ads) on Trusted sites (e.g. Yahoo mail or Yahoo groups) since they are annoying and come from other (perhaps less trustworthy?) domains besides yahoo.com per se.
DH
Click the NoScript icon, then click Options, then click the Advanced tab, and disable the plug-ins you want to block.
Microsoft Windows, Microsoft Internet Explorer, and Firefox are not the only softwares that "hatch bugs".
Browser plug-ins such as: Adobe Acrobat Reader, Apple Quicktime, Adobe Macromedia Flash Player, RealAudio, Windows Media Player also have security holes. And it not easy to keep up to date on their vulnerabilities (I subscribe to RSS news feeds from http://isc.sans.org [Internet Storm Center] to learn about such security holes but I'm not sure that is the best news source for home users).
But by disabling the playing of plug-in media on Untrusted sites, I figure one is pretty well protected from exploits against plug in programs, even if one does not keep one's plug-ins well patched.
Of course, the assumption behind this is that media from trusted sites will not contain exploits. Not a bullet-proof guarantee, so best to patch your plug-in programs too.
I still use FlashBlock extension too, to block the playing of Flash media (ads) on Trusted sites (e.g. Yahoo mail or Yahoo groups) since they are annoying and come from other (perhaps less trustworthy?) domains besides yahoo.com per se.
DH