Author Topic: Browser's In General.  (Read 30742 times)

0 Members and 1 Guest are viewing this topic.

Offline Dwarden

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1791
  • Ideas, that's ocean without borders!
    • Bohemia Interactive
Re: Browser's In General.
« Reply #30 on: May 04, 2013, 05:52:30 PM »
so let me guess there is no module/plugin/extension for IE10 capable to reach even bit of functionality like noScripts, notScripts, ScriptSafe ?

I mean after all these years I seen tons of things like bugs, cookies, social, w/e tracking (e.g. Ghostery) plugins for IE(7 to 10) but not single one trying to reach usable "on user decision" functionality over scripts
https://twitter.com/FoltynD , Tech. Community, Online Services & Distribution manager of Bohemia Interactive

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33378
  • malware fighter
Re: Browser's In General.
« Reply #31 on: May 04, 2013, 06:17:34 PM »
Hi Dwarden,

No because that would place the computer back into your hands, because IE equals the underlying OS, just like chrome on google and there you cannot reach deep api level either, it just has not been opened up to open source developers...
This was the main reason to use another browser than IE, but one has to keep IE updated and fully patched to better secure the whole of the Windows OS that way.
IE has come a long way from their insecurity days similar to the insecurity we have entered to see now now for quite some time with Oracle's Java to just give an example.

NoScript is a good solution because it is a solution that never fails for script security, not even for script insecurities that has not been invented yet.

Who does not like NoScript, well to start with - all those that wanna encrypt and obfuscate javascript for devious reasons from script hacks on profile tracking to enable circumventing ad-blocking up to right-down malware launching from redirects, iframes etc. etc. NoScript is never running behind the facts, as IE is doing for every new vulnerability that has not been patched....until that has been patched or being blocked...activeX ....

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 72933
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Browser's In General.
« Reply #32 on: May 04, 2013, 06:20:06 PM »
NoScript is a good solution because it is a solution that never fails for script security, not even for script insecurities that has not been invented yet.

+1
Win 8.1 [x64] - Avast PremSec 21.11.6787.IBC [UI.681] - EEK - Firefox ESR 91.3 [NS/uBO/PB] - TB 91.3.2
Avast-Tools: Secure Browser 96.0 - Cleanup 21.4 - SecureLine 5.14 - Driver Updater 21.4 - CCleaner 5.87
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline SpeedyPC

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 3349
  • Avast shall conquer the whole world
Re: Browser's In General.
« Reply #33 on: May 04, 2013, 07:19:21 PM »
NoScript is a good solution because it is a solution that never fails for script security, not even for script insecurities that has not been invented yet.

+1

+2 Amen for NoScript ;D
ASUS G75VX-T4153H | Avast Premium v21.9.2493 | Avast SecureLine VPN | Avast Secure Browser | Avast Driver Updater | Avast BreachGuard | W8.1 64bit | Firefox 64bit | Thunderbird 64bit | MBAM Premium | Adguard Premium | CryptoPrevent Premium | CCleaner Portable | MCShield | Macrium Reflect | 7-Zip

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 46317
  • 61 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Browser's In General.
« Reply #34 on: May 04, 2013, 09:16:09 PM »
NoScript is a good solution because it is a solution that never fails for script security, not even for script insecurities that has not been invented yet.

+1
Let's state it properly.
No Script blocks all attempts to run script.
The decision for the exceptions to run a script are now the responsibility of the the user.
To rephrase that statement, No Script puts the responsibility squarely on the shoulders of the user.
If the users is diligent and does research as to the validity of the script which was blocked by No Script, then using No Script is a good thing.
If No Script is used by the average user who doesn't ever check anything or, doesn't know how to do the research,
then the only thing No Script will have done is delay the execution on the script.

Therefore, No script is good for those that use it as intended but it doesn't do anything for the average computer user except making the use of computers even harder for them.
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v21H2 64bit, 16 Gig Ram, 1TB SSD, AvastOmni 21.6, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline schmidthouse

  • VIRUS FREE A Long Time
  • Avast Evangelist
  • Starting Graphoman
  • ***
  • Posts: 7084
  • When you think you know, Think Again
Re: Browser's In General.
« Reply #35 on: May 04, 2013, 09:31:15 PM »
Yup, excellent point Bob. ;)
???HP ENVY 15K LT W10 Pro 21H1 64Bit/750GB HD/16GB Ram/Avast Premium 21.9.2493b/Secureline VPN v.5.12.5699b/ADU v.21.3b/ASB v.94.0b/SANDBOXIE-plus/MailWasherPRO
**HP Compaq 8510p LT W10 Pro 20H2 64Bit/1TB HD/8GB Ram/WD/ADU v.21.4b/SANDBOXIE/MailWasherPRO/HotSpot Shield
     
RIP*Dell Inspiron XPsp4 PRO 32Bit/Avast(since 2002)18.8.2356/WP/Comodo FW 3.14/Secureline/Comodo IceDragon v.40
LAYERED SECURITY SOFTWARE

Offline Johnny4745

  • Sr. Member
  • ****
  • Posts: 271
Re: Browser's In General.
« Reply #36 on: May 04, 2013, 10:15:43 PM »
In my opinion Firefox is the best browser.

I started out using IE many years ago, and every time I went to a website I got the message that there were errors on the page.  This was so annoying I started using Netscape, it just displayed the page the way it was supposed be, and there were no error messages.  Then I moved on to Firefox.

I tried using IE8 and IE9 but they were so slow loading pages, that I just gave up and stuck with Firefox.

I have tried IE10, and I have to admit, it is as fast as Firefox loading pages, but as far as I know it doesn't have the plugins or extensions available in Firefox.

The extensions for Firefox that I use are, Better Privacy, it deletes Flash cookies, Ghostery, it blocks tracking cookies, and NoScript.

NoScript is very easy for the average user.  All they have to do is whitelist the websites they trust, like local and national news websites. their bank website, and places they shop online.

NoScript provides protection when you are using Google or Yahoo searches, when you have no idea of what type of website you will be taken to. 





Compaq-Presario-AMD Athlon, 2700 Mhz-2GB RAM-1 Core-Windows 7 HP SP1 32 bit-Avast IS 8.0.1489
Windows Firewall on, Avast Firewall on, Router Firewall on.  Firefox-NoScript-Better Privacy extensions.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33378
  • malware fighter
Re: Browser's In General.
« Reply #37 on: May 04, 2013, 10:41:15 PM »
NoScript is a good solution because it is a solution that never fails for script security, not even for script insecurities that has not been invented yet.

+1
Let's state it properly.
No Script blocks all attempts to run script.
The decision for the exceptions to run a script are now the responsibility of the the user.
To rephrase that statement, No Script puts the responsibility squarely on the shoulders of the user.
If the users is diligent and does research as to the validity of the script which was blocked by No Script, then using No Script is a good thing.
If No Script is used by the average user who doesn't ever check anything or, doesn't know how to do the research,
then the only thing No Script will have done is delay the execution on the script.

Therefore, No script is good for those that use it as intended but it doesn't do anything for the average computer user except making the use of computers even harder for them.
Well, bob3160. That is not exactly as I see it. And a lot of the workings of NoScript are therefore misinterpreted by you, probably because you do not use it on a regular basis or not at all.
A lot of these user decisions are already worked out in NoScript as it is being blocked by default before that user decides to toggle to unblock part of the site. Yes, bad scripts are blocked anyways by Giorgio Maone the guru and maker of NoScript (and are thorougly discussed on the official NoScript forum) - so this does not need any user intervention and stays so for blocked or not.- the baddies have no chance, really. The main line of crap and bad malcode comes from third party code, not from the main site itself. Unblocking the main site (that is when the site is not malicious by design) will be necessary only to allow some functionality. Whenever the site is known to the user there are less problems trusting the main part of the site and the rest can be neatly blocked or allowed per session as some further functionality is needed. Evaluating and using NoScripts blocking/unblocking is not exactly needing rocket science and can be handled by everyone with a bit of insight in safe-hexing. But a lot of this discussion is not needed when a site comes pre-blocked by for instance the by avast! shields (have them on under all circumstances) and Google Safebrowsing or WOT etc. So for all that remains NoScript is a necessary extra layer of in-browser security that is full-proof...I thank Giorgio Maone for giving it to us, and I cannot understand why IE never even had one script blocking extension developed?

Damian

P.S. For Google Chrome we have a similar extension in ScriptSafe. Love to have that as well..

D
« Last Edit: May 04, 2013, 10:43:39 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 46317
  • 61 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Browser's In General.
« Reply #38 on: May 04, 2013, 10:54:59 PM »
Quote
using NoScripts blocking/unblocking is not exactly needing rocket science and can be handled by everyone with a bit of insight in safe-hexing.
Precisely my point. The average user doesn't have insight and certainly doesn't practice safe-hexing.
Statistics unfortunately bear this out. I never said that NoScript wasn't a great tool. I simply said that it's not a tool that will do any good for the average user.
 
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v21H2 64bit, 16 Gig Ram, 1TB SSD, AvastOmni 21.6, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline Dwarden

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1791
  • Ideas, that's ocean without borders!
    • Bohemia Interactive
Re: Browser's In General.
« Reply #39 on: May 04, 2013, 10:58:53 PM »
ye, but I use Opera (with NotScripts) and Chrome , Iron (and all derivates of Chromium) with ScriptSafe ;)

FF lost by me years ago (since Mozilla group started care more about $ and less about the product itself)

one of many reasons why FF falls behind (IE10 already quite badly) http://html5test.com/results/desktop.html
https://twitter.com/FoltynD , Tech. Community, Online Services & Distribution manager of Bohemia Interactive

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33378
  • malware fighter
Re: Browser's In General.
« Reply #40 on: May 04, 2013, 11:16:45 PM »
Hi bob3160,

Still happy that a lot of regular avast web forum users have come to use NoScript and ScriptSafe.

I wasn't exactly the guy that was to use it by your criteria when I landed here at our beloved forums some 8 years ago, and there were some others that had learn to use it too.

I was not exactly the one to "click after anything that would move on the screen and inside the browser", but I was not exactly very sure about what clicks would plunge me into mishap and ruin. Not after coming here, because I soon started to learn about a  lot of essential things here...

I think when users have the will and see the benefits of secure browsing they could also adopt these attitudes.

It is just a lot  like for instance cleaning your hands before going to dine and do the same after leaving the table. It helps bring better hygiene and less infections. Wait 35 seconds after the hot tap has reached that right temperature to clean the hands and then another 35 seconds to let the soap disinfect.

The workings of NoScript are similar and everybody with the will and insight can learn to work it and feel far more secure.
If you are not interested, then you stay without it, but then do not lament when some script plays foul upon you.
Good that we have the "virus and worms" and the qualified malware removers for those that never learn....

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 46317
  • 61 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Browser's In General.
« Reply #41 on: May 04, 2013, 11:19:57 PM »
There are people in all counties of this globe that write malware therefor no country is lily white.  :)
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v21H2 64bit, 16 Gig Ram, 1TB SSD, AvastOmni 21.6, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33378
  • malware fighter
Re: Browser's In General.
« Reply #42 on: May 04, 2013, 11:26:42 PM »
Hi bob3160,

This your reaction was meant for the other thread -> http://forum.avast.com/index.php?topic=122949.msg935885#new I assume?

pol
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 46317
  • 61 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Browser's In General.
« Reply #43 on: May 04, 2013, 11:43:55 PM »
It was but not really important. :)
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v21H2 64bit, 16 Gig Ram, 1TB SSD, AvastOmni 21.6, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline Dch48

  • Massive Poster
  • ****
  • Posts: 3150
Re: Browser's In General.
« Reply #44 on: May 05, 2013, 12:25:05 AM »
NoScript is a good solution because it is a solution that never fails for script security, not even for script insecurities that has not been invented yet.

+1
i
Let's state it properly.
No Script blocks all attempts to run script.
The decision for the exceptions to run a script are now the responsibility of the the user.
To rephrase that statement, No Script puts the responsibility squarely on the shoulders of the user.
If the users is diligent and does research as to the validity of the script which was blocked by No Script, then using No Script is a good thing.
If No Script is used by the average user who doesn't ever check anything or, doesn't know how to do the research,
then the only thing No Script will have done is delay the execution on the script.

Therefore, No script is good for those that use it as intended but it doesn't do anything for the average computer user except making the use of computers even harder for them.
Exactly right Bob and that's why I have no use for it. It behaves like a classic HIPS and gets in the way of enjoyment and usability of your computer. I'll depend on other methods of scanning web pages.
Avatar FX6327X desktop, FX-6300 CPU, RX 470 GPU, 8GB RAM, Windows 10 Home 64 bit
HP dv6-6140us laptop, A8-3500M APU, 8GB RAM, Windows 7 Home Premium 64 bit
RCA W101 v2 10" tablet, Intel Atom Bay Trail Z3735F processor, 2GB RAM, Windows 10 Home 32 bit