Reviews for NoScript Security Suite
NoScript Security Suite by Giorgio Maone
Review by Michael Rabinovsky
Rated 2 out of 5
by Michael Rabinovsky, 6 months agoNo Script is an incredibly useful add-on. In the past, I'd have given it five stars; it now gets only two (see issues below). All in all, I'd say it's still better to have it than not, but that's only because there is no better alternative, and there is no difference between having to completely disable it on a page versus not having it at all.
First of all, it would have gotten three due to the issues I list further down, but it gets two because of a major functionality problem that makes it obnoxious to use, and by its admission, not private in private windows.
In the past, when you set it to trust top-level domains, it would automatically set them to temp trusted; however, for whatever reason, it now sets them to "custom," for me, which functions the same as untrusted, and changing it doesn't even refresh the page for you.
The default setting handling is a huge inconvenience, but that is not where the problems end. You cannot restore previous functionality by manually setting the top-level domain to temp trust. To enable scripts on the page, you must set it to trust, which makes it permanently trusted, and keeps a log of every page you visit in private windows. If you try to change it to temp trust and refresh the page, it goes back to "custom."
Besides that, the description for the extension is outdated. Not only does it still mention Flash, but it also claims no loss of functionality when you need it, which is not true. In most cases, enabling some scripts will return the functionality you need, but there are several reasons why that's not always the case.
Sometimes, certain scripts you need will be on sub-domains of the top-level domain, and they need to be enabled separately; however, NoScript doesn't show them because it thinks they are part of the main domain, so you have no way to make the site work without completely disabling the addon for the page.
In other instances, sites won't load all the scripts until they load some other domains. For example, a CDN containing vital scripts might not appear on the list because it's called after an analytics script has run. There is no way to know that unless you enable each script on the list, one by one. The domain doesn't need to be related; it's just something about how the page loads.
First of all, it would have gotten three due to the issues I list further down, but it gets two because of a major functionality problem that makes it obnoxious to use, and by its admission, not private in private windows.
In the past, when you set it to trust top-level domains, it would automatically set them to temp trusted; however, for whatever reason, it now sets them to "custom," for me, which functions the same as untrusted, and changing it doesn't even refresh the page for you.
The default setting handling is a huge inconvenience, but that is not where the problems end. You cannot restore previous functionality by manually setting the top-level domain to temp trust. To enable scripts on the page, you must set it to trust, which makes it permanently trusted, and keeps a log of every page you visit in private windows. If you try to change it to temp trust and refresh the page, it goes back to "custom."
Besides that, the description for the extension is outdated. Not only does it still mention Flash, but it also claims no loss of functionality when you need it, which is not true. In most cases, enabling some scripts will return the functionality you need, but there are several reasons why that's not always the case.
Sometimes, certain scripts you need will be on sub-domains of the top-level domain, and they need to be enabled separately; however, NoScript doesn't show them because it thinks they are part of the main domain, so you have no way to make the site work without completely disabling the addon for the page.
In other instances, sites won't load all the scripts until they load some other domains. For example, a CDN containing vital scripts might not appear on the list because it's called after an analytics script has run. There is no way to know that unless you enable each script on the list, one by one. The domain doesn't need to be related; it's just something about how the page loads.
2,422 reviews
- Rated 3 out of 5by Firefox user 14609268, 5 hours agoWhile this is an incredibly great app for granular control, it is the OPPOSITE of its "with no loss of functionality" mission. This is the #1 go-to source of browser errors that I am constantly troubleshooting and it takes HOURS of time sifting to figure out what to tweak because it provides no help when it breaks something (like a search box)--you just have to go on a lengthy trial and error quest one by one to figure out which of 30 sites to trust to get a search bar working and by that time I don't remember what I was going to search for. So you end up just globally trusting everything and that defeats the whole purpose.
- Rated 2 out of 5by Firefox user 13935566, 9 days ago
- Rated 5 out of 5by Pompan, 12 days ago
- Rated 1 out of 5by Beauleau, 25 days ago
- Rated 4 out of 5by Maximilien Perron, a month ago
- Rated 4 out of 5by Firefox user 18127040, a month agoТакие прям зайки и лапочки... Разместить закрытие окна приветствия и "Пожертвовать" чуть ли не с наложением друг на друга. Эдакое "Ну, даааааайти деняяяяяях!". Звезда в минус.
Аддон классный, но не нужно быть, как эти. - Rated 5 out of 5by Sunny, a month ago
- Rated 5 out of 5by Firefox user 19664008, 2 months ago
- Rated 5 out of 5by Firefox user 19487299, 2 months ago
- Rated 5 out of 5by Ryan Steed, 2 months ago
- Rated 5 out of 5by ZeroUnderscoreOu, 2 months ago
- Rated 5 out of 5by Dzluck, 2 months ago
- Rated 5 out of 5by Bob, 3 months ago
- Rated 1 out of 5by mlatpren, 3 months agoIt does a great job at blocking, but is regularly frustrating with re-enabling things. It's supposed to show you what it's blocking, but that's extremely hit-or-miss. Occasionally, there'd be something blocked where the only solution is to disable the extension. As in, right-click and disable *from Firefox itself.*
- Rated 3 out of 5by zekromVale, 3 months agoThere needs to be a CPU limit on this extension, using 30% CPU of an intel i7 11th gen laptop CPU on YouTube is ridiculous. Firefox for Ubuntu snap, flatpack, or just .deb are affected. Must disable NoScript to fix it or allow everything fully for all domains on the page. I would like more domains to be added to the global trusted list though (by default) or have a popup at the top when you first visit a page.
- Rated 5 out of 5by Hopeavirta, 3 months ago
- Rated 5 out of 5by Lazy Cat, 3 months ago
- Rated 5 out of 5by sumobunny, 3 months ago
- Rated 5 out of 5by Zelgadis-San, 3 months ago
- Rated 5 out of 5by Dadou, 3 months ago
- Rated 3 out of 5by aq, 3 months agoUser for at least 15 years, Something is conflicting on Firefox. It is blocking scripts and other add ons such as tampermonkey or violentmonkey with scripts added, but without any listing of what is being blocked. Only option is to shut it off to proceed.
Even blocking games internal scripts without any 'monkey' in use.
Please check and test - Rated 5 out of 5by Simon Bünemann, 3 months ago
- Rated 5 out of 5by ADKFZ8O, 4 months ago
- Rated 5 out of 5by Marw, 4 months ago