CFA/Security-Research/ContentEnabling: Difference between revisions
< CFA | Security-Research
Jump to navigation
Jump to search
| Line 37: | Line 37: | ||
=== Conclusions === | === Conclusions === | ||
As in the Malware section... | |||
* We should make decisions for users where we can, and warn unobtrusively when we cannot | |||
* Specific content blocking and other warnings should display an indicator in the Address Bar with more information upon user click (like Haute Secure) | |||
Revision as of 23:53, 3 August 2007
« Comparative Feature Analyses
« Security Notes
« Security Research
Current Capabilities
- Block pop-up windows (FF)
- Load images automatically (FF)
- Enable Java (FF)
- Enable JavaScript (FF)
- Allow scripts to: (FF)
- Move or resize existing windows
- Raise or lower windows
- Disable or replace context menus
- Hide the status bar
- Change status bar text
- Allow scripts to: (FF)
Upcoming Capabilities
Features by 3rd parties or other browsers
- NoScript - allows JavaScript, Java and other executable content to run only from trusted domains of your choice (FF extension)
- YesScript - JavaScript blacklist (FF extension)
- Adblock Plus - block ads and banners on webpages (FF extension)
- Java: Click to run applets (Omniweb)
- JavaScript: allow scripts to reorder windows (OmniWeb)
- Block web advertising (Camino)
- Enable plug-ins (Safari)
- Block flash animations (Camino)
Additional features
Screenshots
Conclusions
As in the Malware section...
- We should make decisions for users where we can, and warn unobtrusively when we cannot
- Specific content blocking and other warnings should display an indicator in the Address Bar with more information upon user click (like Haute Secure)