[tbb-bugs] #32492 [Applications/Tor Browser]: Unexpected NoScript behavior when security level is pinned using user.js

Tor Bug Tracker & Wiki blackhole at torproject.org
Fri Dec 6 08:14:34 UTC 2019


#32492: Unexpected NoScript behavior when security level is pinned using user.js
--------------------------------------+--------------------------
 Reporter:  kj                        |          Owner:  tbb-team
     Type:  defect                    |         Status:  new
 Priority:  Medium                    |      Milestone:
Component:  Applications/Tor Browser  |        Version:
 Severity:  Normal                    |     Resolution:
 Keywords:  TorBrowserTeam201912      |  Actual Points:
Parent ID:                            |         Points:
 Reviewer:                            |        Sponsor:
--------------------------------------+--------------------------

Comment (by kj):

 I experienced this issue even without pinning the security level:
 1. I launched Tor Browser. The security level was at "Safer" (the last
 used level).
 2. I changed the security level from "Safer" to "Safest".
 3. I fetched some websites.
 4. I see that JavaScript is running on all of them.
 5. NoScript options has a per-site permission "http:" (blocking non-HTTPS
 JavaScript).
 I can't give further details at this stage because I wasn't performing a
 test and it's the first time I experienced this issue with security level
 pinning.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/32492#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tbb-bugs mailing list