[tor-commits] r26299: {website} try a new answer to the javascript question (website/trunk/docs/en)

Sun Aug 11 22:25:09 UTC 2013

Author: arma
Date: 2013-08-11 22:25:09 +0000 (Sun, 11 Aug 2013)
New Revision: 26299

Modified:
   website/trunk/docs/en/faq.wml
Log:
try a new answer to the javascript question


Modified: website/trunk/docs/en/faq.wml
===================================================================

--- website/trunk/docs/en/faq.wml	2013-08-11 22:04:21 UTC (rev 26298)
+++ website/trunk/docs/en/faq.wml	2013-08-11 22:25:09 UTC (rev 26299)
@@ -66,8 +66,6 @@
     <li><a href="#TBBJavaScriptEnabled">Why is NoScript configured to
 allow JavaScript by default in the Tor Browser Bundle?  Isn't that
 unsafe?</a></li>
-    <li><a href="#TBBCanIBlockJS">I'm an expert!  (No, really!)  Can I
-configure NoScript to block JavaScript by default?</a></li>
     <li><a href="#TBBOtherBrowser">I want to use Chrome/IE/Opera/etc
     with Tor.</a></li>
     <li><a href="#TBBCloseBrowser">I want to leave Tor Browser Bundle
@@ -1038,6 +1036,7 @@
 <hr>
 
 <a id="TBBJavaScriptEnabled"></a>
+<a id="TBBCanIBlockJS"></a>
 <h3><a class="anchor" href="#TBBJavaScriptEnabled">Why is NoScript
 configured to allow JavaScript by default in the Tor Browser Bundle?
 Isn't that unsafe?</a></h3>
@@ -1051,26 +1050,35 @@
 JavaScript might make a website work).
 </p>
 
-<hr>
+<p>
+There's a tradeoff here. On the one hand, we should leave
+JavaScript enabled by default so websites work the way
+users expect. On the other hand, we should disable JavaScript
+by default to better protect against browser vulnerabilities (<a
+href="https://blog.torproject.org/blog/tor-security-advisory-old-tor-browser-bundles-vulnerable">not
+just a theoretical concern!</a>). But there's a third issue: websites
+can easily determine whether you have allowed JavaScript for them,
+and if you disable JavaScript by default but then allow a few websites
+to run scripts (the way most people use NoScript), then your choice of
+whitelisted websites acts as a sort of cookie that makes you recognizable
+(and distinguishable), thus harming your anonymity.
+</p>
 
-<a id="TBBCanIBlockJS"></a>
-<h3><a class="anchor" href="#CanIBlockJS">I'm an expert!  (No, really!)
-Can I configure NoScript to block JavaScript by default?</a></h3>
-
 <p>
-You can configure your copies of Tor Browser Bundle however you want
-to.  However, we recommend that even users who know how to use
-NoScript leave JavaScript enabled if possible, because a website or
-exit node can easily distinguish users who disable JavaScript from
-users who use Tor Browser bundle with its default settings (thus
-users who disable JavaScript are less anonymous).
+Ultimately, we want the default Tor bundles to use
+a combination of firewalls (like the iptables rules
+in <a href="https://tails.boum.org/">Tails</a>) and <a
+href="https://trac.torproject.org/projects/tor/ticket/7680">sandboxes</a>
+to make JavaScript not so scary. In
+the shorter term, TBB 3.0 will hopefully <a
+href="https://trac.torproject.org/projects/tor/ticket/9387">allow users
+to choose their JavaScript settings more easily</a> — but the
+partitioning concern will remain.
 </p>
 
 <p>
-Disabling JavaScript by default, then allowing a few websites to run
-scripts, is especially bad for your anonymity: the set of websites
-which you allow to run scripts is very likely to <em>uniquely</em>
-identify your browser.
+Until we get there, feel free to leave JavaScript on or off depending
+on your security, anonymity, and usability priorities.
 </p>
 
 <hr>

