As a security-conscious user, I've used NoScript since Firefox's early days, but its restrictive nature has become frustrating. I'm often forced to go unprotected just to access websites with multiple scripts running on different domains, which defeats the purpose of using NoScript and balances security and usability that it once provided.

Is there a way to block browser JavaScript from executing commands that retrieve sensitive information from my local machine, while still allowing JavaScript that is only used for rendering web pages?

greatly appreciate any insight

cross-posted from: https://lemmy.world/post/31859998

Please see the cross-post as it is updated.

you are viewing a single comment's thread
view the rest of the comments

[–] happeningtofry99158@lemmy.world 2 points 12 hours ago (1 children)

What HTML5 Canvas features does your browser support

Would you recommend disabling canvas?

[–] wetbeardhairs@lemmy.dbzer0.com 2 points 12 hours ago

No, not really. I just take an opt-in to js approach to the internet. It won't perfectly hide me from databroker fingerprinting - but that's hard to do unless you want to just use TOR for your everyday browser experience and that's too paranoid for me.