Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Battlefield
Software Comparison
test results from browseraudit
Message
<blockquote data-quote="ForgottenSeer 107474" data-source="post: 1076796"><p>Also got 399 passed and 32 warnings in Chrome, but it contains a lot of B@ll$h1t for instance I get a warning for</p><p></p><table style='width: 100%'><tr><td>[CODE] WebSocket connecting to wss://browseraudit.com with default-src 'self'[/CODE]</td></tr></table><p></p><p>Which means default policy for WebSocket (data) connections that they are allowed from Browser Audit to itself (first-party). Seems okay to me (otherwise websites would brake).</p><p></p><p>I would have given a warning when my browser would have specified no default policy (meaning all is allowed), but next "default-src 'none' is blocked so all is okay IMO. Nothing to worry about</p><p></p><p></p><p>[SPOILER="Tip applied by many members on MT using AG or uBO"]</p><p>I have below user rules in AdGuard to limit risky third-party sources from TLD's I never visit and on all insecure websites.</p><p></p><p>[CODE]</p><p>! Block risky first-party content on HTTP websites everywhere, except on router console.</p><p>|HTTP://*$script,websocket,object,ping,denyallow=192.168.0.1</p><p></p><p>! Block risky third-party content not coming from Top Level Domains I normally visit (being Dutch).</p><p>|HTTPS://*$third-party,script,websocket,object,ping,subdocument,denyallow=nl|be|de|uk|eu|app|com|edu|io|net|org|tv</p><p>[/CODE]</p><p></p><p>With uBO it is easier to add above TLD's as dynamic filter rules for easier control and exception setting (<a href="https://malwaretips.com/threads/ublock0rigin-in-medium-mode-for-lighter-and-stronger-protection-with-less-websites-breakage-and-hassle.93311/" target="_blank">link to sticky on MT</a>).</p><p>The AdGuard rules above are explained somewhere by @JanWilly but I don't have the link a hand (it is either a separate thread or somewhere in the sticky thread).</p><p></p><p> [/SPOILER]</p></blockquote><p></p>
[QUOTE="ForgottenSeer 107474, post: 1076796"] Also got 399 passed and 32 warnings in Chrome, but it contains a lot of B@ll$h1t for instance I get a warning for [TABLE] [TR] [TD][CODE] WebSocket connecting to wss://browseraudit.com with default-src 'self'[/CODE][/TD] [/TR] [/TABLE] Which means default policy for WebSocket (data) connections that they are allowed from Browser Audit to itself (first-party). Seems okay to me (otherwise websites would brake). I would have given a warning when my browser would have specified no default policy (meaning all is allowed), but next "default-src 'none' is blocked so all is okay IMO. Nothing to worry about [SPOILER="Tip applied by many members on MT using AG or uBO"] I have below user rules in AdGuard to limit risky third-party sources from TLD's I never visit and on all insecure websites. [CODE] ! Block risky first-party content on HTTP websites everywhere, except on router console. |HTTP://*$script,websocket,object,ping,denyallow=192.168.0.1 ! Block risky third-party content not coming from Top Level Domains I normally visit (being Dutch). |HTTPS://*$third-party,script,websocket,object,ping,subdocument,denyallow=nl|be|de|uk|eu|app|com|edu|io|net|org|tv [/CODE] With uBO it is easier to add above TLD's as dynamic filter rules for easier control and exception setting ([URL='https://malwaretips.com/threads/ublock0rigin-in-medium-mode-for-lighter-and-stronger-protection-with-less-websites-breakage-and-hassle.93311/']link to sticky on MT[/URL]). The AdGuard rules above are explained somewhere by @JanWilly but I don't have the link a hand (it is either a separate thread or somewhere in the sticky thread). [/SPOILER] [/QUOTE]
Insert quotes…
Verification
Post reply
Top