digg

Join DiggAbout

Discover the best of the web!
Learn more about Digg by taking the tour.

List Of Security-related Firefox Extensions

cerias.purdue.edu — Firefox's extensions are one of its biggest selling points. Looking for ones that will help make your browsing more secure? Check out this list.

Bury
show profanity settings
expand all
  • ChuckYouFarlie, on 10/12/2007, -8/+3Thanks for excellent list of plugins.
  • mgoddard, on 10/12/2007, -2/+10The "NoScript" one seems to be the most interesting.
    • linuxwarz, on 10/12/2007, -1/+6I have to agree, something must be done about javascript that can over ride popup blockers!
    • herrin, on 10/12/2007, -0/+11I used noscript for about a month and let me tell you - in this web 2.0 ajax world, about 50% of websites just plain don't work with javascript disabled. It sucked. Cool extension, crappy reality.
    • mcduckov, on 10/12/2007, -0/+2Agreed. When I use Stumble I'd say that 50% of websites come up completely blank. Between noscript, flashblock and adblock most sites are at least in some way disabled. Some sites require me to go though many levels of permissions before they will work.

      I feel completely naked when I use IE. That browser is a sieve.
    • northLite, on 10/12/2007, -2/+2Trust me, NoScript will simply drive you nuts after a month.

      I just recently uninstalled it after about a good month of constant useage and although I was getting used to it it was just a huge pain.

      AdBlock on the other hand is perfectly fine and shouldn't cause you any trouble so I say go for it along with the Filterset.G Updater.
    • jczer68, on 10/12/2007, -0/+1I've been using NoScript since it first came out, hasn't driven me nuts yet :) I can't stand unnecessary javascript/ajax. I'd rather pass on the content for unknown sites if I must use javascript/flash/whatever to see or do anything. Also the list should include the Permit Cookies extension or equivalent and maybe the Secure Password Generator extension.
  • daedalus01, on 10/12/2007, -7/+1It makes me proud to see a weblog from CERIAS... I'm a Purdue student :-)

    I use the "ShowIP" plugin all the time, but I'll have to check out the "NoScript", it does seem interesting indeed.
  • mikoslav, on 10/12/2007, -13/+8List of INsecurity-related Firefox extensions:

    FatterFox
    HateBlock
    IsMyButtTooBigomatic
    IE Tab
    ThrowUp Tracker
    NervousTester
    MinimizeTheWaist
    PimpleZoom
    ...

    (feel free to add to the list)
  • duniyadnd, on 10/12/2007, -5/+9How's this any better than the official site's page for extensions?

    https://addons.mozilla.org/extensions/showlist.php?application=firefox&category=Privacy%20and%20Security
    • mgoddard, on 10/12/2007, -2/+6I find mozilla's lists have become so long its hard to narrow down what your looking for.
    • josman, on 10/12/2007, -10/+2My thoughts exactly... no digg
    • duniyadnd, on 10/12/2007, -0/+2to mgoddard.. but it's linked to security.. I'd rather have more choices in this subject matter.
  • Lord_oftheTrons, on 10/12/2007, -2/+3NoScript should be incorporated into Firefox. After adblock it is my next most used extension.
  • daemonix, on 10/12/2007, -8/+2Try SiteAdvisor Firefox addon
    http://www.siteadvisor.com/preview/

    The best anti Spyware, anti phishing, anti spam, addon out there.

    For those poor uneduated souls using IE, there is an addon for them as well.
    • weaszel, on 10/12/2007, -6/+3I'd like to know where you received your "eduation".
    • daemonix, on 10/12/2007, -1/+1That's what I get for not checking the spelling in my posts.

      SiteAdvisor is still one of the best plugins I have found for users to protect themselves from falling prey to malicious sites.
  • CodePupil, on 10/12/2007, -1/+2I run FF on Linux as a dumb account with no rights(IE no groups). In Windows I run it from a shortcut with sysinternals psexec. like psexec -l -d "c:program filesMozilla Firefoxfirefox.exe". Noscript is the only one of plugins I use and can recommend.
  • CBTF, on 10/12/2007, -13/+5The best extention ever: http://www.opera.com/

    Bury it, fanboys. But no, really. It's much more secure.
  • basvd, on 10/12/2007, -0/+1I was expecting a list of insecure extensions. But this one is nice regardless.
    You don't necessarily need these extensions to enjoy safe browsing, but some of them come in quite handy if you want more control over what is happening.
  • Annorax, on 10/12/2007, -0/+2That is quite a good list. NoScript is an awesome extension that I feel is a necessity.

    I also use CookieButton, which is exactly like NoScript but for cookies. You can choose which sites leave cookies and which sites you can block from. If you leave default cookie handling to 'Reject Cookies', you can simply choose which ones you want and block the rest. Works great.

    And who can forget Adblock? Not too related here though, but can block annoyances.
  • Tobruk, on 10/12/2007, -0/+0Great list of plug-ins! I especially liked the cookie editor. For those sites that save your user password in a cookie, this could be an account saver. Highly recommended!!
  • yoshihama, on 10/12/2007, -1/+1As a web developer, it's interesting (read:scary) to see how many people are interested in the NoScript extension or are already running it. JavaScript is becoming more and more a staple in even the most ordinary sites, so this just reinforces the need for developers to build in "graceful degredation" so people like Herrin don't find that 50% of sites are unusable.

    But in general at this stage it's probably easier to leave javascript enabled, and use tools like adblock to selectively block the scripts from loading in the first place, which is what I do.
    • jczer68, on 10/12/2007, -0/+1"But in general at this stage it's probably easier to leave javascript enabled, and use tools like adblock to selectively block the scripts from loading in the first place, which is what I do."

      I guess that would work for annoying scripts, but it's not such a good idea if you run across malicious sites, which is what NoScript is intended to protect against. I'd rather keep javascript disabled by default, and if I don't see any worthwhile content because of this, then I'll just move along, it's not worth it.
    • 91tt16, on 10/12/2007, -0/+1yoshihama,

      yes, the web would be more functional if people could leave all java enabled. So, as a developer, why don't you tell someone in the industry to stop loading their sites with extra scripts that only serve to spy or implant or infect your computer - thereby undermining the goodness of your own hard work.
  • battyx, on 10/12/2007, -0/+0I absolutely love NoScript. Yes, tons and tons of websites use javascript, but honestly, it's not hard to load the JS as soon as you realize it's vital to the page. It's just a simple click away. For instance, on ESPN.com, I allow the JS that works for mouse-overs but I remove the JS that allows Overture to place cookies on my system.

    For instance, right now, I'm blocking GoogleSyndication and fmpub.net from being loaded by Digg.

    Also, you can easily do a permanent allow, so next time you visit that site you don't need to mess around.

  •  

    Login or register to add a comment

    Create a new account or login to join in the conversation on Digg. You'll also be able to Digg stories to help promote things you like.


© Digg Inc. 2008 — Content posted by Digg users is dedicated to the public domain.
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.