[TomGullen]

Why do you use noscript to block JS? I've never understood.

The inconvenience of dysfunctional sites surely outweighs the one in a million chance you will have your login to HackerNews stolen, or something else that's more of a nuisance than an actual danger.

[mike-cardwell]

1.) Speeds up websites

2.) Removes clutter

3.) Additional privacy

4.) Additional security

Not all sites are dysfunctional. And for the ones that are, you enable javascript from the relevant domains the first time you visit. You can choose to remember those preferences for the rest of the session, or permanently.

The small amount of additional work is worth it.

[rufibarbatus]

I'm not a security guy. I don't know what reasons other people might have. I actually started it as an experiment, and grew fond of it for no specific laid-out reason.

Actually seeing what trackers and other such spyware are embedded in most pages these days is interesting, but I could live without the granular control. I think what I'm most interested in is just really seeing how different pages will break (or degrade gracefully) confronted with the missing functionality of javascript.

If you haven't yet, I suggest you give these add-ons a ride for, say, a week, if anything for the sake of learning.

[there]

i think you may be better suited with an add-on like ghostery which specifically blocks tracking scripts, rather than cutting off javascript completely.

[micro-ram]

| Why do you use noscript to block JS? I've never understood.

Because when you hit an infected web site, the script loading from xyz.ru will not get loaded and you will be safe. NOSCRIPT FF & NOTSCRIPT Chrome FTW!

[there]

so you voluntarily have a shitty web experience on practically every website just to prevent that one possibly hacked website that you might visit by accident some day?

how many of these vulnerabilities would noscript fail to protect against?

https://www.mozilla.org/security/known-vulnerabilities/firef...

http://chromekb.com/vulnerabilities/

[lukeschlather]

I've found NoScript tends to improve the UX on most sites I visit. No popups, much reduced spinning click me ads, just generally more pleasant. Some stuff doesn't work, but I whitelist clean sites like HN and I'm usually happier without the JS on a lot of sites.

[nitrogen]

Just whitelist clean scripts from sites you want to visit. It would be cool if noscript could whitelist by SHA hash. Sometimes technical people like having control of their browsing/operating system/whatever experience, even if that control results in having to do more work or accept a less-than-ideal user experience (from the mainstream perspective).

[micro-ram]

I guess it's a control thing.