For each given subdomain listed in the NoScript popup, I would like its root domain to also be listed in the popup, with the same buttons available for said given subdomain.
I am using cloudfront here as an example, but it's far from the only example.
Say I was visiting amazon.com, and NoScript had blocked scripts from:
randomsubdomain1.cloudfront.net
randomsubdomain2.cloudfront.net
randomsubdomain3.cloudfront.net
but I were to allow them, and then the next time I come back to amazon.com it includes scripts from:
randomsubdomain4.cloudfront.net
randomsubdomain5.cloudfront.net
randomsubdomain6.cloudfront.net
Right now, my only options are to allow cloudfront.net globally or to continue repeatedly allowing additional subdomains when viewed at whatever site I'm visiting.
Allowing cloudfront globally is a security risk, because the content from that domain might come from multiple different companies or different individuals, depending on what site I'm viewing.
I am concerned about security, so I don't tend to just blanket allow third-party sites like cloudfront that may be hosting scripts both from authors with positive intention AND from authors with negative intentions. I tend to stick to granting permissions to third-party sites on a per-site basis instead of trusting given sites(even sites like Google or Amazon).
This means I usually have to allow sites when I visit any given domain for the first time, and it can be difficult to repeatedly allow the random subdomains for sites like cloudfront.
I know that I could navigate to the domain itself, like "https://cloudfront.net" and then globally allow that domain as a whole, and that it would be inherited, but I would prefer to keep it granular.
If I am viewing a given domain, there's a high likelihood that I trust content it's including from cloudfront, so I'd like to allow cloudfront as a whole for that specific given domain.
But if I am viewing a different given site which I trust less, there's a high likelihood that I wouldn't actually want to allow content from cloudfront on that different given site.
I would love this kind of granularity.
For each given subdomain listed in the NoScript popup, I would like its root domain to also be listed in the popup, with the same buttons available for said given subdomain.
I am using cloudfront here as an example, but it's far from the only example.
Say I was visiting amazon.com, and NoScript had blocked scripts from:
randomsubdomain1.cloudfront.net
randomsubdomain2.cloudfront.net
randomsubdomain3.cloudfront.net
but I were to allow them, and then the next time I come back to amazon.com it includes scripts from:
randomsubdomain4.cloudfront.net
randomsubdomain5.cloudfront.net
randomsubdomain6.cloudfront.net
Right now, my only options are to allow cloudfront.net globally or to continue repeatedly allowing additional subdomains when viewed at whatever site I'm visiting.
Allowing cloudfront globally is a security risk, because the content from that domain might come from multiple different companies or different individuals, depending on what site I'm viewing.
I am concerned about security, so I don't tend to just blanket allow third-party sites like cloudfront that may be hosting scripts both from authors with positive intention AND from authors with negative intentions. I tend to stick to granting permissions to third-party sites on a per-site basis instead of trusting given sites(even sites like Google or Amazon).
This means I usually have to allow sites when I visit any given domain for the first time, and it can be difficult to repeatedly allow the random subdomains for sites like cloudfront.
I know that I could navigate to the domain itself, like "https://cloudfront.net" and then globally allow that domain as a whole, and that it would be inherited, but I would prefer to keep it granular.
If I am viewing a given domain, there's a high likelihood that I trust content it's including from cloudfront, so I'd like to allow cloudfront as a whole for that specific given domain.
But if I am viewing a different given site which I trust less, there's a high likelihood that I wouldn't actually want to allow content from cloudfront on that different given site.
I would love this kind of granularity.