My mother-in-law is retired, and I think umatrix can be a much better solution than noscript. Is it possible to have umatrix automatically allow the sites that are 'red' but not 'bold red' (the known bad sites)? If so, it would be a level of protection, but would not require her to know much about this at all. (you should have seen my trying to explain the blue box in her living room was an 'access point'...) I also have requestpolicy continued - and I'm trying to figure out if I can similarly configure it - it looks like I can make it work for her. Thanks for any advice.
umatrix is hard to configure if you don't know what your doing,not saying you don't but will your mother in law know what to do if a site is blocked? ublock origin may be a better choice for her.
I know, right ? Ah, well, if there's no way to be 'more permissive' via 'policy', then I agree, ublock origin is probably a better choice. Maybe with noscript (set to allow the full domain for the site being loaded...). Thanks for the feedback.
I agree with others on this choice. If you want a policy that allows everything except for potentially dangerous 3rd-party frames, then uBlockO set to enhanced easy mode is probably the best choice. I'm always recommending this approach to those who want a no-hassle configuration that minimizes breakage of websites, while still offering a decent level of protection.I encourage you to read up on it from the link I provided, especially on how it explains to unbreak a site by setting a local noop (grey cell) for the hostname.
Thanks, folks. I had heard of ublock origin, but I'm a techie and so I first read up on umatrix, installed it, and fell in love with it. NoScript is gone - but I hadn't looked at ublock 'origin'. From your link, @wat0114, this sounds like /exactly/ what I want (fyi, 'enhanced' does not appear on that page) - policy-based config, done ahead of time. I'll be playing with it for a few days here but if there's an "enhanced easy mode" (chuckle.......gotta love that name) may be exactly what the doctor ordered.
That is a good recommendation that I would suggest too. And if using medium filtering, rather reduce it to that locally if something is not working than having the hassle to whitelist 3rd party domains separately. Nooping 3rd party domains in medium mode you will also whitelist their iframes which could be more dangerous than just allowing all the scripts that can run.