jump to navigation

NoScript preventing Clickjacking 12 October, 2008

Posted by aronzak in web.
Tags: , , , , , , , ,

Clickjacking; where a user’s click is unknowingly redirected to another (hidden) object on the page, is something that has scared many security experts. It works on all major browsers, with the only possible exception of lynx (fight the power!). But NoScript has released a stream of new versions that include new code called ClearClick, that prevents clickjacking. I saw this in use here. THe video isn’t that funny.

First, click on the script to allow it.

Now, the video appears. Next I click on it.

And NoScript comes up with a warning.

And Voila, it’s a like to the ad at the bottom of the page.

So there we go, NoScript has succesfully defended me from an attempt to show me an ad.



No comments yet — be the first.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s

%d bloggers like this: