NoScript preventing Clickjacking 12 October, 2008Posted by aronzak in web.
Tags: clickjack, clickjacking, firefox, flash, mozilla firefox, NoScript, security, web, www
Clickjacking; where a user’s click is unknowingly redirected to another (hidden) object on the page, is something that has scared many security experts. It works on all major browsers, with the only possible exception of lynx (fight the power!). But NoScript has released a stream of new versions that include new code called ClearClick, that prevents clickjacking. I saw this in use here. THe video isn’t that funny.
Now, the video appears. Next I click on it.
And NoScript comes up with a warning.
And Voila, it’s a like to the ad at the bottom of the page.
So there we go, NoScript has succesfully defended me from an attempt to show me an ad.