CSPBlocker par Carlos Jeurissen
ExpérimentalExpérimental
Block certain web features to improve security, privacy and performance.
Vous avez besoin de Firefox pour utiliser cette extension
Métadonnées de l’extension
À propos de cette extension
The goal of this extension is to gain back control over your browser by blocking web features a website doesn't need.
For now, it supports these features:
Web Fonts
This blocks any custom web fonts a website may ask for. It's blocked by adding an additional content-security-policy with font-src set to 'none'.
Objects (Java / Flash)
This blocks any object a website might try to load. This includes java and flash applets. Again this is achieved with a content-security-policy, by setting object-src to 'none'.
Reporting apis
This blocks any reporting a website might want to do. This can include netwerk issues, content security policy violations, and more. We achieve this by removing the report-to and content-security-policy-report-only headers from any sub/main frame requests. In addition, any content security policy report gets blocked and never sent to the websites server.
Workers
This blocks any workers a website may ask for. This can be used to block serviceworkers, which can be used to spam the user with notifications, keep running in the background and more. This is blocked by setting worker-src to 'none' in the content-security-policy header.
This extension is still in development. In the future, you will be able to select what features it should or should not be blocking. In addition, further controls will be added so you can control what websites should receive what exceptions.
For now, it supports these features:
Web Fonts
This blocks any custom web fonts a website may ask for. It's blocked by adding an additional content-security-policy with font-src set to 'none'.
Objects (Java / Flash)
This blocks any object a website might try to load. This includes java and flash applets. Again this is achieved with a content-security-policy, by setting object-src to 'none'.
Reporting apis
This blocks any reporting a website might want to do. This can include netwerk issues, content security policy violations, and more. We achieve this by removing the report-to and content-security-policy-report-only headers from any sub/main frame requests. In addition, any content security policy report gets blocked and never sent to the websites server.
Workers
This blocks any workers a website may ask for. This can be used to block serviceworkers, which can be used to spam the user with notifications, keep running in the background and more. This is blocked by setting worker-src to 'none' in the content-security-policy header.
This extension is still in development. In the future, you will be able to select what features it should or should not be blocking. In addition, further controls will be added so you can control what websites should receive what exceptions.
Évaluez votre expérience
Soutenir ce développeur
Le développeur de cette extension demande que vous l’aidiez à assurer la poursuite de son développement en lui versant une petite contribution.
PermissionsEn savoir plus
Ce module a besoin de :
- Accéder à vos données pour tous les sites web
Plus d’informations
- Liens du module
- Version
- 0.0.5
- Taille
- 12,37 Ko
- Dernière mise à jour
- il y a 2 ans (18 oct. 2023)
- Catégories associées
- Licence
- Tous droits réservés
- Historique des versions
Ajouter à la collection
Notes de version pour la version 0.0.5
Plus de modules créés par Carlos Jeurissen
Il n’y a aucune note pour l’instant- Il n’y a aucune note pour l’instant
- Il n’y a aucune note pour l’instant
- Il n’y a aucune note pour l’instant
- Il n’y a aucune note pour l’instant
- Il n’y a aucune note pour l’instant