Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

Allow Cloudfront Globally on NoScript

Tags:

So Amazon's Cloudfront CDN is ubiquitous, and as a NoScript user, it can be a little frustrating having to allow every "########.cloudfront.net" on different sites. Does anyone now how to create an ABE rule in NoScript to allow any script coming from a *.cloudfront.net domain?

like image 407
Alex Hollinghead Avatar asked Oct 14 '14 14:10

Alex Hollinghead


2 Answers

While the answer by @samadadi is correct and will allow you to universally accept content from cloudfront, you might want to consider why you're running No Script in the first place.

Cloud Front is a Content Delivery Network that anyone can use, even "the bad guys". If you allow JavaScript downloaded from there to be run, then you are circumventing the protection NoScript offers. If you want to remain safe, I would recommend staying with allowing it on a site by site basis.

This might be an unpopular option because, yes, it is more work, but you will be safer.

Update (just to save people reading the comments below): CloudFront sub domains, while looking random, remain the same between visits. Permanently allowing cloudfront subdomains from sites you trust should be safe, and will only ask you once.

like image 182
DanielM Avatar answered Sep 23 '22 15:09

DanielM


Add these addresses to the Noscript whitelist to allow CloudFront scripts globally:

cloudfront.net amazonaws.com 
like image 39
samadadi Avatar answered Sep 22 '22 15:09

samadadi