-
Notifications
You must be signed in to change notification settings - Fork 469
Websites can't know if JavaScript or cookies are disabled #855
Comments
Cookies are not disabled browser wide with uMatrix, so this is the expected behavior. If you want the |
Regarding |
For the cookies, it is no convenient to disable them via the browser settings (we have to do 6 clicks instead of 2 via the addon interface) and the preferences will be reset when we clear all the browser history. Cookies should be disabled on a domain basis like JavaScript through the addon interface. |
I can't globally disable cookies from the matrix itself, it has to be a master switch: the matrix allows any sort of combinations of allow/block rules on a per domain basis, and this can only be evaluated on the fly, not in advance. This can't be reflected in a single variable such as |
|
I am guessing NoScript is doing what uMatrix/HTTPSB used to do? To replace Addendum: apparently this was caused by Google's "Instant Search Feature", which no longer exists. |
When using uMatrix and blocking JavaScript, a website thinks JavaScript is enabled so the
<noscript>
HTML tag does not have any effect.A website could fail to provide informations when JavaScript is disabled.
Example: https://www.w3schools.com/TAGs/tryit.asp?filename=tryhtml_noscript
The same problem happens with cookies disabled, a website thinks cookies are enabled so the
navigator.cookieEnabled
property will returntrue
.Switching language on DuckDuckGo search engine should work with cookies disabled but it fails since it tries to use cookies if enabled.
Example: https://www.w3schools.com/jsref/tryit.asp?filename=tryjsref_nav_cookieenabled
The browser extensions NoScript and Cookie Monster I used previously did not have this problem. I started using uMatrix so I can also prevent CSRF and protect privacy by blocking third-party requests (like RequestPolicy addon which is not compatible as WebExtension with Firefox Quantum yet).
uMatrix addon is interesting but this issue can break websites behaviour so I hope it will be fixed.
The text was updated successfully, but these errors were encountered: