RequestPolicy is a Firefox extension that improves the privacy and security of your browsing by giving you control over when cross-site requests are allowed by webpages you visit.
Cross-site requests are requests that your browser is told to make by a website you are visiting to a completely different website. Though usually legitimate requests, they often result in advertising companies and other websites knowing your browsing habits, including specific pages you view throughout the day. Among the attacks that cross-site requests are used in, they are particularly dangerous with Cross-Site Request Forgery (CSRF) attacks where your browser is told to make a request to another website and that other website thinks you (the person) meant to make the request.
With RequestPolicy, the default for any cross-site request is to deny it. Users are notified when requests on the current page have been blocked (the status bar flag icon at the bottom right of your browser turns red). Clicking on this status bar flag icon gives you a menu where you can view and modify which requests are blocked and allowed. You can whitelist requests you approve of by origin site, destination site, or specific origin-to-destination.
What's New in This Release:
Bug fixes:
· Whitelist bypass through view-source URLs.
· Refresh string parsing fails on Firefox 5+.
· "Get Addons" page has begun loading resources from a new destination which was being blocked.
Extension conflicts:
· Update extension compatibility rules for Norton Toolbars.
Bugs fixed:
· On Firefox 3.6, we performed our profile-after-change work twice.
Other changes:
· On Firefox 4, add a toolbar button to the addon bar rather than using a status bar icon.
· Removed the option to use the alternative status bar icon (an image that said "RequestPolicy" instead of the flag icon).
What's New in 0.5.20:
Bugs fixed:
· Users should not be able to allow redirects to javascript URIs.
· Preferences window not tall enough on Mac.
· xml+xsl pages broken.
· Blocked content notification (the flag) stuck on one color after closing print preview window with window's "X" button.
Enhancements:
· Updated locales.
· Allow removing status bar/addon bar icon.
Misc:
· Various xul element IDs made more specific to avoid namespace clutter.
· Typeless request log iframe given type="chrome" (though AMO still shows warning "Typeless iframes/browsers must be local").
What's New in 0.5.19:
Bug fixes:
· Cross-site redirects from favicon requests bypass whitelist.
· Redirection to protocol-relative URLs can bypass the whitelist. (Thanks, Mike Cardwell, for discovering and reporting this.)
· Some missing image indicators have very small width.
· Missing image indicators unreliable on Firefox 4.
· Some context menu sections and status icon respond to right clicks, showing another menu.
· Non-integer meta refresh delay considered invalid.
· Occasional error removing history listener when closing window.
· "File Not Found" about:neterror page shown when blocked redirect has "Content-Disposition: attachment;".
Enhancements:
· Remember position on page reload.
· Show redirect notification for any blocked top-level document requests (e.g. javascript sets document.location).
· Show alt text on mouseover of missing image indicator (alt text added to title attribute).
Extension conflicts:
· Observation of https-everywhere URL rewrites incorrectly handled URLs with fragments.
· Requests from Update Scanner blocked and can't be whitelisted through the RequestPolicy menu.
· Local validation requests by Web Developer extension blocked
What's New in 0.5.18: Bug fixes:
· Option to "disable dns prefetch on startup" didn't work reliably. Enhancements:
· Updated locales.
What's New in 0.5.16: Bug fixes:
· Updates or fresh installs of RequestPolicy on Firefox 4.0b7 would cause RequestPolicy to break due to installed extension XPIs not being extracted anymore.
· The openDialog wrapper had a latent bug triggered on Firefox 4.0b7 that (at a minimum) caused certain dialog windows from the addons manager to not open. Extension conflicts resolved:
· RequestPolicy would block some requests where HTTPS Everywhere had changed the destination URL. Thanks to Peter, Mike, and Seth of HTTPS Everywhere for talking about, following up on, and applying the HTTPS Everywhere patch that corresponds to these RequestPolicy changes. That patch is applied in HTTPS Everywhere version 0.2.3.development.2.
What's New in 0.5.15: Enhancements:
· Lots of fixes to support Firefox 4 beta (currently supported: 4.0b5pre).
· Request Log context menu added which allows copying and opening URLs from the log. Bugs fixed:
· docShell.allowMetaRedirects not respected for same-site meta refreshes
Like it? Share with your friends!
If you got an error while installing Themes, Software or Games, please, read FAQ.
Supported operating systems:
Google Android 10.x, Google Android 2.0, Google Android 2.1, Google Android 2.2, Google Android 2.3, Google Android 3.0, Google Android 3.1, Google Android 3.2, Google Android 4.0, Google Android 4.1, Google Android 4.2, Google Android 4.3, Google Android 4.4, Google Android 5.x, Google Android 6.x, Google Android 7.x, Google Android 8.x, Google Android 9.x, Nokia Internet Tablet OS Maemo 5.0
Similar Software:
Cert Manager - Firefox Addon This Firefox addon allows you to import a CA certificate (*.pem) and a user certificate with key (pkcs12 *.p12)
Zscaler Safe Shopping - Firefox Addon Zscaler Safe Shopping - Firefox Addon - Virtually all browsers contain blacklists to prevent users from accessing malicious sites: Google Safe Browsing, Phishtank, etc. These blacklists do not however, generally block sites that have been compromised for Blackhat spam SEO attacks, HTML/JavaScript injections pulling malicious content from another domain, etc
Adblock Lite - Firefox Addon Adblock Lite - Firefox Addon is a fork of the Adblock Plus version 1.3.10 (classic UI) extension for blocking advertisements on the web. This fork will provide the same features as Adblock Plus 2.X and higher while keeping the old UI but without "acceptable ads" feature.
What's New in This Release:
· [*] Marked compatible with Firefox 14
ASMS Uncoacher - Firefox Addon ASMS Uncoacher - Firefox Addon - Sure it's nice that the proxy gives us a warning whenever we visit a site that's going to be logged. But do we really need to know this every time we visit a site? Well, this is why this handy-dandy script was created. It will detect the annoying warning page, and send you straight into the site.
It also works against certain blocked sites
Certificate Patrol - Firefox Addon Your browser trusts many certification authorities and intermediate sub-authorities quietly, every time you enter an HTTPS web site. This add-on reveals when certificates are updated, so you can ensure it was a legitimate change
DontPhishMe - Firefox Addon DontPhishMe - Firefox Addon - DontPhishMe is an Anti-Phishing addon for Mozilla Firefox which utilizes the pattern matching techniques to provide the Malaysian Internet user with information and notification to protect them against online banking phishing website
FireFound - Firefox Addon FireFound is a Firefox add-on that helps your find your mobile phone if it is lost or stolen. Every time your phone's location changes, FireFound sends a secure message to a central server with its current location. You can then log into the server and see your phone's current location
SecurityWire Search - Firefox Addon SecurityWire Search - The SecurityWire security search add-on allows you to search thousand of computer security, information assurance and penetration testing related sites. The add-on is powered by the powerful google custom search engine and leverage the massive google site indexes
Other Software by developer «Justin Samuel»:
not found
Comments on RequestPolicy - Firefox Addon:
Comments not found
If you noted an error or download link is broken, please, report it via this page or use comments.
RequestPolicy - Firefox Addon is compatible with your device Nokia N900 (Nokia Rover)
