Comments on: Hello ClearClick, Goodbye Clickjacking!

By: Jack

Jack — Tue, 23 Dec 2008 20:30:31 +0000

Thanks to NoScript it blocked clickjacking attempts from maps.google.com.
It also blocked XSS attacks.

By: hackademix.net » Introducing ABE

hackademix.net » Introducing ABE — Sat, 20 Dec 2008 00:27:40 +0000

[…] XSS attacks; ClearClick, the only specific browser countermeasure currently available against ClickJacking/UI redressing attacks, and many other security enhancements, including a limited form of protection against […]

By: Friendster’s New Hobby: Downgrading Security! | Th0R's Blog

Friendster’s New Hobby: Downgrading Security! | Th0R's Blog — Sun, 14 Dec 2008 10:49:03 +0000

[…] - how sweet our internet nowadays! My suggestion, stop socializing! LoL (Just kidding). Just use NoScript it promise you the nearest-complete solution of browsing […]

By: Read - Before you Click! | Th0R's Blog

Read - Before you Click! | Th0R's Blog — Wed, 10 Dec 2008 22:04:19 +0000

[…] the considered #1 hack of 2008; named Clickjacking. It is said that in order to avoid Clickjacking, Firefox browser complete with its latest version of NoScript plugin is the only solution. Because in fact, Internet Explorer, the scapegoat of all browsers proven to provide more security […]

By: kornykyano

kornykyano — Sun, 07 Dec 2008 18:07:29 +0000

help…

possible false positive???

http://i38.tinypic.com/29kvyog.png

By: dan

dan — Wed, 03 Dec 2008 19:35:58 +0000

@Giorgio

Thanks for the comment on my recent post about a possible false positive. I’ve posted the information to the forum with the screenshots. Please let me know if you need any other information.

By: NoScript ClearClick Warning For Wordpress.com Stats | Serial Box Crime

NoScript ClearClick Warning For Wordpress.com Stats | Serial Box Crime — Wed, 03 Dec 2008 18:26:37 +0000

[…] have recently run into a problem which relates to a ClearClick Clickjack attempt warning when using Wordpress.com Stats with Wordpress 2.6.5 and I’ve been unable to find a […]

By: Giorgio

Giorgio — Mon, 24 Nov 2008 20:19:34 +0000

@Andrè Engels:
The simplest thing you can do is comparing the two images taken by NoScript (the one obstructed and the one “revealed”) by clicking on the green-bordered box on the warning.
If that seems a false positive, please try to install latest development build, and if the problem persists let me know where it happens.

By: André Engels

André Engels — Mon, 24 Nov 2008 19:35:56 +0000

Could I get some more explanation of what is actually going on? I sometimes get clickjacking warnings on a site I often visit. Where can I get more information on what is going on and what the hijacked link is, so that I can make the decision whether to allow or not based on facts rather than on my hunch that the site is bona fide or that if NoScript says it’s bad, it probably is.

By: Safe Firefox

Safe Firefox — Sun, 23 Nov 2008 04:50:30 +0000

Thanks. NoScript is a wonderful addon.