Blog |Follow Nick on Twitter| About

I've recently started installed the firefox add-on NoScriptto improve my online security.

One of the things that's been a little frustrating has been having to manually accept/white list internal type addresses. After a fruitless google, I've managed to find the answer here in the NoScript Forum.

There is one major limitation and that is the NoScript white list only accepts entries of more than one byte, this means that you cannot whitelist the whole of 10.*.*.* (10/8) as inputting 10. is only one byte. On the upside you can however whitelist a whole /16 ( subnet, which works out nicely for the set off addresses but for the 10's & 172's you're a bit stuffed.

Now you may find that when you try to white list that you have issues, I know I did! The trick is to read the forum post carefully. If you want to white list through then add the following:

http://10.123 https://10.123

That should allow both http & ssl traffic to all those internal addresses to be permitted by NoScript!

Dear googler, I hope this was of some help :)



Nick Bettison ©