- security
- Tor Browser not safe without manual action
Starting from Friday May 3, a problem in Firefox and Tor Browser disabled all add-ons, especially NoScript which is used to:
Strengthen Tor Browser against some JavaScript attacks that can lead to compromised accounts and credentials on websites.
Enable or disable JavaScript on some websites using the NoScript interface, if you use it.
If NoScript is activated, the NoScript icon appears in the top-right corner and Tor Browser is safe:
If NoScript is deactivated, the NoScript icon is absent from the top-right corner and Tor Browser is unsafe:
Activate NoScript manually
To secure Tor Browser in Tails 3.13.1 or earlier, you must activate NoScript every time you start Tails:
Open the address
about:config
in Tor Browser.Click the I accept the risk! button.
At the top of the page, search for
xpinstall.signatures.required
.Double-click on the xpinstall.signatures.required line in the results to set its value to false.
Verify that NoScript is activated again.