• Septimaeus@infosec.pub
    link
    fedilink
    arrow-up
    1
    ·
    edit-2
    9 hours ago

    I understand why fellow tin-foilers keep scripting off. There’s no simpler or more complete approach to “security hardening” than off. But I also see far too many bug reports that turn out to be precisely this self-inflicted experience degradation.

    TLDR — It’s fine to be a no-script hardliner, but be upfront about it in your bug reports. It’s the considerate thing to do. Checking with script-enabled sandbox is a nice thing to do.

    e: too finger-waggly for what is usually an honest mistake