| ▲ | est 3 days ago |
| I wish browsers could just provide a way to disable javascript after page `onload`. Perhaps only enables js when user clicks something. |
|
| ▲ | dheera 3 days ago | parent | next [-] |
| setTimeout(() => {
// fuck up all future javascripts
setTimeout = setInterval = requestAnimationFrame = () => {};
Element.prototype.appendChild = () => { throw new Error("Blocked"); };
document.addEventListener = () => {};
window.addEventListener = () => {};
Object.defineProperty(document, "readyState", { get: () => { throw new Error("No JS"); } });
document.write = () => {};
// fuck up canvas
if(window.HTMLCanvasElement) HTMLCanvasElement.prototype.getContext=()=>null;
// fuck up webgl
if(window.WebGLRenderingContext) window.WebGLRenderingContext.prototype.getParameter=function(){e=>{throw new Error("Blocked")}};
// fuck up webgl2
if(window.WebGL2RenderingContext) window.WebGL2RenderingContext.prototype.getParameter=function(){e=>{throw new Error("Blocked")}};
// fuck up websockets
window.WebSocket=function(){e=>{throw new Error("Blocked")}}; window.EventSource=function(){e=>{throw new Error("Blocked")}};
// fuck up popups
window.open=()=>null;
// ...
}, 500);
|
| |
| ▲ | vhcr 3 days ago | parent | next [-] | | const iframe = document.createElement("iframe");
document.body.append(iframe);
iframe.contentWindow...
| | |
| ▲ | joquarky 2 days ago | parent [-] | | javascript:(function () {
const rm = () => document.querySelectorAll('iframe')
.forEach(f => f.remove());
let timeout;
const debouncedRm = () => {
clearTimeout(timeout);
timeout = setTimeout(rm, 100);
};
rm();
new MutationObserver(debouncedRm)
.observe(document.body, {
childList: true, subtree: true
});
})();
|
| |
| ▲ | cookiengineer 3 days ago | parent | prev | next [-] | | Is there a Browser extension that farbles all these APIs on purpose instead of blocking them? By farbling I mean making the data look like it's the most common Windows configuration, for example. | | |
| ▲ | dns_snek 2 days ago | parent | next [-] | | I think that's impossible to do with an extension, there are far too many holes to plug and it's a moving target, it has to be done in the browser. I believe GrapheneOS is trying to do that with Vanadium (security and privacy hardened fork of Chromium for Android). | |
| ▲ | tapete2 3 days ago | parent | prev | next [-] | | AdNauseam does something like this. | |
| ▲ | landgenoot 3 days ago | parent | prev [-] | | I don't think that will work, because that will also provide false information to the logic. You will have messed up layouts and unneeded quirks. Moreover, banks are using fingerprinting to detect fraud so you will have a hard time on those websites as well. And more importantly. https://xkcd.com/1105/ | | |
| ▲ | cookiengineer 3 days ago | parent [-] | | By this logic you cannot use anything, because there's likely at least one website that uses its featureset. Of course I wouldn't farble on my bank's website, that would be pretty stupid. But by default I would want trackers to get the farbled data, and only allowlist the websites I trust. Same trust concept as with uBlock Origin, NoScript and others. |
|
| |
| ▲ | brirec 3 days ago | parent | prev [-] | | What the fuck up does this do? | | |
| ▲ | scotty79 3 days ago | parent [-] | | Shadows bunch of builtin browser JS functions so they do nothing. |
|
|
|
| ▲ | rkagerer 3 days ago | parent | prev | next [-] |
| Amen to that. I used to think the Stop button in IE did this. |
|
| ▲ | userbinator 3 days ago | parent | prev | next [-] |
| Old Opera (before it became another Chromium-shell) had an easy JS on/off toggle in the menu, but I don't remember if it only took effect on load or immediately. |
|
| ▲ | flomo 3 days ago | parent | prev | next [-] |
| Maybe this has changed, but ad scripts used document.write(), which runs immediately (before onLoad or etc). A big reason they are slow. |
|
| ▲ | joquarky 2 days ago | parent | prev | next [-] |
| In Brave, you can disable JS by default, then toggle it on for specific sites. |
|
| ▲ | landgenoot 3 days ago | parent | prev | next [-] |
| Tried to browse a while with NoScript addon. But barely any page loads, so you need to whitelist almost every page you visit, which defeats the purpose. I have been thinking about some kind of render proxy that runs all the JS for you somewhere else in a sandbox and sends you the screenshot or rendered HTML instead. Or maybe we could leverage an LLM to turn the Bloated JS garbage into the actual information you are looking for. |
| |
| ▲ | coldpie 2 days ago | parent | next [-] | | > Tried to browse a while with NoScript addon. But barely any page loads, so you need to whitelist almost every page you visit, which defeats the purpose. Nah, this is just straight up false. Many pages work fine with NoScript blocking all scripts. For those that don't, you usually only have to allowlist the root domain, but you can still leave the other 32 domains they are importing blocked. It's actually surprisingly common for blocking JS to result in a better experience than leaving it enabled (eg no popups, no videos, getting rid of fade-ins and other stupid animations). I won't argue if you think that is too much work, and I definitely wouldn't recommend it for a non-technical user, but it's not nearly as bad as you described. | | |
| ▲ | landgenoot a day ago | parent [-] | | > Nah, this is just straight up false. I wasn't clear, but this is about my experience. Maybe you are in a different bubble. But I'm not able to book a hotel, browse GitHub, file my taxes, make a bank transfer or even look up the menu of a restaurant. The only exceptions for me are HN and a handful of news websites. |
| |
| ▲ | pmontra 3 days ago | parent | prev | next [-] | | UMatrix has a better interface. The problem is the same, one has to find the minimum set of scripts that does not break the core functionality of the site. It's an ability that can be trained but it's the reason for I don't install it on the browsers of my friends. However I considered installing it, keeping it disabled and using it as a tool to show how much stuff each site loads from so many different sources. Many domain names are very telling even for the uninitiated. | |
| ▲ | MaxikCZ 3 days ago | parent | prev | next [-] | | I am still running the NoScript, whitelisting the page I am on. It has benefits of not whitelisting other domains it tries to pull stuff from, which 90% is enough to get working site that is way cleaner than with all the bullshit loaded. | |
| ▲ | anticristi 3 days ago | parent | prev [-] | | That's what I love most about using ChatGPT vs Google for finding information: less bloat, just what I asked for. |
|
|
| ▲ | focusedone 2 days ago | parent | prev | next [-] |
| uBO's 'Click to Disable JavaScript' button is a very handy feature. |
|
| ▲ | bb88 3 days ago | parent | prev [-] |
| or mouseover. |
