Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

Die Funktionalität dieser Website ist durch Wartungsarbeiten eingeschränkt, die Ihr Erlebnis verbessern sollen. Wenn ein Artikel Ihr Problem nicht löst und Sie eine Frage stellen möchten, können Sie unsere Gemeinschaft über @FirefoxSupport auf Twitter, /r/firefox oder Reddit fragen.

Hilfe durchsuchen

Vorsicht vor Support-Betrug: Wir fordern Sie niemals auf, eine Telefonnummer anzurufen, eine SMS an eine Telefonnummer zu senden oder persönliche Daten preiszugeben. Bitte melden Sie verdächtige Aktivitäten über die Funktion „Missbrauch melden“.

Weitere Informationen

Add-on Permission in detail

  • 3 Antworten
  • 1 hat dieses Problem
  • 1 Aufruf
  • Letzte Antwort von wmchung9

more options

Hi, I am a bit of a panaroid person, so regarding to the permission: "access my data for all websites", does that means an add-on has the ability to make input in the background by itself? For example, whether an add-on is able to control my account on a website, changing the settings, password, and etc?

Hi, I am a bit of a panaroid person, so regarding to the permission: "access my data for all websites", does that means an add-on has the ability to make input in the background by itself? For example, whether an add-on is able to control my account on a website, changing the settings, password, and etc?
Angefügte Screenshots

Geändert am von wmchung9

Ausgewählte Lösung

Eddie said

Hi, I am a bit of a panaroid person, so regarding to the permission: "access my data for all websites", does that means an add-on has the ability to make input in the background by itself? For example, whether an add-on is able to control my account on a website, changing the settings, password, and etc?

In theory, it's possible, if you are logged in to the site and the site's forms can be manipulated by a script. Many sites have protections against scripts taking high-risk actions, or require additional verification for those actions.

If you want to browse critical sites without your extensions being active, you could use a private window for those sites and make sure the extensions do not have permission to run in private windows. See: Extensions in Private Browsing.

Diese Antwort im Kontext lesen 👍 1

Alle Antworten (3)

more options

The developer explains the purpose behind each required permission here. https://github.com/gorhill/uBlock/wiki/Permissions

  • Access your data on all web sites
  • Since first version.
  • - To be able to inspect all net requests so that they can be cancelled if needed.
  • - Only on http- and https-based URL addresses.
more options

Ausgewählte Lösung

Eddie said

Hi, I am a bit of a panaroid person, so regarding to the permission: "access my data for all websites", does that means an add-on has the ability to make input in the background by itself? For example, whether an add-on is able to control my account on a website, changing the settings, password, and etc?

In theory, it's possible, if you are logged in to the site and the site's forms can be manipulated by a script. Many sites have protections against scripts taking high-risk actions, or require additional verification for those actions.

If you want to browse critical sites without your extensions being active, you could use a private window for those sites and make sure the extensions do not have permission to run in private windows. See: Extensions in Private Browsing.

more options

jscher2000 said

Eddie said

Hi, I am a bit of a panaroid person, so regarding to the permission: "access my data for all websites", does that means an add-on has the ability to make input in the background by itself? For example, whether an add-on is able to control my account on a website, changing the settings, password, and etc?

In theory, it's possible, if you are logged in to the site and the site's forms can be manipulated by a script. Many sites have protections against scripts taking high-risk actions, or require additional verification for those actions.

If you want to browse critical sites without your extensions being active, you could use a private window for those sites and make sure the extensions do not have permission to run in private windows. See: Extensions in Private Browsing.

Got it, so if I want to be safe, I can turn off the extension when logging into my accounts, thanks!