We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

为提升您的使用体验,本站正在维护,部分功能暂时无法使用。如果本站文章无法解决您的问题,您想要向社区提问的话,请到 Twitter 上的 @FirefoxSupport 或 Reddit 上的 /r/firefox 提问,我们的支持社区将会很快回复您的疑问。

搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

详细了解

Is there a way to disable plugins globally, but enable them on a per-site basis?

  • 1 个回答
  • 5 人有此问题
  • 2 次查看
  • 最后回复者为 the-edmeister

more options

Is there a way in Firefox to globally disable plugins and allow only certain sites to run them (i.e., a whitelist)? I've tried working with CAPS, but it doesn't seem to be able to turn off <embed> or <object> tags, only certain aspects of JavaScript. I know about FlashBlock, but I've heard it's easy to circumvent and isn't meant for security. NoScript has this ability, and it's great for my own PC, but I'm looking for something more simple that I can use on the PCs of my friends and relatives.

Is there a way in Firefox to globally disable plugins and allow only certain sites to run them (i.e., a whitelist)? I've tried working with CAPS, but it doesn't seem to be able to turn off <embed> or <object> tags, only certain aspects of JavaScript. I know about FlashBlock, but I've heard it's easy to circumvent and isn't meant for security. NoScript has this ability, and it's great for my own PC, but I'm looking for something more simple that I can use on the PCs of my friends and relatives.

所有回复 (1)

more options

No, not in the basic Firefox build, and I haven't seen an extension with those features that is simple enough for the "average user" to use.

Flashblock only blocks Flash, Shockwave, and Authorware. Plugins like Java, Silverlight, and other aren't blocked by Flashblock. There is one manual control extension for JavaScript, Java, Flash, and Silverlight - Quick Java - https://addons.mozilla.org/en-US/firefox/addon/1237/ - but there is no "whitelist", only toolbar /statusbar buttons to toggle those plugins on/off.

As you mentioned, NoScript has features to block specific plugins from running automatically, and also has a "whitelist" so those plugins will run automatically on "trusted" websites, but getting the NoScript "whitelist" set up is a continuing job. It can be a frustrating extension to use for even "above-average users".

I use NoScript on my Windows desktop PC's as it is intended to be used - allowing JavaScript per domain / website by "allowing" or "temporarily allowing", but on my Linux netbook (900MHz processor and only 1GB of RAM) I have it set to Allow Scripts Globally, so I don't have to allow JavaScript for each domain on every website I visit. When I first got that netbook I ran for a few months without blocking anything, but after Firefox getting stalled by too many unnecessary plugin presentations I installed Flashblock. After a few weeks I realized that Flashblock wasn't blocking enough of the plugins that were causing problems, so I switched to NoScript with Allow Scripts Globally selected. IMO, Linux is much less of a target than Windows PC's are as far as exploits and Malware are concerned.