CodeMirror/uMatrix
1
0
Fork 0
mirror of https://github.com/gorhill/uMatrix.git synced 2024-05-06 21:33:33 +12:00
Code Issues Releases Wiki Activity
Page: How to work in hard 3rd party default deny by default
Pages
About "the page is still broken after I created all necessary rules" Changes from HTTP Switchboard Contributing ruleset recipes Cookies Default ruleset at installation Examples of useful rulesets FAQ Home How to "allow all" in uMatrix How to access the popup panel when there is no toolbar How to block 1st party scripts everywhere by default How to create rules which apply everywhere, on all web sites How to get past "uMatrix has prevented the following page from loading" How to have root documents blocked by default everywhere How to work in hard 3rd party default deny by default How to work in hardcore "block almost everything" mode How to work only with global rules and all scripts blocked by default Lingering domain entries in the matrix Logger Per scope switches Permissions Preset whitelisted and blacklisted domains Privacy friendly Chromium settings Privacy policy Privileged Pages Raw settings Rules syntax Ruleset recipes Scope selector Setting Domain Specific & Global Rules The extension icon The popup panel Translation work contributors Very bare walkthrough for first time users
4 How to work in hard 3rd party default deny by default
Raymond Hill edited this page 2017-12-04 18:02:40 -05:00

Out of the box, uMatrix's ruleset is "soft" 3rd-party default-deny.

"Soft" here means that passive 3rd-party resources are not blocked by default, so as to minimize the likelihood of web sites not rendering properly. Passive resources are stylesheets and images.

With a few clicks, you can modify the ruleset so that uMatrix works in "hard" 3rd-party default-deny everywhere.

"Hard" here means that even 3rd-party passive resources will be forbidden by uMatrix. This quite increases the likelihood of web sites not rendering properly visually, but for some the benefits are worth it because this prevents all 3rd-party network requests when loading web pages.

First, this is a web page with uMatrix's out-of-the-box ruleset at work:

a

From there, select the global scope:

a

Then remove both allow rules for css and image (this removes * * css allow and * * image allow from your ruleset):

a

Don't forget to persist your changes if you plan to keep that "hard" 3rd-party default-deny for good:

a

The result -- all 3rd-party requests are now blocked (the article in the page could still be read fine in the current example):

a

You will probably have to work a bit more to un-break your sites, but for many it's worth it in order to completely forbid 3rd-party network requests.

uMatrix: Point and click matrix to filter net requests according to source, destination and type.