Is it safe to turn off scripts when posting on Reddit while using Tor
All the confusion surrounding this area is frustrating. Can the moderators clarify this??
Scripts off when posting safe??
Is it safe to turn off scripts when posting on Reddit while using Tor
All the confusion surrounding this area is frustrating. Can the moderators clarify this??
[5 Points] sapiophile:
Unfortunately, reddit requires scripts in order to do anything except browse/read.
If it's important to you to post on reddit through Tor, the best you're gonna get is to bring the Security Slider in Tor Browser down to "Medium-High," which allows scripts only from HTTPS-secured servers (which reddit supports). You could also go a step further, if you like, by just only manually whitelisting reddit.com and its affiliated domains explicitly in NoScript (edit: include https:// in any whitelist entries - that's important), while keeping the Slider on "High," but that's a bit more complicated.
If you feel like your threat model is sufficiently paranoid, you might want to only do this while using Tails from a write-once DVD-/+R, which would provide pretty good resilience against potential very high-profile malware (the kind that wouldn't be used against you unless you were a very, very interesting target). Then reboot immediately when you're done. Bonus points for doing this on a machine with no hard drive. But, seriously, that's getting into pretty extreme security territory, and it's very unlikely that it's appropriate for your threat model.