RequestPolicy
- Free • Open Source
- Mac
- Windows
- Linux
- Firefox
▼
What is RequestPolicy?
RequestPolicy is an extension for Mozilla browsers that improves the privacy and security of your browsing by giving you control over when cross-site requests are allowed by webpages you visit. It is the first comprehensive client-side protection against CSRF attacks and the first tool to enable the use of modern browsers without cross-site information leakage.
Improve the privacy of your browsing by not letting other sites know your browsing habits. Secure yourself from Cross-Site Request Forgery (CSRF), Clickjacking, and other attacks.
Cross-site requests are requests that your browser is told to make by a website you are visiting to a completely different website. Though usually legitimate requests, they often result in advertising companies and other websites knowing your browsing habits, including specific pages you view throughout the day. Among the attacks that cross-site requests are used in, they are particularly dangerous with Cross-Site Request Forgery (CSRF) attacks where your browser is told to make a request to another website and that other website thinks you (the person) meant to make the request.
With RequestPolicy, the default for any cross-site request is to deny it. Users are notified when requests on the current page have been blocked (the status bar flag icon at the bottom right of your browser turns red). Clicking on this status bar flag icon gives you a menu where you can view and modify which requests are blocked and allowed. You can whitelist requests you approve of by origin site, destination site, or specific origin-to-destination.
RequestPolicy is compatible with Firefox 3+, SeaMonkey 2.0, Flock 2.0, Songbird 1.0, and Fennec 1.0. It works wherever these browsers do (Linux, BSD, Mac, Windows, etc.).
Improve the privacy of your browsing by not letting other sites know your browsing habits. Secure yourself from Cross-Site Request Forgery (CSRF), Clickjacking, and other attacks.
Cross-site requests are requests that your browser is told to make by a website you are visiting to a completely different website. Though usually legitimate requests, they often result in advertising companies and other websites knowing your browsing habits, including specific pages you view throughout the day. Among the attacks that cross-site requests are used in, they are particularly dangerous with Cross-Site Request Forgery (CSRF) attacks where your browser is told to make a request to another website and that other website thinks you (the person) meant to make the request.
With RequestPolicy, the default for any cross-site request is to deny it. Users are notified when requests on the current page have been blocked (the status bar flag icon at the bottom right of your browser turns red). Clicking on this status bar flag icon gives you a menu where you can view and modify which requests are blocked and allowed. You can whitelist requests you approve of by origin site, destination site, or specific origin-to-destination.
RequestPolicy is compatible with Firefox 3+, SeaMonkey 2.0, Flock 2.0, Songbird 1.0, and Fennec 1.0. It works wherever these browsers do (Linux, BSD, Mac, Windows, etc.).
Show full description ▾
Features Vote on or suggest new features
Comments and Reviews Post a comment / review all • positive • negative relevance • date
No comments or reviews, maybe you want to be first?Categories
Web Browsers • Security & PrivacyTags
- cross-site-requests
- browsing-security
- script-block
- xss
- csrf
- analytics
- clickjacking
Lists containing RequestPolicy
Security and Privacy Enhancing Firefox Add-ons • Firefox Add-ons (worth using)
RequestPolicy
Summary
Our users have written 0 comments and reviews about RequestPolicy, and it has gotten 33 likes
- Developed by Justin Samuel
- Open Source and Free product.
- 16 alternatives listed
Popular alternatives
View allRequestPolicy was added to AlternativeTo by ruka_m on Mar 6, 2011 and this page was last updated Jan 30, 2021.
Recent user activities on RequestPolicy
- POX added RequestPolicy as alternative(s) to StopTheScript4 months ago
- generickidsacct added RequestPolicy as alternative(s) to JShelter4 months ago
- sebbu liked RequestPolicyseabout 1 year ago