Areas for Improvement
Known Bugs
See the list of unresolved bugs reports.
And here are a few not in the bug tracker yet:
SeaMonkey only
- No toolbar button available (only statusbar icon).
Fennec only
- Redirect notification box is not shown.
- Blocked requests status icon not updated when switching between tabs.
- Checkbox for "Temporarily allow all requests" doesn't show checkmark (maybe just a Fennec 1.0a2 issue).
Extension Conflicts
See the list of conflicts with other extensions.
Feature Requests
See the list of open feature requests.
Please let us know if there's a feature you'd like to see! Feel free to email us or post your feature request at the above url.
You may notice a concern over UI issues with implementing a feature or making it the default. That's because we really want to keep the default menu of RequestPolicy simple but without sacrificing security and privacy. To that end, things that most users wouldn't want shouldn't clutter the default interface. These can often be added as preferences that are not enabled by default.
Limitations
These are things we don't know how to fix. Suggestions are welcome.
- When using the context menu to save a file pointed to by a link, if the request is blocked, then a 0-byte file will be downloaded. It would be better to notify the user of the failure. Note: I need to narrow this down better then submit it as a bug in the issue tracker. If it can't be fixed in RequestPolicy, need to open a bug report for Firefox.
- User-desired scripted side effects of user actions that cause cross-site requests. For example, a link click that uses javascript to navigate to a different website rather than using the href attribute. This does not seem fixable as there is no way to know, in general, that a scripted cross-site request was desired by the user. The solution is for the user to whitelist the blocked request (e.g. allow requests from source domain to destination domain) to allow the scripted request.