It's not miserable at all -- in fact, I personally think that it makes most websites better. If a website can't operate without JS, then I just don't use that site. No loss to me.
VMs are another reasonable approach. I don't do that, though, because it's more hassle than it's worth to me.
> if you clicked on something malicious
That's not my primary concern. My primary concern is really to stop bad behavior that is very common across all websites (tracking, etc.)
VMs are another reasonable approach. I don't do that, though, because it's more hassle than it's worth to me.
> if you clicked on something malicious
That's not my primary concern. My primary concern is really to stop bad behavior that is very common across all websites (tracking, etc.)