diff --git a/firefox/README.md b/firefox/README.md index 05e31a1..d87af61 100755 --- a/firefox/README.md +++ b/firefox/README.md @@ -12,7 +12,7 @@ Besides Firefox integrated anti-tracking mechanisms, it's still advised to insta * `Https Everywhere`: redirects to SSL version of a website automatically if it's available, [currently preferred over Firefox's built-in mode because of feature richness](https://www.eff.org/https-everywhere/faq#https-only-mode) * `uBlock Origin`: blocks ads and unwanted trackers -* `Neat url`: removes common parameters from pages (e.g. to identify you with something like `?os=windows&browser=chrome&version=86`) +* `ClearURLs` or `Neat url`: removes common parameters from pages (e.g. to identify you with something like `?os=windows&browser=chrome&version=86`) * `Skip Redirect`: skips not needed redirects of pages * `CanvasBlocker`: disallows canvas fingerprinting which would be able to identify your unique browser, heavily used in some JavaScript (web) APIs * (optional and might lead to disfunction): `Cookie AutoDelete`: automatically deletes cookies during a session diff --git a/firefox/user.js b/firefox/user.js index da41df8..0f9815c 100755 --- a/firefox/user.js +++ b/firefox/user.js @@ -1,6 +1,6 @@ // Mozilla User Preferences // -// 2021/01/06 +// 2021/02/22 // // Based on Privacy-Handbuch, merged/adjusted strong user.js // Download: https://www.privacy-handbuch.de/handbuch_21u.htm @@ -14,9 +14,10 @@ user_pref("beacon.enabled", false); user_pref("browser.cache.disk.enable", false); user_pref("browser.cache.disk_cache_ssl", false); user_pref("browser.cache.offline.enable", false); +user_pref("browser.chrome.site_icons", false); //user_pref("browser.display.use_document_fonts", 0); // Disable to disallow playback of DRM content -user_pref("browser.eme.ui.enabled", true); +user_pref("browser.eme.ui.enabled", false); user_pref("browser.fixup.alternate.enabled", false); user_pref("browser.formfill.enable", false); user_pref("browser.link.open_newwindow.restriction", 0); @@ -55,11 +56,6 @@ user_pref("browser.safebrowsing.provider.mozilla.updateURL", ""); user_pref("browser.search.update", false); user_pref("browser.search.geoSpecificDefaults", false); user_pref("browser.search.suggest.enabled", false); -user_pref("browser.search.reset.enabled", false); -user_pref("browser.search.reset.whitelist", ""); -// adjust if you like to restore/keep session -user_pref("browser.sessionstore.resume_session_once", false); -user_pref("browser.sessionstore.resume_from_crash", false); // set to -1 for unlimited ctrl+shift+t user_pref("browser.sessionstore.max_tabs_undo", 5); user_pref("browser.sessionstore.max_windows_undo", 0); @@ -85,8 +81,9 @@ user_pref("datareporting.policy.dataSubmissionEnabled", false); user_pref("dom.push.connection.enabled", false); user_pref("dom.push.enabled", false); user_pref("dom.push.serverURL", ""); -// use Https Everywhere and disable built-in +// use HTTPs Everywhere and disable built-in user_pref("dom.security.https_only_mode", false); +user_pref("dom.security.https_only_mode_send_http_background_request", false); user_pref("dom.vibrator.max_vibrate_ms", 0); user_pref("extensions.blocklist.enabled", false); user_pref("extensions.formautofill.addresses.enabled", false); @@ -109,7 +106,6 @@ user_pref("extensions.webextensions.restrictedDomains", ""); //user_pref("javascript.options.ion", false); //user_pref("layers.acceleration.disabled", true); //user_pref("layout.css.font-loading-api.enabled", false); -//user_pref("layout.css.visited_links_enabled", false); user_pref("media.autoplay.default", 5); user_pref("media.autoplay.blocking_policy", 2); user_pref("media.cache_size", 0); @@ -124,9 +120,8 @@ user_pref("media.navigator.video.enabled", false); user_pref("media.peerconnection.enabled", false); user_pref("media.video_stats.enabled", false); user_pref("media.webspeech.synth.enabled", false); +user_pref("network.cookie.cookieBehavior", 5); user_pref("network.dns.disablePrefetch", true); -// allow IPv6 of websites -user_pref("network.dns.disableIPv6", false); user_pref("network.ftp.enabled", false); user_pref("network.captive-portal-service.enabled", false); user_pref("network.connectivity-service.enabled", false); @@ -161,8 +156,7 @@ user_pref("privacy.cpd.offlineApps", true); user_pref("privacy.cpd.passwords", true); user_pref("privacy.cpd.siteSettings", true); user_pref("privacy.donottrackheader.enabled", false); -user_pref("privacy.firstparty.isolate", true); -user_pref("privacy.firstparty.isolate.block_post_message", true); +user_pref("privacy.firstparty.isolate", false); user_pref("privacy.history.custom", true); user_pref("privacy.sanitize.sanitizeOnShutdown", true); user_pref("privacy.userContext.enabled", true); @@ -179,7 +173,6 @@ user_pref("security.insecure_connection_icon.pbmode.enabled", true); user_pref("security.insecure_connection_text.enabled", true); user_pref("security.insecure_connection_text.pbmode.enabled", true); user_pref("security.mixed_content.upgrade_display_content", true); -user_pref("security.secure_connection_icon_color_gray", false); user_pref("security.ssl.require_safe_negotiation", true); user_pref("security.ssl.treat_unsafe_negotiation_as_broken", true); user_pref("signon.autofillForms", false); @@ -207,6 +200,9 @@ user_pref("webgl.enable-debug-renderer-info", false); user_pref("network.trr.resolvers", '[{ "name": "Cloudflare", "url": "https://mozilla.cloudflare-dns.com/dns-query" },{ "name": "NextDNS", "url": "https://trr.dns.nextdns.io/" },{ "name": "dnsforge.de", "url": "https://dnsforge.de/dns-query" },{ "name": "Digitale Gesellschaft (CH)", "url": "https://dns.digitale-gesellschaft.ch/dns-query" }, { "name": "Freifunk Muenchen", "url": "https://doh.ffmuc.net" }, { "name": "BlahDNS (DE)", "url": "https://doh-de.blahdns.com/dns-query" }, { "name": "BlahDNS (FI)", "url": "https://doh-fi.blahdns.com/dns-query" }, { "name": "Quad9", "url": "https://dns.quad9.net/dns-query" }, { "name": "dns.myservermanager.com", "url": "https://dns.myservermanager.com/dns-query" }]'); +// Enable green icons again +user_pref("security.secure_connection_icon_color_gray", false); + // Temporarily enabled (for now) as there are no hardware devices on desktop PCs to leak any information user_pref("dom.webnotifications.enabled", true); user_pref("dom.gamepad.enabled", true);