From 7ce9da4f5b1ca2a107cafedf952f83713f7055f3 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Alexander=20Sch=C3=A4ferdiek?= Date: Sat, 21 Nov 2020 12:37:22 +0100 Subject: [PATCH] Use HTTPS mode by default, clean up plugins --- firefox/README.md | 35 ++++++++++++----------------------- firefox/greasemonkey.zip | Bin 2710 -> 0 bytes firefox/user.js | 3 ++- 3 files changed, 14 insertions(+), 24 deletions(-) delete mode 100755 firefox/greasemonkey.zip diff --git a/firefox/README.md b/firefox/README.md index 9950510..63e2e25 100755 --- a/firefox/README.md +++ b/firefox/README.md @@ -8,28 +8,19 @@ Based on [https://www.privacy-handbuch.de/handbuch_21.htm](https://www.privacy-h ## Recommended extensions +Besides Firefox integrated anti-tracking mechanisms, it's still advised to install additional plugins to further enhance this. -``` -uBlock Origin (ads) +* `uBlock Origin`: blocks ads and unwanted trackers +* `Neat url`: removes common parameters from pages (e.g. to identify you with something like `?os=windows&browser=chrome&version=86`) +* `Skip Redirect`: skips not needed redirects of pages +* `CanvasBlocker`: disallows canvas fingerprinting which would be able to identify your unique browser, heavily used in some JavaScript (web) APIs +* (optional and might lead to disfunction): `Cookie AutoDelete`: automatically deletes cookies during a session -HTTPZ or HTTPS Everywhere (automatically redirect to the Secure version of a website) +**More**: +* Use a password manager and don't store or synchronize your passwords within internal browser functionality, e.g. `KeePassXC` +* Use `Invidious` instances for a liberated YouTube experience (a proxy to YouTube) -Neat url // removes common parameters from pages (e.g. to identify you with something like ?os=windows&....) - -Skip Redirect // skips not needed redirects of pages - -CanvasBlocker // for some JavaScript (web) API - -Cookie AutoDelete // automatically delete cookies - -(an extension for a passwordmanager like KeePassXC if needed) - -(Use Invidious instances for a liberated YouTube experience) - -(Greasemonkey to get rid of some annoying popups, see below) -``` - -All extensions, especially extensions interferring in redirects like `Skip Redirect` _might_ lead to malfunctioning of some websites. Disable it per page. +**Hint**: All extensions, especially extensions interferring in redirects and cookies like `Skip Redirect` or `Cookie Autodelete` _might_ lead to malfunctioning of some websites, e.g. websites not redirecting correctly or not being able to store cookies. _It's recommended to disable them per page if you notice something's not working as expected_! You can **hide extension icons** in the overflow menu if you like. Just right click the icon in the top right in the menu bar and "pin to overflow". @@ -37,10 +28,6 @@ You can **hide extension icons** in the overflow menu if you like. Just right cl For the uBlock plugin import the `ublock-config-1.txt` in the "My Filter" menu for proper settings. -### Remove Google and YouTube popups - -Recently, Google added popups on YT and search so you need to login. In the Greasemonkey extension, import the `greasemonkey.zip` in this git repository and they should be gone. - ## Recommended search engines If not possible in another way, you can add them via [Add custom search engine](https://addons.mozilla.org/en-US/firefox/addon/add-custom-search-engine/). Just follow instructions after installing and opening the extension. @@ -53,6 +40,8 @@ https://www.qwant.com/?q=%s&r=DE&sr=de&l=en_gb&h=1&s=0&a=1&b=1&vt=0&hc=0&smartNe https://duckduckgo.com/?q=%s&ks=l&kav=1&kn=1&kp=-2&kak=-1&kax=-1&kaq=-1&kao=-1&kau=-1&kaj=m&kam=google-maps&k1=-1&kae=c ``` +Be sure to add shortcuts to be used in your navigation bar, e.g. `@ddg` refers to DuckDuckGo search engine and directly issues searches to DuckDuckGo from the navigation bar. + ## Recommended settings How to do it? diff --git a/firefox/greasemonkey.zip b/firefox/greasemonkey.zip deleted file mode 100755 index 983a10fdc588d1d8c60279f3e065d8b3701d9828..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 2710 zcmcImc{r478=o0V7|SHvICiNq%34fGSrTT!L`?QXnwXg~mJvdhCWK-*WlM-tikY<8 zK5L9D5jD2q7$u)QN#y8Er}~_}kMrMmzt{8L@AY2K{d<4U{ob1`iicMS@Kw|=Ibi>K z_f@w9`#?``C4X-MDac#NkK}_VYT14_5%|kw$WBW+m=6Hx7X|=yHZ$1>M>CM@ z?XP);OmiTR2J|6oIqr2&jL|!Er>7bYvN$X0KvY+G-Jqn*fqd@*yEb$2z1NT)h?QBx zqt^(9R}z+^cU=wc95PxmO=><&J+%AR5I_5g7=&yx^RDSzUNST&JqZIV; z9Tm&LXgX3lChJnCvnqI8QpnX9$1F^6^m^m6Pd?dZ*~w8fic+#LKd}w?*-TJ^LZN(8 zZVC2|ky#pD@Fl~t;7XweJ6pxA*v!yAffV$R4E|N)z3mqwAMkFq0*QKB2vL-z6-%{S zd8e=?;7KZhPF2DmYZN`6=SS8Oi7KYL6g2vt9J`_M%bKdHeqh18j@}5|&M!b`2;SPl zxPrtl9EjtGNnTF6D<@)p-EvvTOBeMNeQkK=+;lZVR7g8O2^<>(n@!(Cgb+?R+kj3h ze*k@Q_`q}fJo6|4c6Kr#s5|5S^V(_smN# zroJWC(f9AqDHC|n!~&SErbh+e5G`@`(e}VTI~MiyED0b2s-Vr=Lnqny?bFMOA@3T5 zYWc|YhY|Kr)(tqk54F#=MUC@x*Myr3{F8lAy-oxVZ7d!zF|IAG6(d%=%*>g-Uf1*$2 z?%`W6N9v~xUzCXCnA@L>kBK;NP&4IU42H(8(i^?FSp5DWj;^*@I|u=49cB&yDf2*$<#zQdG%=H*L}(MGg8Qag!$y zjRHD?h<)l55Gxf@jO;5}R$*rrhcC_a?2VI#mW|vFHF`Q-C6E`H(e1H2tk&UeI|Y1< zI)9SS268b7(|pRpB28E2f?B4k>5WH@LHCJZOHHufs@qDibq$oPvlv{yjVQNZ^MQk*Wpq~V4eN@}>#dRt63BUG6#nW6`lHD}mcHN0a1K>< z2@VXeC9;P5eRnBbYI5riimdoF6sCm zt47rl#mLd*+IlqwyX#42hV!Q~FFogz&qbJgvF>2~y1OI8wRXFxK{95jjIvPhB3Gs^ ziIRTlQ4hrhdMMecD5%wStAaHig)^8IwOo2;)|a~P1!S;D!!mi)I*i4?!rQoIz>Bh;|F%3E44Gt9i-EANZabLESP)}JIu{sS>sP6xib^$u<#0kZd;A-wsrW@x zqnOuc>sAMo*h6(wpA|*$ZP0Gy7HL-R!8a8L6v~dnre_&J`KgQP4@W{#&h2IDYdk+! z@sIT`RgT>19mZYqn^kd59|E^tlZba6kW8)4=S&;4;O6qtLBZ7%T&> z4#)IjThSezf9yoDa)&d;fB*mr1ORAlVzB|rk3JNO#n|vDOH?grsQPC9cSKoEM26Zk+&#^xm}X(U)Fm07j$D;E3ur(tVrOFA zy=_t_oR-*+`IT=j@?4z17Zj`QLG3q;oILu-|mT*i6tXiv#{n=$t^-xUbnNu zAGI7gWex|?Vbx|^lL=cr)X29wI3gAW7VhXfPQLs>a|d-It+Lf5B&7VEI1OlCZy0U& z&`B!nDN#V(;7)eKT-gBey`n=@;#N3+D5!5hmZEAmyAV@f_leGb4y|y%d^+4RL>m(~ zyui$SR7vQssuzJ79YCpijwLibFS^)GHyE|g&{-2_jU(Kn3?<^@Yb=T!)HoH(|M?r= zy8PecLv9n_{@=p`2$BG7KC5t9aRu^CZ8o|5fY^9;`EJWqdfc_q(4w``%O4SBi~1S< z?@s%gRO_9UuUFjUy~EuP0Q?EPrdT8Z diff --git a/firefox/user.js b/firefox/user.js index 16ba7c4..9688d2f 100755 --- a/firefox/user.js +++ b/firefox/user.js @@ -88,7 +88,8 @@ user_pref("dom.gamepad.enabled", false); //user_pref("dom.push.connection.enabled", false); //user_pref("dom.push.enabled", false); //user_pref("dom.push.serverURL", ""); -//user_pref("dom.security.https_only_mode", true); +user_pref("dom.security.https_only_mode", true); +user_pref("dom.security.https_only_mode_ever_enabled", true); user_pref("dom.webnotifications.enabled", false); user_pref("extensions.blocklist.enabled", false); user_pref("extensions.formautofill.addresses.enabled", false);