Compare commits

..

63 Commits

Author SHA1 Message Date
Narsil f0d0f266fd Update user.js 2024-09-24 10:51:27 +00:00
Narsil be74dcc57d Update testing/user.js 2024-09-24 10:50:54 +00:00
Narsil 23f563dbb9 Update user.js 2024-07-17 08:48:01 +00:00
Narsil d453d0d030 Update testing/user.js 2024-07-17 08:47:24 +00:00
Narsil dd2dc245b7 Upload files to "/" 2024-02-23 16:29:33 +00:00
Narsil 7ecf8268ea Upload files to "testing" 2024-02-23 16:29:08 +00:00
Narsil 60cecfcc42 Upload files to "/" 2024-01-14 18:16:57 +00:00
Narsil 868b4e426b Upload files to "testing" 2024-01-14 18:16:28 +00:00
Narsil f9c970031c Upload files to "/" 2023-11-29 20:09:12 +00:00
Narsil a8e1a4d7cc Upload files to "testing" 2023-11-29 20:08:45 +00:00
Narsil 863140ad4d Upload files to "testing" 2023-09-16 12:30:14 +00:00
Narsil 53149f658e Upload files to "/" 2023-09-16 12:29:45 +00:00
Narsil c1d350bd6c Update 'user.js' 2023-07-19 15:38:55 +00:00
Narsil 6b33537ed1 Upload files to 'testing' 2023-07-19 15:37:59 +00:00
Narsil d299f1c7ef Upload files to '' 2023-07-19 15:37:40 +00:00
Narsil 641d8020db Upload files to 'testing' 2023-05-25 15:31:41 +00:00
Narsil 569c09e79a Upload files to '' 2023-05-25 15:31:13 +00:00
Narsil 1e0fea01ae Upload files to 'testing' 2023-03-22 16:54:46 +00:00
Narsil 3729d9fff6 Upload files to '' 2023-03-22 16:54:30 +00:00
Narsil ec2aed5bed Upload files to 'testing' 2022-10-25 10:33:09 +00:00
Narsil 1116597997 Upload files to 'testing' 2022-09-01 16:54:53 +00:00
Narsil 00cc27955e Upload files to '' 2022-09-01 16:54:14 +00:00
Narsil e02b856dff Update 'testing/user.js' 2022-08-30 16:32:41 +00:00
Narsil f7c2fa9dc9 Update 'user.js' 2022-08-23 17:18:36 +00:00
Narsil f018212126 Update 'README.md' 2022-05-30 14:51:22 +00:00
Narsil 273a0456bf Update 'testing/README.md' 2022-05-30 14:47:53 +00:00
Narsil 33ba7e736a Update 'testing/user.js' 2022-05-30 14:43:05 +00:00
Narsil e721739fc8 Update 'user.js' 2022-05-30 14:41:29 +00:00
Narsil d54746e2d8 Update 'README.md' 2022-05-19 13:21:06 +00:00
Narsil b5bef9b75f Update 'testing/README.md' 2022-05-19 13:18:50 +00:00
Narsil c4f1b3b2a3 Update 'testing/README.md' 2022-05-19 13:18:25 +00:00
Narsil bc1f4b2c0f Update 'testing/user.js' 2022-05-19 13:12:26 +00:00
Narsil ce3bfbec6c Update 'user.js' 2022-05-12 08:46:15 +00:00
Narsil ec4186b414 Update 'README.md' 2022-02-05 16:01:51 +00:00
Narsil 20576f2de7 Update 'user.js' 2022-01-10 10:22:43 +00:00
Narsil 2aecec0603 Update 'testing/README.md' 2022-01-04 19:06:56 +00:00
Narsil 4724cb3a02 Add 'testing/README' 2022-01-04 19:06:21 +00:00
Narsil 0a9841f816 Upload files to 'testing' 2022-01-04 19:03:34 +00:00
Narsil 6526bd2b9b Add 'testing/user.js' 2022-01-04 19:01:00 +00:00
Narsil ab4d1078cd Update 'user.js' 2022-01-04 18:01:30 +00:00
Narsil 919f3e7397 Update 'user.js' 2022-01-01 16:59:29 +00:00
Narsil 17b6280a1d Update 'user.js' 2022-01-01 10:23:57 +00:00
Narsil 209c6423e2 Update 'user.js' 2022-01-01 10:13:18 +00:00
Narsil eea8274a9c Update 'user.js' 2021-12-28 10:13:02 +00:00
Narsil 04f7490905 Update 'user.js' 2021-12-25 10:35:57 +00:00
Narsil 18379a1ec4 Update 'user.js' 2021-12-16 09:56:46 +00:00
Narsil d8a801a0fd Update 'README.md' 2021-12-16 09:53:39 +00:00
Narsil 43700a1bef Update 'user.js' 2021-10-24 15:07:00 +00:00
Narsil a0146081b3 Update 'README.md' 2021-08-07 13:52:35 +00:00
Narsil dd26df7652 Update 'user.js' 2021-08-07 09:32:30 +00:00
Narsil a5312e90e7 Update 'user.js' 2021-07-21 18:33:44 +00:00
Narsil d063980485 Update 'user.js' 2021-06-26 17:01:49 +00:00
Narsil 55ff31a738 Update 'user.js' 2021-06-16 07:27:07 +00:00
Narsil ac938db176 Update 'user.js' 2021-06-07 09:10:49 +00:00
Narsil affba1468c Update 'user.js' 2021-05-27 08:28:09 +00:00
Narsil 613c7179ed Update 'user.js' 2021-05-08 17:28:19 -04:00
Narsil eba6477c2b Update 'user.js' 2021-04-30 08:17:26 -04:00
Narsil ceab20bfbc Update 'user.js' 2021-04-28 16:42:13 -04:00
Narsil 9d2013e02d Update 'user.js' 2021-04-28 16:40:00 -04:00
Narsil c2661d692d Update 'user.js' 2021-04-26 12:49:05 -04:00
Narsil af719705f2 Update 'user.js' 2021-04-26 04:25:02 -04:00
Narsil 298e354434 Update 'user.js' 2021-04-09 03:49:08 -04:00
Narsil 81c2457fd3 Update 'user.js' 2021-04-03 17:11:58 -04:00
4 changed files with 1222 additions and 67 deletions

View File

@ -15,15 +15,25 @@ user.js file for configuring and hardening Pale Moon privacy and security.-
This user.js is mainly based on arkenfox project (56 and recent version). This user.js is mainly based on arkenfox project (56 and recent version).
On the other hand, it tries to avoid all the automatic connections even though security could be reduced slightly (according to Spyware Watchdog website) For instance, OSCP is a privacy breach. Nevertheless, it is also a security feature. On the other hand, it avoids all the automatic connections even though security could be reduced slightly (according to Spyware Watchdog website) For instance, OSCP is a privacy breach. Nevertheless, it is also a security feature.
It has also some changes in order to improve fingerprinting like canvas.poisondata and others. It has also some changes in order to improve fingerprinting like canvas.poisondata and others.
Finally, it tries to resemble Firefox ESR version (useragent, buildID, platform and so on)
## Known problems
`Some breakage?`
Try changing "network.http.referer.XOriginPolicy" from 2 to 1
## Thanks: ## Thanks:
* [Arkenfox user.js](https://github.com/arkenfox/user.js) * [Arkenfox user.js](https://github.com/arkenfox/user.js)
* [Pale Moon Browser Spyware Mitigation Guide](https://spyware.neocities.org/guides/palemoon.html) * [Pale Moon Browser Spyware Mitigation Guide](https://spyware.neocities.org/guides/palemoon.html)
* [Web browser](https://git.nuegia.net/webbrowser.git)
* [Pale Moon Release Notes](https://www.palemoon.org/releasenotes.shtml) * [Pale Moon Release Notes](https://www.palemoon.org/releasenotes.shtml)
## License ## License
@ -34,4 +44,4 @@ See `LICENSE` for more details.
## Other mirrors ## Other mirrors
https://gitlab.com/Jorgu81/user.js/tree/master/Pale%20Moon https://codeberg.org/Narsil/user.js/src/branch/main/palemoon

10
testing/README.md Normal file
View File

@ -0,0 +1,10 @@
## user.js for Pale Moon.
For testing purposes only. Inspired in [Web Browser](https://git.nuegia.net/webbrowser.git/) mitigations.
## Differences
* No Javascript
* No UserAgent
* No buildID, appname, appversion, platform nor oscpu

1124
testing/user.js Normal file

File diff suppressed because it is too large Load Diff

141
user.js
View File

@ -1,33 +1,29 @@
//
// ********************************************************************************** // **********************************************************************************
// user.js | Pale Moon * // user.js | Pale Moon
// * // https://git.nixnet.services/Narsil/palemoon_user.js
// https://git.nixnet.xyz/Narsil/palemoon_user.js * // **********************************************************************************
// *********************************************************************************/
//
// Author : Narsil : https://git.nixnet.xyz/Narsil
//
// //
// Author : Narsil : https://git.nixnet.services/Narsil
// //
// Based on : arkenfox : https://github.com/arkenfox/user.js // Based on : arkenfox : https://github.com/arkenfox/user.js
// //
// // License : https://git.nixnet.services/Narsil/palemoon_user.js/raw/branch/master/LICENSE
// License : https://git.nixnet.xyz/Narsil/desktop_user.js/raw/branch/master/LICENSE
// //
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// STARTUP // STARTUP
// >>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>
// Disable about:config warning // Disable about:config warning
user_pref("general.warnOnAboutConfig", false); user_pref("general.warnOnAboutConfig", false);
//------------------------------------- // -------------------------------------
// Disable about:networking warning // Disable about:networking warning
user_pref("network.warnOnAboutNetworking", false); user_pref("network.warnOnAboutNetworking", false);
//------------------------------------- // -------------------------------------
// Disable default browser check // Disable default browser check
user_pref("browser.shell.checkDefaultBrowser", false); user_pref("browser.shell.checkDefaultBrowser", false);
user_pref("browser.shell.skipDefaultBrowserCheckOnFirstRun", true); user_pref("browser.shell.skipDefaultBrowserCheckOnFirstRun", true);
// ------------------------------------- // -------------------------------------
// Set START page (0=blank, 1=home, 2=last visited page, 3=resume previous session) // Set START page
// 0=blank, 1=home, 2=last visited page, 3=resume previous session
user_pref("browser.startup.page", 0); user_pref("browser.startup.page", 0);
// ------------------------------------- // -------------------------------------
// Set HOME+NEWWINDOW page // Set HOME+NEWWINDOW page
@ -56,8 +52,15 @@ user_pref("browser.newtabpage.add_to_session_history", false);
// Hide tabs (only one in use) // Hide tabs (only one in use)
// user_pref("browser.tabs.autoHide", true); // user_pref("browser.tabs.autoHide", true);
// ------------------------------------- // -------------------------------------
// Control listed history entries in the menu
// user_pref("browser.history.menuMaxResults", 0); // [HIDDEN PREF]
// -------------------------------------
// Tabs on top // Tabs on top
// user_pref(“browser.tabs.onTop", true); // user_pref(“browser.tabs.onTop", true);
// -------------------------------------
// Control whether the tab page title is included in the window title
user_pref("privacy.exposeContentTitleInWindow", false);
user_pref("privacy.exposeContentTitleInWindow.pbm", false);
// //
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// GEOLOCATION // GEOLOCATION
@ -137,7 +140,7 @@ user_pref("toolkit.telemetry.unified", false);
user_pref("toolkit.telemetry.enabled", false); user_pref("toolkit.telemetry.enabled", false);
user_pref("toolkit.telemetry.server", ""); user_pref("toolkit.telemetry.server", "");
// ------------------------------------- // -------------------------------------
// Disable Mozilla permission to silently opt you into tests // Disable Pale Moon permission to silently opt you into tests
user_pref("network.allow-experiments", false); user_pref("network.allow-experiments", false);
// ------------------------------------- // -------------------------------------
// Disable Captive Portal detection // Disable Captive Portal detection
@ -151,12 +154,18 @@ user_pref("browser.feedback.url", "");
// Disable auto updating of personas (themes) // Disable auto updating of personas (themes)
user_pref("lightweightThemes.update.enabled", false); user_pref("lightweightThemes.update.enabled", false);
// ------------------------------------- // -------------------------------------
// Disable Tracking Protection in all windows
user_pref("privacy.trackingprotection.pbmode.enabled", false);
user_pref("privacy.trackingprotection.enabled", false);
// -------------------------------------
// Disable detailed error reporting of media errors for debugging purposes // Disable detailed error reporting of media errors for debugging purposes
user_pref("media.sourceErrorDetails.enabled", false); user_pref("media.sourceErrorDetails.enabled", false);
// -------------------------------------
// Disable handler urls
user_pref("gecko.handlerService.schemes.mailto.0.uriTemplate", "");
user_pref("gecko.handlerService.schemes.mailto.0.name", "");
user_pref("gecko.handlerService.schemes.mailto.1.uriTemplate", "");
user_pref("gecko.handlerService.schemes.mailto.1.name", "");
user_pref("gecko.handlerService.schemes.irc.0.uriTemplate", "");
user_pref("gecko.handlerService.schemes.irc.0.name", "");
user_pref("gecko.handlerService.schemes.ircs.0.uriTemplate", "");
user_pref("gecko.handlerService.schemes.ircs.0.name", "");
// //
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// BLOCK IMPLICIT OUTBOUND [not explicitly asked for - e.g. clicked on] // BLOCK IMPLICIT OUTBOUND [not explicitly asked for - e.g. clicked on]
@ -166,18 +175,16 @@ user_pref("network.prefetch-next", false);
// ------------------------------------- // -------------------------------------
// Disable DNS prefetching // Disable DNS prefetching
user_pref("network.dns.disablePrefetch", true); user_pref("network.dns.disablePrefetch", true);
user_pref("network.dns.disablePrefetchFromHTTPS", true); // [HIDDEN PREF]
// ------------------------------------- // -------------------------------------
// Disable predictor / prefetching // Disable predictor / prefetching
user_pref("network.predictor.enabled", false); user_pref("network.predictor.enabled", false);
user_pref("network.predictor.enable-prefetch", false); // user_pref("network.predictor.enable-prefetch", false);
// ------------------------------------- // -------------------------------------
// Disable link-mouseover opening connection to linked server // Disable link-mouseover opening connection to linked server
user_pref("network.http.speculative-parallel-limit", 0); user_pref("network.http.speculative-parallel-limit", 0);
// ------------------------------------- // -------------------------------------
// Enforce no "Hyperlink Auditing" (click ng) // Enforce no "Hyperlink Auditing" (click ng)
user_pref("browser.send_pings", false); // user_pref("browser.send_pings", false);
user_pref("browser.send_pings.require_same_host", true);
// //
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// HTTP* / TCP/IP / DNS / PROXY / SOCKS etc // HTTP* / TCP/IP / DNS / PROXY / SOCKS etc
@ -238,7 +245,7 @@ user_pref("browser.formfill.enable", false);
user_pref("browser.formfill.saveHttpsForms", false); user_pref("browser.formfill.saveHttpsForms", false);
// ------------------------------------- // -------------------------------------
// Disable browsing and download history // Disable browsing and download history
user_pref("places.history.enabled", false); // user_pref("places.history.enabled", false);
// ------------------------------------- // -------------------------------------
// Enable immediately showing the edit dialog for new bookmarks // Enable immediately showing the edit dialog for new bookmarks
// user_pref("browser.bookmarks.editDialog.showForNewBookmarks", true); // user_pref("browser.bookmarks.editDialog.showForNewBookmarks", true);
@ -358,15 +365,6 @@ user_pref("security.ssl.require_safe_negotiation", true);
// ------------------------------------- // -------------------------------------
// Disable SSL session tracking // Disable SSL session tracking
user_pref("security.ssl.disable_session_identifiers", true); // [HIDDEN PREF] user_pref("security.ssl.disable_session_identifiers", true); // [HIDDEN PREF]
// -------------------------------------
// Block rc4 fallback
user_pref("security.tls.unrestricted_rc4_fallback", false);
// -------------------------------------
// Disable TLS1.3 0-RTT (round-trip time)
user_pref("security.tls.enable_0rtt_data", false);
// -------------------------------------
// Disable TLS 1.3 draft support
// user_pref("security.tls.version.max", 4);
// //
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// OCSP (Online Certificate Status Protocol) // OCSP (Online Certificate Status Protocol)
@ -390,6 +388,7 @@ user_pref("security.pki.sha1_enforcement_level", 0);
// ------------------------------------- // -------------------------------------
// Disable Windows 8.1's Microsoft Family Safety cert // Disable Windows 8.1's Microsoft Family Safety cert
user_pref("security.family_safety.mode", 0); user_pref("security.family_safety.mode", 0);
//
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// MIXED CONTENT // MIXED CONTENT
// >>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>
@ -414,6 +413,8 @@ user_pref("security.mixed_content.block_display_content", true);
// user_pref("security.ssl3.ecdhe_ecdsa_aes_128_sha", false); // user_pref("security.ssl3.ecdhe_ecdsa_aes_128_sha", false);
// user_pref("security.ssl3.ecdhe_rsa_aes_128_sha", false); // user_pref("security.ssl3.ecdhe_rsa_aes_128_sha", false);
// user_pref("security.ssl3.ecdhe_rsa_aes_256_sha", false); // user_pref("security.ssl3.ecdhe_rsa_aes_256_sha", false);
// user_pref("security.ssl3.rsa_aes_128_gcm_sha256", false); // no PFS
// user_pref("security.ssl3.rsa_aes_256_gcm_sha384", false); // no PFS
// user_pref("security.ssl3.rsa_aes_128_sha", false); // no PFS // user_pref("security.ssl3.rsa_aes_128_sha", false); // no PFS
// user_pref("security.ssl3.rsa_aes_256_sha", false); // no PFS // user_pref("security.ssl3.rsa_aes_256_sha", false); // no PFS
// //
@ -475,8 +476,8 @@ user_pref("network.http.referer.XOriginTrimmingPolicy", 2);
// Disable spoofing a referer // Disable spoofing a referer
// user_pref("network.http.referer.spoofSource", false); // user_pref("network.http.referer.spoofSource", false);
// ------------------------------------- // -------------------------------------
// Enable the DNT (Do Not Track) HTTP header // Disable Global Privacy Control feature
user_pref("privacy.donottrackheader.enabled", false); user_pref("privacy.GPCheader.enabled", false);
// ------------------------------------- // -------------------------------------
// Block authentication-locked cross-origin image subresources by default to prevent spurious auth prompts // Block authentication-locked cross-origin image subresources by default to prevent spurious auth prompts
// user_pref("network.auth.subresource-http-img-XO-auth", true); // user_pref("network.auth.subresource-http-img-XO-auth", true);
@ -487,9 +488,6 @@ user_pref("privacy.donottrackheader.enabled", false);
// Set default plugin state (i.e. new plugins on discovery) to never activate // Set default plugin state (i.e. new plugins on discovery) to never activate
user_pref("plugin.default.state", 0); user_pref("plugin.default.state", 0);
// ------------------------------------- // -------------------------------------
// Disable widevine CDM (Content Decryption Module)
user_pref("media.gmp-manager.url", "");
// -------------------------------------
// Enable click to play and set to 0 minutes // Enable click to play and set to 0 minutes
user_pref("plugins.click_to_play", true); user_pref("plugins.click_to_play", true);
user_pref("plugin.sessionPermissionNow.intervalInMinutes", 0); user_pref("plugin.sessionPermissionNow.intervalInMinutes", 0);
@ -503,9 +501,6 @@ user_pref("media.gmp-manager.url", ""); // [HIDDEN PREF]
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// MEDIA / CAMERA / MIC // MEDIA / CAMERA / MIC
// >>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>
// Disable WebRTC (Web Real-Time Communication)
user_pref("media.peerconnection.enabled", false);
// -------------------------------------
// Disable camera stuff // Disable camera stuff
user_pref("camera.control.face_detection.enabled", false); user_pref("camera.control.face_detection.enabled", false);
// ------------------------------------- // -------------------------------------
@ -532,7 +527,6 @@ user_pref("webgl.disabled", true);
user_pref("webgl.enable-webgl2", false); user_pref("webgl.enable-webgl2", false);
// ------------------------------------- // -------------------------------------
// Limit WebGL // Limit WebGL
// user_pref("webgl.min_capability_mode", true);
user_pref("webgl.disable-extensions", true); user_pref("webgl.disable-extensions", true);
user_pref("webgl.disable-fail-if-major-performance-caveat", true); user_pref("webgl.disable-fail-if-major-performance-caveat", true);
// ------------------------------------- // -------------------------------------
@ -617,7 +611,7 @@ user_pref("dom.event.clipboardevents.enabled", false);
// Set max popups from a single non-click event - default is 20! // Set max popups from a single non-click event - default is 20!
user_pref("dom.popup_maximum", 3); user_pref("dom.popup_maximum", 3);
// ------------------------------------- // -------------------------------------
// Disable idle observation ***/ // Disable idle observation
user_pref("dom.idle-observers-api.enabled", false); user_pref("dom.idle-observers-api.enabled", false);
// ------------------------------------- // -------------------------------------
// Disable Intersection Observer API // Disable Intersection Observer API
@ -635,6 +629,7 @@ user_pref("javascript.options.asmjs", false);
// Disable Ion and baseline JIT to harden against JS exploits // Disable Ion and baseline JIT to harden against JS exploits
// user_pref("javascript.options.ion", false); // user_pref("javascript.options.ion", false);
// user_pref("javascript.options.baselinejit", false); // user_pref("javascript.options.baselinejit", false);
// user_pref("javascript.options.native_regexp", false);
// ------------------------------------- // -------------------------------------
// Disable WebAssembly // Disable WebAssembly
user_pref("javascript.options.wasm", false); user_pref("javascript.options.wasm", false);
@ -660,6 +655,7 @@ user_pref("dom.keyboardevent.code.enabled", false);
// ------------------------------------- // -------------------------------------
// Randomize Canvas // Randomize Canvas
user_pref("canvas.poisondata", true); user_pref("canvas.poisondata", true);
user_pref("canvas.poisondata.interval", 60);
// ------------------------------------- // -------------------------------------
// Disable Presentation API // Disable Presentation API
// user_pref("dom.presentation.enabled", false); // user_pref("dom.presentation.enabled", false);
@ -688,12 +684,12 @@ user_pref("browser.pagethumbnails.capturing_disabled", true); // [HIDDEN PREF]
user_pref("devtools.chrome.enabled", false); user_pref("devtools.chrome.enabled", false);
// ------------------------------------- // -------------------------------------
// Disable MathML (Mathematical Markup Language) // Disable MathML (Mathematical Markup Language)
// user_pref("mathml.disabled", true); user_pref("mathml.disabled", true);
// ------------------------------------- // -------------------------------------
// Disable middle mouse click opening links from clipboard // Disable middle mouse click opening links from clipboard
user_pref("middlemouse.contentLoadURL", false); user_pref("middlemouse.contentLoadURL", false);
// ------------------------------------- // -------------------------------------
// Remove special permissions for certain mozilla domains // Remove special permissions for certain domains
user_pref("permissions.manager.defaultsUrl", ""); user_pref("permissions.manager.defaultsUrl", "");
// ------------------------------------- // -------------------------------------
// Enforce Punycode for Internationalized Domain Names to eliminate possible spoofing // Enforce Punycode for Internationalized Domain Names to eliminate possible spoofing
@ -737,6 +733,11 @@ user_pref("browser.download.hide_plugins_without_extensions", false);
// Enforce CSP (Content Security Policy) // Enforce CSP (Content Security Policy)
user_pref("security.csp.enable", true); user_pref("security.csp.enable", true);
// ------------------------------------- // -------------------------------------
// Disable CSP reports
user_pref("security.csp.speccompliant", false);
user_pref("security.signed_content.CSP.default", "");
user_pref("security.csp.reporting.enabled", false);
// -------------------------------------
// Disable JAR from opening Unsafe File Types // Disable JAR from opening Unsafe File Types
user_pref("network.jar.open-unsafe-types", false); user_pref("network.jar.open-unsafe-types", false);
// ------------------------------------- // -------------------------------------
@ -843,15 +844,15 @@ user_pref("privacy.clearOnShutdown.siteSettings", true);
// ------------------------------------- // -------------------------------------
// Reset default items to clear with Ctrl-Shift-Del // Reset default items to clear with Ctrl-Shift-Del
user_pref("privacy.cpd.cache", true); user_pref("privacy.cpd.cache", true);
user_pref("privacy.cpd.connectivityData", false); user_pref("privacy.cpd.connectivityData", true);
user_pref("privacy.cpd.cookies", false); user_pref("privacy.cpd.cookies", true);
user_pref("privacy.cpd.downloads", true); user_pref("privacy.cpd.downloads", true);
user_pref("privacy.cpd.formdata", true); user_pref("privacy.cpd.formdata", true);
user_pref("privacy.cpd.history", true); user_pref("privacy.cpd.history", true);
user_pref("privacy.cpd.offlineApps", false); user_pref("privacy.cpd.offlineApps", true);
user_pref("privacy.cpd.passwords", false); user_pref("privacy.cpd.passwords", true);
user_pref("privacy.cpd.sessions", true); user_pref("privacy.cpd.sessions", true);
user_pref("privacy.cpd.siteSettings", false); user_pref("privacy.cpd.siteSettings", true);
// ------------------------------------- // -------------------------------------
// Reset default 'Time range to clear' for 'Clear Recent History' // Reset default 'Time range to clear' for 'Clear Recent History'
user_pref("privacy.sanitize.timeSpan", 0); user_pref("privacy.sanitize.timeSpan", 0);
@ -862,14 +863,15 @@ user_pref("dom.disable_beforeunload", true);
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// RFP ALTERNATIVES // RFP ALTERNATIVES
// >>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>
// Spoof (or limit?) number of CPU cores // Spoof number of CPU cores
// user_pref("dom.maxHardwareConcurrency", 4); user_pref("dom.maxHardwareConcurrency", 2);
// ------------------------------------- // -------------------------------------
// Disable resource/navigation timing // Disable resource/navigation timing
user_pref("dom.enable_resource_timing", false); user_pref("dom.enable_resource_timing", false);
user_pref("dom.enable_performance_navigation_timing", false);
// ------------------------------------- // -------------------------------------
// Disable timing attacks // Disable timing attacks
user_pref("dom.enable_performance", false); // user_pref("dom.enable_performance", false);
// ------------------------------------- // -------------------------------------
// Disable device sensor API // Disable device sensor API
user_pref("device.sensors.enabled", false); user_pref("device.sensors.enabled", false);
@ -901,17 +903,18 @@ user_pref("dom.w3c_pointer_events.enabled", false);
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// RFP ALTERNATIVES (NAVIGATOR / USER AGENT SPOOFING) // RFP ALTERNATIVES (NAVIGATOR / USER AGENT SPOOFING)
// >>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>
// Navigator DOM object overrides // Navigator DOM object overrides. Using Tor browser values.
user_pref("general.buildID.override", "20181001000000"); // Firefox ESR ID user_pref("general.buildID.override", "20181001000000"); // (HIDDEN PREF)
user_pref("browser.startup.homepage_override.buildID", "20181001000000"); // Firefox ESR ID user_pref("browser.startup.homepage_override.buildID", "20100101"); // (HIDDEN PREF)
user_pref("network.http.useragent.global_override", "Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Firefox/78.0"); // Firefox ESR Agent user_pref("network.http.useragent.global_override", "Mozilla/5.0 (X11; Linux x86_64; rv:115.0) Gecko/20100101 Firefox/115.0"); // (HIDDEN PREF)
user_pref("general.appname.override", "Netscape"); // (HIDDEN PREF)
user_pref("general.appversion.override", "5.0 (X11)"); // (HIDDEN PREF)
user_pref("general.platform.override", "Linux x86_64"); // (HIDDEN PREF)
user_pref("general.oscpu.override", "Linux x86_64"); // (HIDDEN PREF)
user_pref("general.useragent.updates.url", ""); user_pref("general.useragent.updates.url", "");
// ------------------------------------- // -------------------------------------
// Set a preferred language for spellchecking, overrides document/element languages // Set a preferred language for spellchecking, overrides document/element languages
user_pref("spellchecker.dictionary.override", ""); user_pref("spellchecker.dictionary.override", "");
// -------------------------------------
// Test/override the app.update.url
// user_pref("app.update.url.override", "");
// //
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// PERSONAL // PERSONAL
@ -921,7 +924,7 @@ user_pref("startup.homepage_welcome_url", "");
user_pref("startup.homepage_override_url", ""); user_pref("startup.homepage_override_url", "");
user_pref("services.sync.prefs.sync.browser.startup.homepage", "about:blank"); user_pref("services.sync.prefs.sync.browser.startup.homepage", "about:blank");
// ------------------------------------- // -------------------------------------
// Enable ctrl-tab previews ***/ // Enable ctrl-tab previews
user_pref("browser.ctrlTab.previews", true); user_pref("browser.ctrlTab.previews", true);
// ------------------------------------- // -------------------------------------
// Control urlbar click behaviour (with defaults) // Control urlbar click behaviour (with defaults)
@ -972,6 +975,17 @@ user_pref("dom.archivereader.enabled", false);
// ------------------------------------- // -------------------------------------
// Define whether animated lightweight themes (Personas) are allowed // Define whether animated lightweight themes (Personas) are allowed
user_pref("lightweightThemes.animation.enabled", false); user_pref("lightweightThemes.animation.enabled", false);
// -------------------------------------
// Disable summary/details html elements
// user_pref("dom.details_element.enabled", false);
// -------------------------------------
// Enable Hardware Acceleration
// user_pref("layers.acceleration.enabled", true);
// user_pref("layers.acceleration.force", true);
// -------------------------------------
// Disable CSS-based animations and transition effects
user_pref("layout.css.animation.enabled", false);
user_pref("layout.css.transition.enabled", false);
// //
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// WARNINGS // WARNINGS
@ -1014,14 +1028,11 @@ user_pref("general.smoothScroll", false);
// user_pref("browser.bookmarks.max_backups", 2); // user_pref("browser.bookmarks.max_backups", 2);
user_pref("network.manage-offline-status", false); user_pref("network.manage-offline-status", false);
// user_pref("xpinstall.signatures.required", false); // user_pref("xpinstall.signatures.required", false);
user_pref("javascript.options.shared_memory", false);
// ------------------------------------- // -------------------------------------
// Enable the <menuitem> html tag // Enable the <menuitem> html tag
// user_pref("dom.menuitem.enabled", true); // user_pref("dom.menuitem.enabled", true);
// ------------------------------------- // -------------------------------------
// Control the use of node.getRootNode // Test user.js in about:config
user_pref("dom.getRootNode.enabled", false);
// -------------------------------------
// SUCCESS
user_pref("_config.applied", true); user_pref("_config.applied", true);
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// //