diff --git a/user.js b/user.js index 7fed5d8..e68c553 100644 --- a/user.js +++ b/user.js @@ -374,6 +374,7 @@ user_pref("extensions.screenshots.upload-disabled", true); // [FF60+] user_pref("extensions.formautofill.addresses.enabled", false); // [FF55+] user_pref("extensions.formautofill.available", "off"); // [FF56+] user_pref("extensions.formautofill.creditCards.enabled", false); // [FF56+] +user_pref("extensions.formautofill.creditCards.available", false); // [FF57+] user_pref("extensions.formautofill.heuristics.enabled", false); // [FF55+] // ------------------------------------- // Disable Web Compatibility Reporter [FF56+] @@ -1286,6 +1287,11 @@ user_pref("browser.display.use_system_colors", false); // [DEFAULT: false] // for these will show/use their correct 3rd party origin // https://groups.google.com/forum/#!topic/mozilla.dev.platform/BdFOMAuCGW8/discussion */ user_pref("permissions.delegation.enabled", false); +// Enable "window.name" protection [FF82+] +// If a new page from another domain is loaded into a tab, then window.name is set to an empty string. The original +// string is restored if the tab reverts back to the original page. This change prevents some cross-site attacks ***/ +user_pref("privacy.window.name.update.enabled", true); +// ------------------------------------- // >>>>>>>>>>>>>>>>>>>>> // DOWNLOADS ***/ // >>>>>>>>>>>>>>>>>>>>> @@ -1386,6 +1392,9 @@ user_pref("browser.cache.offline.enable", false); // Disable Storage Access API [FF65+] // https://developer.mozilla.org/en-US/docs/Web/API/Storage_Access_API ***/ // user_pref("dom.storage_access.enabled", false); +// ------------------------------------- +// Enable Local Storage Next Generation (LSNG) [FF65+] ***/ +user_pref("dom.storage.next_gen", true); // >>>>>>>>>>>>>>>>>>>>> // SHUTDOWN // >>>>>>>>>>>>>>>>>>>>>