Update 'user.js'

 Synced with Desktop version
 Enabled (again) disk cache for SSL page - READ HERE
 (https://github.com/ghacksuserjs/ghacks-user.js/issues/792) Enforced fallback text encoding to match en-US
 Forced Encrypted Server Name Indication (eSNI) (for TLS 1.3 if TRR/DoH is enabled)
 Synced all the buildIDs with Tor's ones
ℹ️ Removed lots of [DESKTOP] tag to match the incoming Fenix
ℹ️ Reordered and renamed many prefs with better criteria
ℹ️ Changed repository name to mobile_user.js
ℹ️ Removed all the http:// links
ℹ️ Removed ESR60.x support
ℹ️ Moved some preferences from FF70+ into deprecated section (keeping them active for ESR68.x)
This commit is contained in:
quindecim 2019-10-23 04:18:18 -04:00
parent 8463500e26
commit 5bd6f3ea16
1 changed files with 122 additions and 369 deletions

491
user.js
View File

@ -2,7 +2,7 @@
/**********************************************************************************
* user.js | Fennec F-Droid *
* *
* https://git.nixnet.xyz/quindecim/fennec_user.js *
* https://git.nixnet.xyz/quindecim/mobile_user.js *
*********************************************************************************/
//
// Author : quindecim : https://git.nixnet.xyz/quindecim
@ -16,7 +16,7 @@
// OrangeManBad : https://git.nixnet.xyz/OrangeManBad/user.js
// CHEF-KOCH : https://github.com/CHEF-KOCH/FFCK/tree/master/user.js
//
// License : https://git.nixnet.xyz/quindecim/fennec_user.js/src/branch/master/LICENSE.txt
// License : https://git.nixnet.xyz/quindecim/mobile_user.js/src/branch/master/LICENSE.txt
//
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// Section : Startup
@ -40,6 +40,8 @@ user_pref("browser.newtabpage.activity-stream.feeds.section.topstories.options",
user_pref("browser.newtabpage.activity-stream.section.highlights.includePocket", false); // [DESKTOP]
user_pref("browser.newtabpage.activity-stream.showSponsored", false); // [DESKTOP]
user_pref("browser.newtabpage.activity-stream.feeds.discoverystreamfeed", false); // [DESKTOP]
user_pref("browser.newtabpage.activity-stream.pocketCta", ""); // [DESKTOP]
user_pref("browser.newtabpage.activity-stream.sectionOrder", ""); // [DESKTOP]
// -------------------------------------
// Pref : Set Homepage
user_pref("browser.startup.homepage", "about:blank"); // [DESKTOP]
@ -84,8 +86,6 @@ user_pref("browser.newtabpage.activity-stream.section.highlights.includeDownload
user_pref("browser.newtabpage.activity-stream.section.highlights.includeVisited", false); // [DESKTOP]
// -------------------------------------
// Pref : Disable new tab tile ads & preload
// http://www.thewindowsclub.com/disable-remove-ad-tiles-from-firefox
// http://forums.mozillazine.org/viewtopic.php?p=13876331#p13876331
// https://wiki.mozilla.org/Tiles/Technical_Documentation#Ping
// https://gecko.readthedocs.org/en/latest/browser/browser/DirectoryLinksProvider.html#browser-newtabpage-directory-source
// https://gecko.readthedocs.org/en/latest/browser/browser/DirectoryLinksProvider.html#browser-newtabpage-directory-ping
@ -140,7 +140,6 @@ user_pref("services.sync.prefs.sync.accessibility.browsewithcaret", false); // [
user_pref("services.sync.prefs.sync.accessibility.typeaheadfind", false); // [DESKTOP]
user_pref("services.sync.prefs.sync.accessibility.typeaheadfind.linksonly", false); // [DESKTOP]
user_pref("services.sync.prefs.sync.addons.ignoreUserEnabledChanges", true); // [DESKTOP]
user_pref("services.sync.prefs.sync.browser.contentblocking.enabled", false); // [DESKTOP]
user_pref("services.sync.prefs.sync.browser.ctrlTab.recentlyUsedOrder", false); // [DESKTOP]
user_pref("services.sync.prefs.sync.browser.download.useDownloadDir", false); // [DESKTOP]
user_pref("services.sync.prefs.sync.browser.formfill.enable", false); // [DESKTOP]
@ -212,9 +211,7 @@ user_pref("services.sync.prefs.sync.privacy.resistFingerprinting.reduceTimerPrec
user_pref("services.sync.prefs.sync.privacy.sanitize.sanitizeOnShutdown", false); // [DESKTOP]
user_pref("services.sync.prefs.sync.privacy.trackingprotection.enabled", false); // [DESKTOP]
user_pref("services.sync.prefs.sync.privacy.trackingprotection.pbmode.enabled", false); // [DESKTOP]
user_pref("services.sync.prefs.sync.privacy.trackingprotection.cryptomining.annotate.enabled", false); // [DESKTOP]
user_pref("services.sync.prefs.sync.privacy.trackingprotection.cryptomining.enabled", false); // [DESKTOP]
user_pref("services.sync.prefs.sync.privacy.trackingprotection.fingerprinting.annotate.enabled", false); // [DESKTOP]
user_pref("services.sync.prefs.sync.privacy.trackingprotection.fingerprinting.enabled", false); // [DESKTOP]
user_pref("services.sync.prefs.sync.media.autoplay.default", false); // [DESKTOP]
user_pref("services.sync.prefs.sync.security.OCSP.enabled", false); // [DESKTOP]
@ -304,7 +301,9 @@ user_pref("security.certerrors.recordEventTelemetry", false); // [DESKTOP]
user_pref("privacy.trackingprotection.origin_telemetry.enabled", false);
user_pref("telemetry.origin_telemetry_test_mode.enabled", false);
user_pref("toolkit.telemetry.ecosystemtelemetry.enabled", false); // [DESKTOP]
user_pref("security.protectionspopup.recordEventTelemetry", false); // [DESKTOP]
user_pref("toolkit.telemetry.geckoview.streaming", false);
user_pref("toolkit.telemetry.isGeckoViewMode", false);
// -------------------------------------
// Pref : Disable Telemetry Coverage
// https://blog.mozilla.org/data/2018/08/20/effectively-measuring-search-in-firefox/
@ -399,14 +398,26 @@ user_pref("extensions.abuseReport.url", "");
// https://groups.google.com/d/topic/mozilla.dev.platform/nyVkCx-_sFw/discussion
user_pref("loop.logDomains", false); // [DESKTOP]
// -------------------------------------
// Pref : Disable contentblocking reportBreakage
user_pref("browser.contentblocking.reportBreakage.enabled", false); // [DESKTOP]
// Pref : Disable contentblocking reports
user_pref("browser.contentblocking.reportBreakage.url", ""); // [DESKTOP]
user_pref("browser.contentblocking.rejecttrackers.reportBreakage.enabled", false); // [DESKTOP]
user_pref("browser.contentblocking.report.cookie.url", ""); // [DESKTOP]
user_pref("browser.contentblocking.report.cryptominer.url", ""); // [DESKTOP]
user_pref("browser.contentblocking.report.fingerprinter.url", ""); // [DESKTOP]
user_pref("browser.contentblocking.report.lockwise.enabled", false); // [DESKTOP]
user_pref("browser.contentblocking.report.lockwise.how_it_works.url", ""); // [DESKTOP]
user_pref("browser.contentblocking.report.lockwise.url", ""); // [DESKTOP]
user_pref("browser.contentblocking.report.manage_devices.url", ""); // [DESKTOP]
user_pref("browser.contentblocking.report.monitor.enabled", false); // [DESKTOP]
user_pref("browser.contentblocking.report.monitor.how_it_works.url", ""); // [DESKTOP]
user_pref("browser.contentblocking.report.monitor.sign_in_url", ""); // [DESKTOP]
user_pref("browser.contentblocking.report.proxy.enabled", false); // [DESKTOP]
user_pref("browser.contentblocking.report.proxy_extension.url", ""); // [DESKTOP]
user_pref("browser.contentblocking.report.social.url", ""); // [DESKTOP]
user_pref("browser.contentblocking.report.tracker.url", ""); // [DESKTOP]
// -------------------------------------
// Pref : Disable send content blocking log to about:protections
// https://bugzilla.mozilla.org/show_bug.cgi?id=1549832
user_pref("browser.contentblocking.database.enabled", false); // [DESKTOP]
user_pref("browser.contentblocking.database.enabled", false);
// -------------------------------------
// Pref : Onboarding tour disable because of included telemetry
// [NOTE] This setting is just in case it comeback
@ -432,7 +443,6 @@ user_pref("extensions.screenshots.upload-disabled", true); // [DESKTOP]
// -------------------------------------
// Pref : Disable spellchecker functionality by default
// 0=none, 1-multi-line, 2=multi-line & single-line
// http://kb.mozillazine.org/Layout.spellcheckDefault
// https://support.mozilla.org/en-US/kb/how-do-i-use-firefox-spell-checker
user_pref("layout.spellcheckDefault", 0); // [DESKTOP]
// -------------------------------------
@ -483,7 +493,9 @@ user_pref("accessibility.support.url", ""); // [DESKTOP]
user_pref("browser.dictionaries.download.url", ""); // [DESKTOP]
user_pref("browser.geolocation.warning.infoURL", ""); // [DESKTOP]
user_pref("browser.newtabpage.activity-stream.asrouter.providers.cfr", ""); // [DESKTOP]
user_pref("browser.newtabpage.activity-stream.asrouter.providers.cfr-fxa", ""); // [DESKTOP]
user_pref("browser.newtabpage.activity-stream.asrouter.providers.onboarding", ""); // [DESKTOP]
user_pref("browser.newtabpage.activity-stream.asrouter.providers.whats-new-panel", ""); // [DESKTOP]
user_pref("browser.newtabpage.activity-stream.fxaccounts.endpoint", ""); // [DESKTOP]
user_pref("browser.search.searchEnginesURL", ""); // [DESKTOP]
user_pref("extensions.getAddons.themes.browseURL", ""); // [DESKTOP]
@ -497,6 +509,9 @@ user_pref("startup.homepage_welcome_url", ""); // [DESKTOP]
user_pref("startup.homepage_welcome_url.additional", ""); // [DESKTOP]
user_pref("startup.homepage_override_url", ""); // [DESKTOP]
user_pref("browser.search.param.yahoo-fr", ""); // [DESKTOP]
user_pref("privacy.restrict3rdpartystorage.partitionedHosts", "");
user_pref("network.netlink.route.check.IPv4", "");
user_pref("network.netlink.route.check.IPv6", "");
// -------------------------------------
// Pref : Devtools cleanup
user_pref("devtools.devices.url", "");
@ -595,6 +610,8 @@ user_pref("identity.fxaccounts.migrateToDevEdition", false); // [DESKTOP]
user_pref("identity.fxaccounts.contextParam", ""); // [DESKTOP]
user_pref("identity.fxaccounts.commands.enabled", false); // [DESKTOP]
user_pref("identity.fxaccounts.autoconfig.uri", ""); // [DESKTOP]
user_pref("identity.fxaccounts.service.monitorLoginUrl", ""); // [DESKTOP]
user_pref("identity.fxaccounts.service.sendLoginUrl", ""); // [DESKTOP]
// -------------------------------------
// Pref : Disable snippets
user_pref("browser.snippets.enabled", false); // [FENNEC]
@ -606,10 +623,9 @@ user_pref("browser.snippets.syncPromo.enabled", false); // [FENNEC]
// -------------------------------------
// Pref : Disable Webextensions sync
user_pref("webextensions.storage.sync.enabled", false); // [DESKTOP]
user_pref("webextensions.storage.sync.serverURL", ""); // [DESKTOP]
user_pref("webextensions.storage.sync.serverURL", "");
// -------------------------------------
// Pref : Force Punycode for Internationalized Domain Names
// http://kb.mozillazine.org/Network.IDN_show_punycode
// https://www.xudongz.com/blog/2017/idn-phishing/
// https://wiki.mozilla.org/IDN_Display_Algorithm
// https://en.wikipedia.org/wiki/IDN_homograph_attack
@ -621,7 +637,6 @@ user_pref("network.IDN_show_punycode", true);
user_pref("browser.pagethumbnails.capturing_disabled", true); // [HIDDEN PREF]
// -------------------------------------
// Pref : Do not automatically send selection to clipboard on Linux and some UNIX-like platforms
// http://kb.mozillazine.org/Clipboard.autocopy
user_pref("clipboard.autocopy", false);
// -------------------------------------
// Pref : Disable "beacon" asynchronous HTTP transfers (used for analytics)
@ -646,7 +661,6 @@ user_pref("browser.search.geoSpecificDefaults", false);
user_pref("network.manage-offline-status", false); // [DEFAULT: true]
// -------------------------------------
// Pref : Set File URI Origin Policy
// http://kb.mozillazine.org/Security.fileuri.strict_origin_policy
user_pref("security.fileuri.strict_origin_policy", true);
// -------------------------------------
// Pref : Disable SVG in OpenType fonts
@ -655,8 +669,6 @@ user_pref("security.fileuri.strict_origin_policy", true);
user_pref("gfx.font_rendering.opentype_svg.enabled", false);
// -------------------------------------
// Pref : Ensure you have a security delay when installing add-ons (milliseconds)
// http://kb.mozillazine.org/Disable_extension_install_delay_-_Firefox
// http://www.squarefree.com/2004/07/01/race-conditions-in-security-dialogs/
user_pref("security.dialog_enable_delay", 700);
// -------------------------------------
// Pref : Disable WebIDE to prevent remote debugging and ADB extension download
@ -688,7 +700,7 @@ user_pref("browser.helperApps.deleteTempFileOnExit", true);
user_pref("devtools.chrome.enabled", false);
// -------------------------------------
// Pref : Disable MathML (Mathematical Markup Language)
// [TEST] http://browserspy.dk/mathml.php
// [TEST] https://browserleaks.com/features - look for Modernizr.mathml
// https://bugzilla.mozilla.org/1173199
user_pref("mathml.disabled", true);
// -------------------------------------
@ -699,7 +711,6 @@ user_pref("middlemouse.paste", false);
// -------------------------------------
// Pref : Disable middle mouse click opening links from clipboard
// https://trac.torproject.org/projects/tor/ticket/10089
// http://kb.mozillazine.org/Middlemouse.contentLoadURL
user_pref("middlemouse.contentLoadURL", false);
// -------------------------------------
// Pref : Limit HTTP redirects (this does not control redirects with HTML meta tags or JS)
@ -750,9 +761,6 @@ user_pref("security.csp.enable", true); // [DEFAULT: true]
user_pref("security.data_uri.block_toplevel_data_uri_navigations", true); // [DEFAULT: true]
// -------------------------------------
// Pref : Enable only whitelisted URL protocol handlers
// http://kb.mozillazine.org/Network.protocol-handler.external-default
// http://kb.mozillazine.org/Network.protocol-handler.warn-external-default
// http://kb.mozillazine.org/Network.protocol-handler.expose.%28protocol%29
// https://news.ycombinator.com/item?id=13047883
// https://bugzilla.mozilla.org/show_bug.cgi?id=167475
// https://github.com/pyllyukko/user.js/pull/285#issuecomment-298124005
@ -811,7 +819,6 @@ user_pref("extensions.pocket.site", ""); // [DESKTOP]
user_pref("browser.tabs.remote.allowLinkedWebInFileUriProcess", false); // [DESKTOP]
// -------------------------------------
// Pref : Disable Displaying Javascript in History URLs
// http://kb.mozillazine.org/Browser.urlbar.filter.javascript
user_pref("browser.urlbar.filter.javascript", true); // [DESKTOP]
// -------------------------------------
// Pref : Disable Firefox's built-in PDF reader
@ -854,7 +861,7 @@ user_pref("dom.ipc.processPriorityManager.enabled", true); // [DESKTOP] // [TEST
// Pref : Disable service workers
// Service workers essentially act as proxy servers that sit between web apps, and the browser and network, are event driven, and can control the web page/site it is associated with, intercepting and modifying navigation and resource requests, and caching resources.
// [NOTE] Service worker APIs are hidden (in Firefox) and cannot be used when in PB mode.
// [NOTE] Service workers only run over HTTPS. Service Workers have no DOM access.
// [NOTE] Service workers only run over HTTPS. Service workers have no DOM access.
user_pref("dom.serviceWorkers.enabled", false);
// -------------------------------------
// Pref : Disable push service
@ -863,6 +870,7 @@ user_pref("dom.push.enabled", false);
user_pref("dom.push.serverURL", "");
// -------------------------------------
// Pref : Disable web notifications
// [NOTE] Web Notifications can also use service workers and are behind a prompt
// https://developer.mozilla.org/docs/Web/API/Notifications_API
user_pref("notification.feature.enabled", false); // [FENNEC]
user_pref("dom.webnotifications.enabled", false);
@ -909,7 +917,6 @@ user_pref("dom.vibrator.enabled", false);
// user_pref("dom.allow_cut_copy", false);
// -------------------------------------
// Pref : Disable asm.js
// http://asmjs.org/
// https://www.mozilla.org/security/advisories/mfsa2015-29/
// https://www.mozilla.org/security/advisories/mfsa2015-50/
// https://www.mozilla.org/security/advisories/mfsa2017-01/#CVE-2017-5375
@ -949,13 +956,13 @@ user_pref("javascript.options.shared_memory", false); // [DEFAULT: false]
user_pref("dom.targetBlankNoOpener.enabled", true); // [DEFAULT: false]
// -------------------------------------
// Pref : Don't reveal build ID
// Value taken from Tor Browser
// Value taken from Tor Browser for Android
// https://bugzilla.mozilla.org/show_bug.cgi?id=583181
user_pref("general.buildID.override", "20100101");
user_pref("browser.startup.homepage_override.buildID", "20190307050101");
user_pref("media.gmp-manager.buildID", "20190307050101"); // [DESKTOP]
user_pref("extensions.lastAppBuildId", "20190307050101");
user_pref("browser.startup.homepage_override.buildID", "20100101");
user_pref("extensions.lastAppBuildId", "20190402010101");
user_pref("media.gmp-manager.buildID", "20190402010101");
user_pref("browser.sessionstore.upgradeBackup.latestBuildID", ""); // [DESKTOP]
user_pref("general.buildID.override", "20100101");
// -------------------------------------
// Pref : Disable raw TCP socket support (mozTCPSocket)
// https://trac.torproject.org/projects/tor/ticket/18863
@ -979,7 +986,6 @@ user_pref("media.peerconnection.identity.enabled", false);
user_pref("media.peerconnection.turn.disable", true);
user_pref("media.peerconnection.ice.tcp", false);
user_pref("media.peerconnection.video.enabled", false);
// user_pref("media.peerconnection.identity.timeout", 0);
// -------------------------------------
// Pref : Disable WebGL I/II
// [WARNING] WebGL introduce high fingerprinting... (webgl is direct hardware js)
@ -1021,7 +1027,7 @@ user_pref("dom.imagecapture.enabled", false); // [DEFAULT: false]
user_pref("gfx.offscreencanvas.enabled", false); // [DEFAULT: false]
// -------------------------------------
// Pref : Disable autoplay of HTML5 media
// 0=Allow Audio and Video, 1=Block Audio, 5=Block Audio and Video
// 0=Allow all, 1=Block non-muted media, 5=Block all
// [NOTE] You can set exceptions under site permissions
user_pref("media.autoplay.default", 5);
user_pref("media.autoplay.allow-muted", false);
@ -1039,11 +1045,9 @@ user_pref("media.block-autoplay-until-in-foreground", true); // [DEFAULT: true]
// Section : Location Bar / Search Bar / Suggestions / History / Forms
// >>>>>>>>>>>>>>>>>>>>
// Pref : Do not submit invalid URIs entered in the address bar to the default search engine
// http://kb.mozillazine.org/Keyword.enabled
user_pref("keyword.enabled", true); // [DEFAULT: true]
// -------------------------------------
// Pref : Don't try to guess domain names when entering an invalid domain name in URL bar
// http://www-archive.mozilla.org/docs/end-user/domain-guessing.html
user_pref("browser.fixup.alternate.enabled", false);
// -------------------------------------
// Pref : Don't trim HTTP off of URLs in the address bar
@ -1055,16 +1059,15 @@ user_pref("browser.urlbar.trimURLs", false);
// Minimum=1=currentpage, 2 is the recommended minimum as some pages use it as a means of referral (e.g. hotlinking), 4 or 6 or 10 may be more practical
user_pref("browser.sessionhistory.max_entries", 20); // [DEFAULT: 50]
// -------------------------------------
// Pref : Disable CSS querying page history - CSS history leak
// Pref : Disable coloring of visited links - CSS history leak
// [NOTE] This has NEVER been fully "resolved": in Mozilla/docs it is stated it's only in 'certain circumstances'
// [TEST] http://lcamtuf.coredump.cx/yahh/ (see github wiki APPENDIX C on how to use)
// [TEST] https://earthlng.github.io/testpages/visited_links.html (see github wiki APPENDIX C on how to use)
// https://dbaron.org/mozilla/visited-privacy
// https://bugzilla.mozilla.org/147777
// https://developer.mozilla.org/docs/Web/CSS/Privacy_and_the_:visited_selector
user_pref("layout.css.visited_links_enabled", false);
// -------------------------------------
// Pref : Disable search suggestions in the search bar
// http://kb.mozillazine.org/Browser.search.suggest.enabled
user_pref("browser.search.suggest.enabled", false); // [DESKTOP]
// -------------------------------------
// Pref : Disable "Show search suggestions in location bar results"
@ -1211,28 +1214,28 @@ user_pref("security.certerror.hideAddException", true); // [DESKTOP]
// In case of a crash, we don't want to prompt for a safe-mode browser that has extensions disabled.
// https://support.mozilla.org/en-US/questions/951221#answer-410562
user_pref("toolkit.startup.max_resumed_crashes", -1); // [DESKTOP]
// -------------------------------------
// Pref : Force Encrypted Server Name Indication (eSNI) for TLS 1.3 if TRR/DoH is enabled
// [NOTE] I don't encourage DoH (but it is a useful and valid mechanism for those who need it)
user_pref("network.security.esni.enabled", true);
//
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// Section : Block Implicit Outbound
// >>>>>>>>>>>>>>>>>>>>
// Pref : Disable prefetching of <link rel="next"> URLs
// Link prefetching is when a webpage hints to the browser that certain pages are likely to be visited, so the browser downloads them immediately so they can be displayed immediately when the user requests it.
// http://kb.mozillazine.org/Network.prefetch-next
// https://developer.mozilla.org/en-US/docs/Web/HTTP/Link_prefetching_FAQ#Is_there_a_preference_to_disable_link_prefetching.3F
user_pref("network.prefetch-next", false);
// -------------------------------------
// Pref : Disable DNS prefetching
// http://kb.mozillazine.org/Network.dns.disablePrefetch
// https://developer.mozilla.org/en-US/docs/Web/HTTP/Controlling_DNS_prefetching
user_pref("network.dns.disablePrefetch", true);
user_pref("network.dns.disablePrefetchFromHTTPS", true); // [HIDDEN PREF]
// -------------------------------------
// Pref : Disable pinging URIs specified in HTML <a> ping= attributes
// http://kb.mozillazine.org/Browser.send_pings
user_pref("browser.send_pings", false);
// -------------------------------------
// Pref : When browser pings are enabled, only allow pinging the same host as the origin page
// http://kb.mozillazine.org/Browser.send_pings.require_same_host
user_pref("browser.send_pings.require_same_host", true);
// -------------------------------------
// Pref : Disable speculative pre-connections
@ -1267,7 +1270,6 @@ user_pref("network.dns.disableIPv6", true);
// -------------------------------------
// Pref : Enforce the proxy server to do any DNS lookups when using SOCKS
// e.g. in Tor, this stops your local DNS server from knowing your Tor destination as a remote Tor node will handle the DNS request
// http://kb.mozillazine.org/Network.proxy.socks_remote_dns
// https://trac.torproject.org/projects/tor/wiki/doc/TorifyHOWTO/WebBrowsers
user_pref("network.proxy.socks_remote_dns", true);
// -------------------------------------
@ -1277,7 +1279,7 @@ user_pref("network.proxy.autoconfig_url.include_path", false); // [DEFAULT: fals
// -------------------------------------
// Pref : Disable (or setup) DNS-over-HTTPS (DoH)
// TRR = Trusted Recursive Resolver
// .mode: 0=off, 1=race, 2=TRR first, 3=TRR only, 4=race for stats, but always use native result
// 0=off by default, 1=race, 2=TRR first, 3=TRR only, 4=race for stats, but always use native result, 5=explicitly off
// [WARNING] DoH bypasses hosts and gives info to yet another party (e.g. Cloudflare)
// [BUG] This seem to disable socks_remote_dns ?! need to check with wireshark
// If true, just settings urls to null should be enough to disable without impacting socks_remote_dns.
@ -1321,7 +1323,6 @@ user_pref("security.ssl.require_safe_negotiation", true);
// Pref : Control TLS versions with min and max
// 1=TLS 1.0, 2=TLS 1.1, 3=TLS 1.2, 4=TLS 1.3
// [NOTE] Jul-2017: Telemetry indicates approx 2% of TLS web traffic uses 1.0 or 1.1
// http://kb.mozillazine.org/Security.tls.version.*
// https://www.ssl.com/how-to/turn-off-ssl-3-0-and-tls-1-0-in-your-browser/
// archived: https://archive.is/hY2Mm
user_pref("security.tls.version.min", 3);
@ -1411,7 +1412,7 @@ user_pref("security.mixed_content.block_object_subrequest", true);
// -------------------------------------
// Pref : Disable 3DES (effective key size < 128)
// https://en.wikipedia.org/wiki/3des#Security
// http://en.citizendium.org/wiki/Meet-in-the-middle_attack
// https://en.wikipedia.org/wiki/Meet-in-the-middle_attack
// https://www-archive.mozilla.org/projects/security/pki/nss/ssl/fips-ssl-ciphersuites.html
user_pref("security.ssl3.rsa_des_ede3_sha", false);
user_pref("security.ssl3.dhe_dss_des_ede3_sha", false); // [DESKTOP]
@ -1505,7 +1506,6 @@ user_pref("security.ssl.treat_unsafe_negotiation_as_broken", true);
// -------------------------------------
// Pref : Control "Add Security Exception" dialog on SSL warnings
// 0=do neither 1=pre-populate url 2=pre-populate url + pre-fetch cert (default)
// http://kb.mozillazine.org/Browser.ssl_override_behavior
// https://github.com/pyllyukko/user.js/issues/210
user_pref("browser.ssl_override_behavior", 1);
// -------------------------------------
@ -1556,8 +1556,13 @@ user_pref("privacy.firstparty.isolate.restrict_opener_access", true);
// https://lockwise.firefox.com/
// https://support.mozilla.org/en-US/kb/firefox-lockwise-managing-account-data
user_pref("signon.management.page.enabled", false); // [DESKTOP]
user_pref("signon.management.page.faqURL", ""); // [DESKTOP]
user_pref("signon.management.page.feedbackURL", ""); // [DESKTOP]
user_pref("signon.management.overrideURI", ""); // [DESKTOP]
user_pref("signon.management.page.breach-alerts.enabled", false); // [DESKTOP]
user_pref("signon.management.page.breachAlertUrl", ""); // [DESKTOP]
user_pref("signon.management.page.hideMobileFooter", true); // [DESKTOP]
user_pref("signon.management.page.mobileAndroidURL", ""); // [DESKTOP]
user_pref("signon.management.page.mobileAppleURL", ""); // [DESKTOP]
// -------------------------------------
// Pref : Disable autofilling saved passwords on HTTP pages and show warning
// https://bugzilla.mozilla.org/buglist.cgi?bug_id=1217152,1319119
user_pref("signon.autofillForms.http", false);
@ -1586,9 +1591,8 @@ user_pref("security.ask_for_password", 2);
user_pref("security.password_lifetime", 1); // [DEFAULT: 30]
// -------------------------------------
// Pref : Disable auto-filling username & password form fields
// Can leak in cross-site forms AND be spoofed.
// [NOTE] Password will still be auto-filled after a user name is manually entered
// http://kb.mozillazine.org/Signon.autofillForms
// Can leak in cross-site forms and be spoofed
// NOTE] Username & password is still available when you enter the field
user_pref("signon.autofillForms", false);
user_pref("signon.autofillForms.autocompleteOff", true);
// -------------------------------------
@ -1622,7 +1626,6 @@ user_pref("signon.generation.enabled", false);
// Section : Window Meddling & Leaks / Popups
// >>>>>>>>>>>>>>>>>>>>
// Pref : Prevent websites from disabling new window features
// http://kb.mozillazine.org/Prevent_websites_from_disabling_new_window_features
user_pref("dom.disable_window_open_feature.close", true); // [DEFAULT: false]
user_pref("dom.disable_window_open_feature.location", true); // [DEFAULT: false]
user_pref("dom.disable_window_open_feature.menubar", true); // [DEFAULT: false]
@ -1655,11 +1658,9 @@ user_pref("privacy.popups.showBrowserMessage", true); // [DEFAULT: true]
// -------------------------------------
// Pref : Set max popups from a single non-click event
// [NOTE] Non-click events should never spawn a popup?
// http://kb.mozillazine.org/Dom.popup_maximum
user_pref("dom.popup_maximum", 0); // [DEFAULT: 20]
// -------------------------------------
// Pref : Limit events that can cause a popup
// http://kb.mozillazine.org/Dom.popup_allowed_events
user_pref("dom.popup_allowed_events", "click dblclick"); // [DEFAULT: "change click dblclick auxclick mouseup pointerup notificationclick reset submit touchend"]
//
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
@ -1677,12 +1678,7 @@ user_pref("browser.cache.disk.enable", false);
user_pref("browser.cache.disk.smart_size.enabled", false);
user_pref("browser.cache.disk.smart_size.first_run", false);
// -------------------------------------
// Pref : Disable disk cache for SSL pages
// http://kb.mozillazine.org/Browser.cache.disk_cache_ssl
user_pref("browser.cache.disk_cache_ssl", false);
// -------------------------------------
// Pref : Disable memory cache
// [NOTE] Not recommended due to performance issues
// user_pref("browser.cache.memory.enable", false);
// user_pref("browser.cache.memory.capacity", 0);
// -------------------------------------
@ -1690,7 +1686,6 @@ user_pref("browser.cache.disk_cache_ssl", false);
// To improve performance when pressing back/forward Firefox stores visited pages so they don't have to be re-parsed. This is not the same as memory cache.
// 0=none, -1=auto (that's minus 1).
// [WARNING] Not recommended unless you know what you're doing
// http://kb.mozillazine.org/Browser.sessionhistory.max_total_viewers
// user_pref("browser.sessionhistory.max_total_viewers", 0);
// -------------------------------------
// Pref : Exclude "Undo Closed Tabs" in Session Restore
@ -1740,7 +1735,7 @@ user_pref("security.insecure_password.ui.enabled", true); // [DESKTOP]
user_pref("toolkit.winRegisterApplicationRestart", false); // [WINDOWS] // [DESKTOP]
//
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// Section : Geolocation
// Section : Geolocation / Language / Locale
// >>>>>>>>>>>>>>>>>>>>
// Pref : Disable geolocation
user_pref("geo.enabled", false);
@ -1753,13 +1748,9 @@ user_pref("browser.search.geoip.url", "");
user_pref("browser.search.geoSpecificDefaults.url", "");
user_pref("browser.snippets.geoUrl", "");
// -------------------------------------
// Pref : Set Accept-Language HTTP header
// Pref : Set preferred language for displaying web pages
user_pref("intl.accept_languages", "en-US, en");
// -------------------------------------
// Pref : Use APP locale over OS locale in regional preferences
// https://bugzilla.mozilla.org/buglist.cgi?bug_id=1379420,1364789
user_pref("intl.regional_prefs.use_os_locales", false);
// -------------------------------------
// Pref : Enforce US English locale regardless of the system locale
// https://bugzilla.mozilla.org/867501
user_pref("javascript.use_us_english_locale", true); // [HIDDEN PREF]
@ -1772,6 +1763,12 @@ user_pref("geo.wifi.uri", ""); // [DESKTOP]
// -------------------------------------
// Pref : Disable logging geolocation to the console
user_pref("geo.wifi.logging.enabled", false); // [HIDDEN PREF] // [DESKTOP]
// -------------------------------------
// Pref : Enforce fallback text encoding to match en-US
// When the content or server doesn't declare a charset the browser will fallback to the "Current locale" based on your application language
// [TEST] https://hsivonen.com/test/moz/check-charset.htm
// https://trac.torproject.org/projects/tor/ticket/20025
user_pref("intl.charset.fallback.override", "windows-1252");
//
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// Section : Fonts
@ -1803,7 +1800,6 @@ user_pref("font.name.monospace.x-western", "Lucida Console"); // [DEFAULT: Couri
user_pref("layout.css.font-loading-api.enabled", false);
// -------------------------------------
// Pref : Disable special underline handling for a few fonts which you will probably never use
// http://kb.mozillazine.org/Font.blacklist.underline_offset
// https://github.com/ghacksuserjs/ghacks-user.js/issues/744
// user_pref("font.blacklist.underline_offset", "");
// -------------------------------------
@ -1887,8 +1883,6 @@ user_pref("shumway.disabled", true); // [DESKTOP]
// https://wiki.mozilla.org/Security/Safe_Browsing
// https://wiki.mozilla.org/Blocklisting
// https://blocked.cdn.mozilla.net/
// http://kb.mozillazine.org/Extensions.blocklist.enabled
// http://kb.mozillazine.org/Extensions.blocklist.url
// https://blog.mozilla.org/security/2015/03/03/revoking-intermediate-certificates-introducing-onecrl/
user_pref("services.blocklist.update_enabled", false); // [DESKTOP]
user_pref("services.blocklist.plugins.signer", "");
@ -2001,7 +1995,6 @@ user_pref("privacy.trackingprotection.lower_network_priority", false);
// Pref : Disable passive Tracking Protection in all windows
user_pref("privacy.trackingprotection.enabled", false);
user_pref("privacy.trackingprotection.pbmode.enabled", false);
user_pref("privacy.trackingprotection.introURL", ""); // [DESKTOP]
// -------------------------------------
// Pref : Disable cryptomining trackingprotection
// [NOTE] uBlock is far superior and you can customize the lists as you wish
@ -2010,10 +2003,11 @@ user_pref("privacy.trackingprotection.introURL", ""); // [DESKTOP]
// https://github.com/theel0ja/firefox-recommendations/blob/master/README.md
// https://github.com/hoshsadiq/adblock-nocoin-list
user_pref("browser.contentblocking.cryptomining.preferences.ui.enabled", false); // [DESKTOP]
user_pref("privacy.trackingprotection.cryptomining.annotate.enabled", false);
user_pref("privacy.trackingprotection.cryptomining.enabled", false);
user_pref("urlclassifier.features.cryptomining.blacklistTables", "");
user_pref("urlclassifier.features.cryptomining.whitelistTables", "");
user_pref("urlclassifier.features.cryptomining.annotate.whitelistTables", "");
user_pref("urlclassifier.features.cryptomining.annotate.blacklistTables", "");
// -------------------------------------
// Pref : Disable fingerprinting trackingprotection
// [NOTE] uBlock is far superior and you can customize the lists as you wish
@ -2021,24 +2015,33 @@ user_pref("urlclassifier.features.cryptomining.whitelistTables", "");
// https://github.com/AdroitAdorKhan/EnergizedProtection
// https://github.com/theel0ja/firefox-recommendations/blob/master/README.md
user_pref("browser.contentblocking.fingerprinting.preferences.ui.enabled", false); // [DESKTOP]
user_pref("privacy.trackingprotection.fingerprinting.annotate.enabled", false);
user_pref("privacy.trackingprotection.fingerprinting.enabled", false);
user_pref("urlclassifier.features.fingerprinting.blacklistTables", "");
user_pref("urlclassifier.features.fingerprinting.whitelistTables", "");
user_pref("urlclassifier.features.fingerprinting.annotate.whitelistTables", "");
user_pref("urlclassifier.features.fingerprinting.annotate.blacklistTables", "");
// -------------------------------------
// Pref : Disable social trackingprotection
// [NOTE] uBlock is far superior and you can customize the lists as you wish
// https://m.wiki.mozilla.org/Security/Tracking_protection#Lists
// https://github.com/AdroitAdorKhan/EnergizedProtection
// https://github.com/theel0ja/firefox-recommendations/blob/master/README.md
user_pref("privacy.trackingprotection.socialtracking.annotate.enabled", false);
user_pref("privacy.trackingprotection.socialtracking.enabled", false);
user_pref("urlclassifier.features.socialtracking.blacklistTables", "");
user_pref("urlclassifier.features.socialtracking.whitelistTables", "");
user_pref("urlclassifier.features.socialtracking.annotate.whitelistTables", "");
user_pref("urlclassifier.features.socialtracking.annotate.blacklistTables", "");
user_pref("privacy.socialtracking.block_cookies.enabled", false); // [DESKTOP]
user_pref("privacy.socialtracking.notification.enabled", false); // [DESKTOP]
// -------------------------------------
// Pref : Disable PingCentre telemetry (used in several System Add-ons)
// Currently blocked by 'datareporting.healthreport.uploadEnabled'
user_pref("browser.ping-centre.telemetry", false); // [DESKTOP]
user_pref("browser.ping-centre.production.endpoint", ""); // [DESKTOP]
user_pref("browser.ping-centre.staging.endpoint", ""); // [DESKTOP]
// -------------------------------------
// Pref : Disable all the trackingprotection blocked elements by default
user_pref("browser.contentblocking.features.strict", ""); // [DESKTOP]
//
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// Section : System add-ons / Experiments
@ -2084,14 +2087,12 @@ user_pref("extensions.formautofill.heuristics.enabled", false); // [DESKTOP]
// -------------------------------------
// Pref : Disable 3rd-party cookies and site-data
// 0=(Allow) cookies and site data, 1=(Block) All third-party cookies, 2=(Block) All cookies, 3=(Block) Cookies from unvisited sites, 4=(Block) Third-party trackers
// [NOTE] Value 4 is tied to the Tracking Protection lists
// [NOTE] Can breaks payment gateways
user_pref("network.cookie.cookieBehavior", 1);
// -------------------------------------
// Pref : Set third-party cookies (i.e ALL) (if enabled) to session-only and set third-party non-secure (i.e HTTP) cookies to session-only
// [NOTE] .sessionOnly overrides .nonsecureSessionOnly except when .sessionOnly=false and .nonsecureSessionOnly=true. This allows you to keep HTTPS cookies, but session-only HTTP ones
// https://feeding.cloud.geek.nz/posts/tweaking-cookies-for-privacy-in-firefox/
// http://kb.mozillazine.org/Network.cookie.thirdparty.sessionOnly
user_pref("network.cookie.thirdparty.sessionOnly", true);
user_pref("network.cookie.thirdparty.nonsecureSessionOnly", true);
// -------------------------------------
@ -2114,7 +2115,6 @@ user_pref("network.cookie.same-site.enabled", true); // [DEFAULT: true]
// https://developer.mozilla.org/en-US/docs/IndexedDB
// https://en.wikipedia.org/wiki/Indexed_Database_API
// https://wiki.mozilla.org/Security/Reviews/Firefox4/IndexedDB_Security_Review
// http://forums.mozillazine.org/viewtopic.php?p=13842047
// https://github.com/pyllyukko/user.js/issues/8
// https://github.com/ghacksuserjs/ghacks-user.js/issues/80#issuecomment-294178018
// https://superuser.com/questions/1250944/how-can-this-website-reidentify-me-even-after-deleting-all-of-my-browsers-histo
@ -2122,7 +2122,6 @@ user_pref("network.cookie.same-site.enabled", true); // [DEFAULT: true]
// user_pref("dom.indexedDB.enabled", false); // [DEFAULT: true]
// -------------------------------------
// Pref : Do not download URLs for the offline cache
// http://kb.mozillazine.org/Browser.cache.offline.enable
user_pref("browser.cache.offline.enable", false);
user_pref("browser.cache.offline.capacity", 0);
// -------------------------------------
@ -2131,7 +2130,6 @@ user_pref("browser.cache.offline.capacity", 0);
user_pref("browser.cache.offline.insecure.enable", false);
// -------------------------------------
// Pref : Display a notification bar when websites offer data for offline use
// http://kb.mozillazine.org/Browser.offline-apps.notify
user_pref("browser.offline-apps.notify", false); // [DEFAULT: true]
// -------------------------------------
// Pref : Disable service workers cache and cache storage
@ -2288,6 +2286,7 @@ user_pref("device.sensors.ambientLight.enabled", false); // [DEFAULT: false]
user_pref("device.sensors.motion.enabled", false); // [DEFAULT: true]
user_pref("device.sensors.orientation.enabled", false); // [DEFAULT: true]
user_pref("device.sensors.proximity.enabled", false); // [DEFAULT: false]
user_pref("device.sensors.test.events", false); // [DEFAULT: false]
// -------------------------------------
// Pref : Disable gamepad API - USB device ID enumeration
// Optional protection depending on your connected devices
@ -2399,9 +2398,6 @@ user_pref("dom.network.enabled", false); // [DESKTOP]
// Pref : Disable third-party cookie UI
// user_pref("browser.contentblocking.rejecttrackers.ui.enabled", false); // [DESKTOP]
// -------------------------------------
// Pref : Disable tracking protection UI list editing under url bar popup
// user_pref("browser.contentblocking.trackingprotection.control-center.ui.enabled", false); // [DESKTOP]
// -------------------------------------
// Pref : Disable tracking protection UI list editing under preferences
// user_pref("browser.contentblocking.trackingprotection.ui.enabled", false); // [DESKTOP]
// -------------------------------------
@ -2420,13 +2416,12 @@ user_pref("dom.network.enabled", false); // [DESKTOP]
user_pref("browser.ui.zoom.force-user-scalable", true); // [DEFAULT: false]
// -------------------------------------
// Pref : Disable inline autocomplete in URL bar
// http://kb.mozillazine.org/Inline_autocomplete
// https://support.mozilla.org/en-US/kb/address-bar-autocomplete-firefox#w_url-autocomplete
user_pref("browser.urlbar.autoFill", false); // [DESKTOP]
user_pref("browser.urlbar.autoFill.typed", false); // [DESKTOP]
// -------------------------------------
// Pref : Set bookmarks backups
// To compensate for the case of bookmarks being lost due to a system crash.
// http://kb.mozillazine.org/Browser.bookmarks.max_backups
user_pref("browser.bookmarks.max_backups", 0); // [DEFAULT: 5]
// -------------------------------------
// Pref : Set home provider syncing only on wifi
@ -2463,288 +2458,6 @@ user_pref("browser.urlbar.doubleClickSelectsAll", false); // [DESKTOP]
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// Section : Deprecated / Removed / Legacy / Renamed
// >>>>>>>>>>>>>>>>>>>>
// ESR60.x still uses all the following prefs
// -------------------------------------
// FF52+
// -------------------------------------
// Pref : Disable telephony API
// https://wiki.mozilla.org/WebAPI/Security/WebTelephony
user_pref("dom.telephony.enabled", false);
// -------------------------------------
// Pref : Disable Adobe Primetime
user_pref("media.gmp-eme-adobe.enabled", false);
user_pref("media.gmp-eme-adobe.visible", false);
// -------------------------------------
// FF53+
// -------------------------------------
// Pref : Disable RC4
// https://bugzilla.mozilla.org/show_bug.cgi?id=1130670
// https://hg.mozilla.org/mozilla-central/rev/1f7832017dbb
user_pref("security.tls.unrestricted_rc4_fallback", false);
// -------------------------------------
// FF54+
// -------------------------------------
// Pref : Disable Archive API
// https://bugzilla.mozilla.org/show_bug.cgi?id=1342361
// https://hg.mozilla.org/mozilla-central/rev/fe12200aa33a
user_pref("dom.archivereader.enabled", false);
// -------------------------------------
// FF55+
// -------------------------------------
// Pref : Disable Heartbeat (Mozilla user rating telemetry)
// https://bugzilla.mozilla.org/show_bug.cgi?id=1361578
// https://hg.mozilla.org/mozilla-central/rev/5a8f2dcbeac0
user_pref("browser.selfsupport.enabled", false);
user_pref("browser.selfsupport.url", "");
// -------------------------------------
// FF57+
// -------------------------------------
// Pref : Disable SSDP (Simple Service Discovery Protocol)
// https://bugzilla.mozilla.org/show_bug.cgi?id=1393582
// https://hg.mozilla.org/mozilla-central/rev/bf7793529f82
user_pref("browser.casting.enabled", false);
// -------------------------------------
// Pref : Disable WebIDE to prevent remote debugging and ADB extension download
// https://bugzilla.mozilla.org/show_bug.cgi?id=1393497
// https://hg.mozilla.org/mozilla-central/rev/9815926c3bc1
user_pref("devtools.webide.autoinstallFxdtAdapters", false);
// -------------------------------------
// Pref : Disable social integration with FF
// https://bugzilla.mozilla.org/show_bug.cgi?id=1406193
// https://hg.mozilla.org/mozilla-central/rev/125a67a1750f
user_pref("social.directories", "");
user_pref("social.remote-install.enabled", false);
user_pref("social.whitelist", "");
// -------------------------------------
// FF58+
// -------------------------------------
// Pref : Disable backlogged Crash Reports
// https://bugzilla.mozilla.org/show_bug.cgi?id=1424373
// https://hg.mozilla.org/releases/mozilla-esr52/rev/292a2d5bcb1f4a07e875b0b60a925f31992e898f
// https://hg.mozilla.org/releases/mozilla-esr52/rev/19ea736e7e3d20555ee6633b9d7803c1225979e1
user_pref("browser.crashReports.unsubmittedCheck.autoSubmit", false);
// -------------------------------------
// FF59+
// -------------------------------------
// Pref : Devtools cleanup
// https://bugzilla.mozilla.org/show_bug.cgi?id=1416703
// https://hg.mozilla.org/mozilla-central/rev/cf62d0c0ce5a
user_pref("devtools.telemetry.supported_performance_marks", "");
// -------------------------------------
// Pref : Disable face detection
// https://bugzilla.mozilla.org/show_bug.cgi?id=1416703
// https://hg.mozilla.org/integration/mozilla-inbound/rev/27b171e4cd2d1d51e95df1bfb6fc567500b6284d
user_pref("camera.control.face_detection.enabled", false);
// -------------------------------------
// Pref : Disable FlyWeb (discovery of LAN/proximity IoT devices that expose a Web interface)
// https://bugzilla.mozilla.org/show_bug.cgi?id=1374574
// https://hg.mozilla.org/mozilla-central/rev/07ca590ac669
// https://hg.mozilla.org/mozilla-central/rev/ff75ef015293
// https://hg.mozilla.org/mozilla-central/rev/5a8a3d887e19
user_pref("dom.flyweb.enabled", false);
// -------------------------------------
// Pref : Disable Scripting of Plugins by JavaScript
// https://bugzilla.mozilla.org/show_bug.cgi?id=1416703
// https://hg.mozilla.org/mozilla-central/rev/eb9c29a3067d
user_pref("security.xpconnect.plugin.unrestricted", false);
// -------------------------------------
// FF60+
// -------------------------------------
// Pref : Disable Activity Stream
// https://bugzilla.mozilla.org/show_bug.cgi?id=1433324
// https://hg.mozilla.org/mozilla-central/rev/f3069763fab6
// https://hg.mozilla.org/mozilla-central/rev/088e727e5cf7
user_pref("browser.newtabpage.activity-stream.enabled", false);
// -------------------------------------
// Pref : Disable new tab tile ads & preload
// https://bugzilla.mozilla.org/show_bug.cgi?id=1433324
// https://bugzilla.mozilla.org/show_bug.cgi?id=1433133
// https://bugzilla.mozilla.org/show_bug.cgi?id=1370930
// https://hg.mozilla.org/mozilla-central/rev/ad6392e366d4
user_pref("browser.newtabpage.activity-stream.aboutHome.enabled", false);
user_pref("browser.newtabpage.directory.source", "data:text/plain,{}");
user_pref("browser.newtabpage.enhanced", false);
// -------------------------------------
// Pref : Disable Studies and SHIELD
// https://bugzilla.mozilla.org/show_bug.cgi?id=1436113
// https://hg.mozilla.org/mozilla-central/rev/94f5c92fc711
user_pref("extensions.shield-recipe-client.enabled", false);
user_pref("extensions.shield-recipe-client.api_url", "");
// -------------------------------------
// Pref : Disable Firefox Accounts and Sync
// https://bugzilla.mozilla.org/show_bug.cgi?id=1427674
// https://hg.mozilla.org/mozilla-central/rev/b014201f939f
user_pref("identity.fxaccounts.remote.webchannel.uri", "https://0.0.0.0"); // [FENNEC - BUG] If left blank, it causes faded "Settings" on some devices
// -------------------------------------
// FF61+
// -------------------------------------
// Pref : Disable Experiments
// https://bugzilla.mozilla.org/show_bug.cgi?id=1450801
// https://hg.mozilla.org/mozilla-central/rev/b81ac6c5c207
// https://hg.mozilla.org/mozilla-central/rev/9e68f15bcb09
// https://bugzilla.mozilla.org/show_bug.cgi?id=1420908
// https://hg.mozilla.org/mozilla-central/rev/98389f291fe6
// https://hg.mozilla.org/mozilla-central/rev/8a77da7f1488
user_pref("experiments.enabled", false);
user_pref("experiments.manifest.uri", "");
user_pref("experiments.supported", false);
user_pref("experiments.activeExperiment", false);
// -------------------------------------
// Pref : Disable remote JAR files being opened, regardless of content type
// https://bugzilla.mozilla.org/show_bug.cgi?id=1427726
// https://hg.mozilla.org/integration/autoland/rev/a9185d7a30d8
user_pref("network.jar.block-remote-files", true);
// -------------------------------------
// Pref : Disable JAR from opening Unsafe File Types
// https://bugzilla.mozilla.org/show_bug.cgi?id=1427726
// https://hg.mozilla.org/integration/autoland/rev/064ca3f3d42b
user_pref("network.jar.open-unsafe-types", false);
// -------------------------------------
// Pref : Disable Activity Stream (others)
user_pref("browser.newtabpage.activity-stream.showTopSites", false);
// -------------------------------------
// Pref : Block unwanted connections
user_pref("toolkit.telemetry.infoURL", "");
// -------------------------------------
// FF62+
// -------------------------------------
// Pref : Disable Java plugin
// 0=deactivated, 1=ask, 2=enabled
// https://bugzilla.mozilla.org/1461243
user_pref("plugin.state.java", 0);
// -------------------------------------
// FF63+
// -------------------------------------
// Pref : DisableGeoIP-based search results
// [NOTE] May not be hidden if Firefox has changed your settings due to your locale
// https://bugzilla.mozilla.org/1462015
// https://hg.mozilla.org/mozilla-central/rev/0866ebeda09d
user_pref("browser.search.countryCode", "US"); // [HIDDEN PREF]
// -------------------------------------
// Pref : Disable app from auto-update
user_pref("app.update.enabled", false);
// -------------------------------------
// Pref : Disable "Savant" Shield study
// https://bugzilla.mozilla.org/1457226
user_pref("shield.savant.enabled", false);
// -------------------------------------
// Pref : Disable favicons in tabs and new bookmarks
// Merged into "browser.chrome.site_icons"
// https://bugzilla.mozilla.org/1453751
user_pref("browser.chrome.favicons", false);
// -------------------------------------
// Pref : Disable autoplay of HTML5 media
// Replaced by "media.autoplay.default"
// https://bugzilla.mozilla.org/1470082
user_pref("media.autoplay.enabled", false);
// -------------------------------------
// Pref: Set cookie lifetime in days
// https://bugzilla.mozilla.org/1457170
// user_pref("network.cookie.lifetime.days", 90); // [DEFAULT: 90]
// -------------------------------------
// Pref: Enable "Ctrl+Tab cycles through tabs in recently used order"
// Rreplaced by "browser.ctrlTab.recentlyUsedOrder"
// https://bugzilla.mozilla.org/1473595
user_pref("browser.ctrlTab.previews", true);
// -------------------------------------
// Pref : Disable In-Browser Feed Handling
// https://bugzilla.mozilla.org/show_bug.cgi?id=1477670
// https://hg.mozilla.org/mozilla-central/rev/5b714ea69f17
// https://hg.mozilla.org/mozilla-central/rev/04ce1d287d58
// https://hg.mozilla.org/mozilla-central/rev/3abafc9e0915
// https://hg.mozilla.org/mozilla-central/rev/452156f0fc6d
user_pref("browser.contentHandlers.types.0.title", "");
user_pref("browser.contentHandlers.types.0.type", "");
user_pref("browser.contentHandlers.types.0.uri", "");
user_pref("browser.contentHandlers.types.1.title", "");
user_pref("browser.contentHandlers.types.1.type", "");
user_pref("browser.contentHandlers.types.1.uri", "");
user_pref("browser.contentHandlers.types.2.title", "");
user_pref("browser.contentHandlers.types.2.type", "");
user_pref("browser.contentHandlers.types.2.uri", "");
user_pref("browser.contentHandlers.types.3.title", "");
user_pref("browser.contentHandlers.types.3.type", "");
user_pref("browser.contentHandlers.types.3.uri", "");
// -------------------------------------
// Pref : Disable Activity Stream (others)
user_pref("browser.newtabpage.activity-stream.feeds.theme", false);
user_pref("browser.newtabpage.activity-stream.tippyTop.service.endpoint", "");
// -------------------------------------
// FF64+
// -------------------------------------
// Pref : Disable Onboarding
// [NOTE] This setting is just in case it comeback
// Onboarding is an interactive tour/setup for new installs/profiles and features. Every time
// about:home or about:newtab is opened, the onboarding overlay is injected into that page
// [NOTE] Onboarding uses Google Analytics, and leaks resource://URIs
// https://wiki.mozilla.org/Firefox/Onboarding
// https://github.com/mozilla/onboard/commit/db4d6c8726c89a5d6a241c1b1065827b525c5baf
// https://bugzilla.mozilla.org/863246#c154
user_pref("browser.onboarding.enabled", false);
user_pref("browser.onboarding.notification.tour-ids-queue", "");
// -------------------------------------
// Pref : Disable WebIDE to prevent remote debugging and ADB extension download
// https://developer.mozilla.org/docs/Tools/WebIDE
// https://trac.torproject.org/projects/tor/ticket/16222
user_pref("devtools.webide.autoinstallADBHelper", false);
user_pref("devtools.webide.adbAddonURL", "");
// -------------------------------------
// Pref : Disable CSP violation events
// https://developer.mozilla.org/docs/Web/API/SecurityPolicyViolationEvent
// https://bugzilla.mozilla.org/1488165
user_pref("security.csp.enable_violation_events", false);
// -------------------------------------
// FF65+
// -------------------------------------
// Pref : Disable location bar autocomplete and suggestion types
// https://bugzilla.mozilla.org/1502392
user_pref("browser.urlbar.autocomplete.enabled", false);
// -------------------------------------
// Pref : When "browser.fixup.alternate.enabled" is enabled, strip password from 'user:password@...' URLs
// https://github.com/pyllyukko/user.js/issues/290#issuecomment-303560851
user_pref("browser.fixup.hide_user_pass", true);
// -------------------------------------
// FF66+
// -------------------------------------
// Pref : Disable Browser Error Reporter
// https://support.mozilla.org/en-US/kb/firefox-nightly-error-collection
// https://firefox-source-docs.mozilla.org/browser/browser/BrowserErrorReporter.html
user_pref("browser.chrome.errorReporter.enabled", false);
user_pref("browser.chrome.errorReporter.submitUrl", "");
user_pref("browser.chrome.errorReporter.infoURL", "");
// -------------------------------------
// Pref : Disable Mozilla permission to silently opt you into tests
// https://bugzilla.mozilla.org/1415625
user_pref("network.allow-experiments", false);
// -------------------------------------
// FF67+
// -------------------------------------
// Pref : Enforce DOMHighResTimeStamp API
// [WARNING] Required for normalization of timestamps and any timer resolution mitigations
user_pref("dom.event.highrestimestamp.enabled", true); // [DEFAULT: true]
// -------------------------------------
// Pref : Disable Extension Recommendations (CFR: "Contextual Feature Recommender"
// https://support.mozilla.org/en-US/kb/extension-recommendations
user_pref("browser.newtabpage.activity-stream.asrouter.userprefs.cfr", false);
// -------------------------------------
// FF68+
// -------------------------------------
// Pref : Disable Activity Stream Snippets
// Runs code received from a server (aka Remote Code Execution) and sends information back to a metrics server
// https://abouthome-snippets-service.readthedocs.io/
user_pref("browser.aboutHomeSnippets.updateUrl", "");
user_pref("browser.newtabpage.activity-stream.disableSnippets", true);
// -------------------------------------
// Pref : Disable auto updating of lightweight themes (LWT)
// https://blog.mozilla.org/addons/2018/09/20/future-themes-here/
// https://bugzilla.mozilla.org/1525762
user_pref("lightweightThemes.update.enabled", false);
// -------------------------------------
// Pref : Enable CSP 1.1 experimental hash-source directive
// https://bugzilla.mozilla.org/buglist.cgi?bug_id=855326,883975
// https://bugzilla.mozilla.org/1386214
user_pref("security.csp.experimentalEnabled", true);
// -------------------------------------
// ESR68.x still uses all the following prefs
// -------------------------------------
// FF69+
@ -2781,7 +2494,7 @@ user_pref("services.sync.prefs.sync.browser.sessionstore.restore_on_demand", fal
// https://hg.mozilla.org/mozilla-central/rev/69d1b01b2847
user_pref("gfx.downloadable_fonts.woff2.enabled", false);
// -------------------------------------
// Pref : Enable plugins click-to-play
// Pref : Enforce click-to-play for plugins
// https://bugzilla.mozilla.org/1519434
// https://hg.mozilla.org/mozilla-central/rev/38fc0d299eb0
user_pref("plugins.click_to_play", true);
@ -2792,4 +2505,44 @@ user_pref("plugins.click_to_play", true);
user_pref("media.autoplay.allow-muted", false);
// -------------------------------------
// FF70+
// -------------------------------------
// -------------------------------------
// Pref : Disable disk cache for SSL pages
// user_pref("browser.cache.disk_cache_ssl", false);
// -------------------------------------
// Pref : Disable a part of breakage report UI
// https://bugzilla.mozilla.org/show_bug.cgi?id=1566985
// https://hg.mozilla.org/mozilla-central/rev/513e87bb151b
// https://hg.mozilla.org/mozilla-central/rev/708f0175c5e6
user_pref("browser.contentblocking.reportBreakage.enabled", false);
user_pref("browser.contentblocking.rejecttrackers.reportBreakage.enabled", false);
// -------------------------------------
// Pref : Disable tracking protection UI list editing under url bar popup
// https://bugzilla.mozilla.org/show_bug.cgi?id=1572139
user_pref("browser.contentblocking.trackingprotection.control-center.ui.enabled", false);
// -------------------------------------
// Pref : Disable parts of trackingprotection and related syncs
// https://bugzilla.mozilla.org/show_bug.cgi?id=1570971
// https://hg.mozilla.org/mozilla-central/rev/8247f9a13f56
// https://bugzilla.mozilla.org/show_bug.cgi?id=1564367
// https://hg.mozilla.org/mozilla-central/rev/a931afa2c4bd
// https://bugzilla.mozilla.org/show_bug.cgi?id=1560040
// https://hg.mozilla.org/mozilla-central/rev/11dc1c09bb58
user_pref("privacy.trackingprotection.cryptomining.annotate.enabled", false);
user_pref("privacy.trackingprotection.fingerprinting.annotate.enabled", false);
user_pref("privacy.trackingprotection.introURL", "");
user_pref("privacy.trackingprotection.socialtracking.annotate.enabled", false);
user_pref("services.sync.prefs.sync.browser.contentblocking.enabled", false);
user_pref("services.sync.prefs.sync.privacy.trackingprotection.cryptomining.annotate.enabled", false);
user_pref("services.sync.prefs.sync.privacy.trackingprotection.fingerprinting.annotate.enabled", false);
// -------------------------------------
// Pref : Disable about:logins (Firefox Lockwise)
// https://bugzilla.mozilla.org/show_bug.cgi?id=1567548
// https://hg.mozilla.org/mozilla-central/rev/198896f94464
// https://bugzilla.mozilla.org/show_bug.cgi?id=1572569
// https://hg.mozilla.org/mozilla-central/rev/9a1a98370eca
user_pref("signon.management.page.faqURL", "");
user_pref("signon.management.page.feedbackURL", "");
// -------------------------------------
// Pref : Use APP locale over OS locale in regional preferences
// https://bugzilla.mozilla.org/buglist.cgi?bug_id=1379420,1364789
// user_pref("intl.regional_prefs.use_os_locales", false);