From 81d98182716d03dc1ef84d7a4efb7ad50e54ba44 Mon Sep 17 00:00:00 2001 From: quindecim Date: Wed, 8 Apr 2020 16:54:55 -0400 Subject: [PATCH] Update 'user.js' MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ✅ Synced with Desktop version ✅ Enforced no system colors (they can be fingerprinted) ⛔️ Disabled lockwise app callout to the ETP card | FF75 ⛔️ Disabled Remote Settings | FF75 ⛔️ Disabled permissions delegation | FF73 ℹ️ Fixed a typo that didn't allow the correct deactivation of extensions.getAddons.cache.enabled pref ℹ️ Added some links and descriptions ℹ️ Moved some preferences from FF74+ into deprecated section (keeping them active for ESR68.x.x) --- user.js | 132 ++++++++++++++++++++++++++++++++++++++++++++------------ 1 file changed, 104 insertions(+), 28 deletions(-) diff --git a/user.js b/user.js index 3822aa7..d3e51f2 100644 --- a/user.js +++ b/user.js @@ -37,7 +37,7 @@ user_pref("browser.startup.page", 0); // [DESKTOP] user_pref("browser.newtabpage.enabled", false); // [DESKTOP] user_pref("browser.newtab.url", "about:blank"); // [DESKTOP] // ------------------------------------- -// Pref : Disable Extension Recommendations (CFR: "Contextual Feature Recommender" +// Pref : Disable Extension Recommendations (CFR: "Contextual Feature Recommender") // https://support.mozilla.org/en-US/kb/extension-recommendations user_pref("browser.newtabpage.activity-stream.asrouter.userprefs.cfr.addons", false); // [DESKTOP] user_pref("browser.newtabpage.activity-stream.asrouter.userprefs.cfr.features", false); // [DESKTOP] @@ -51,8 +51,9 @@ user_pref("browser.newtabpage.activity-stream.feeds.discoverystreamfeed", false) user_pref("browser.newtabpage.activity-stream.pocketCta", ""); // [DESKTOP] user_pref("browser.newtabpage.activity-stream.sectionOrder", ""); // [DESKTOP] // ------------------------------------- -// Pref : Set Homepage +// Pref : Set Homepage and disable caching content user_pref("browser.startup.homepage", "about:blank"); // [DESKTOP] +user_pref("browser.startup.homepage.abouthome_cache.enabled", false); // [DESKTOP] // ------------------------------------- // Pref : Disable Activity Stream Snippets // Runs code received from a server (aka Remote Code Execution) and sends information back to a metrics server @@ -94,6 +95,12 @@ user_pref("browser.newtabpage.activity-stream.section.highlights.includeBookmark user_pref("browser.newtabpage.activity-stream.section.highlights.includeDownloads", false); // [DESKTOP] user_pref("browser.newtabpage.activity-stream.section.highlights.includeVisited", false); // [DESKTOP] user_pref("browser.newtabpage.activity-stream.discoverystream.personalization.modelKeys", ""); // [DESKTOP] +user_pref("browser.newtabpage.activity-stream.improvesearch.handoffToAwesomebar", false); // [DESKTOP] +user_pref("browser.newtabpage.activity-stream.discoverystream.isCollectionDismissible", false); // [DESKTOP] +user_pref("browser.newtabpage.activity-stream.discoverystream.region-basic-layout", false); // [DESKTOP] +user_pref("browser.newtabpage.activity-stream.discoverystream.region-layout-config", ""); // [DESKTOP] +user_pref("browser.newtabpage.activity-stream.discoverystream.region-spocs-config", ""); // [DESKTOP] +user_pref("browser.newtabpage.activity-stream.discoverystream.region-stories-config", ""); // [DESKTOP] // ------------------------------------- // Pref : Disable new tab tile ads & preload // https://wiki.mozilla.org/Tiles/Technical_Documentation#Ping @@ -107,13 +114,20 @@ user_pref("browser.newtabpage.activity-stream.asrouter.messageProviders", ""); / // Value taken from Tor Browser // https://bugzilla.mozilla.org/show_bug.cgi?id=583181 user_pref("browser.startup.homepage_override.mstone", "ignore"); +// ------------------------------------- +// Pref : Disable separate about:welcome page and log level to console +// https://bugzilla.mozilla.org/show_bug.cgi?id=1617783 +user_pref("browser.aboutwelcome.enabled", false); // [DESKTOP] +user_pref("browser.aboutwelcome.log", ""); // [DESKTOP] // // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // Section : Quiet Fox // >>>>>>>>>>>>>>>>>>>>> // Pref : Disable app from auto-update +// true=application updates are installed without user approval. +// false=application updates are downloaded but the user can choose when to install the update. user_pref("app.update.auto", false); // [DESKTOP] -user_pref("app.update.autodownload", "never"); // [TEST] // [FENNEC] +user_pref("app.update.autodownload", "never"); // [FENNEC] user_pref("app.update.channel", ""); user_pref("app.update.url", ""); // [DESKTOP] user_pref("app.update.url.details", ""); // [DESKTOP] @@ -348,6 +362,10 @@ user_pref("browser.tabs.crashReporting.sendReport", false); // [DESKTOP] user_pref("browser.crashReports.unsubmittedCheck.enabled", false); // [DESKTOP] user_pref("toolkit.crashreporter.infoURL", ""); // [DESKTOP] // ------------------------------------- +// Pref : Disable Crash Report for Reporting API +// https://bugzilla.mozilla.org/show_bug.cgi?id=1607364 +user_pref("dom.reporting.crash.enabled", false); +// ------------------------------------- // Pref : Disable automatic captive portal detection // https://www.eff.org/deeplinks/2017/08/how-captive-portals-interfere-wireless-security-and-privacy // https://wiki.mozilla.org/Necko/CaptivePortal @@ -412,7 +430,6 @@ user_pref("browser.contentblocking.report.cryptominer.url", ""); // [DESKTOP] user_pref("browser.contentblocking.report.fingerprinter.url", ""); // [DESKTOP] user_pref("browser.contentblocking.report.lockwise.enabled", false); // [DESKTOP] user_pref("browser.contentblocking.report.lockwise.how_it_works.url", ""); // [DESKTOP] -user_pref("browser.contentblocking.report.lockwise.url", ""); // [DESKTOP] user_pref("browser.contentblocking.report.manage_devices.url", ""); // [DESKTOP] user_pref("browser.contentblocking.report.monitor.enabled", false); // [DESKTOP] user_pref("browser.contentblocking.report.monitor.how_it_works.url", ""); // [DESKTOP] @@ -425,6 +442,15 @@ user_pref("browser.contentblocking.report.tracker.url", ""); // [DESKTOP] user_pref("browser.contentblocking.allowlist.annotations.enabled", false); // [FENNEC] user_pref("browser.contentblocking.allowlist.storage.enabled", false); // [FENNEC] // ------------------------------------- +// Pref : Disable lockwise app callout to the ETP card +// https://bugzilla.mozilla.org/show_bug.cgi?id=1612091 +// https://bugzilla.mozilla.org/show_bug.cgi?id=1612088 +user_pref("browser.contentblocking.report.show_mobile_app", false); +user_pref("browser.contentblocking.report.lockwise.mobile-android.url", ""); +user_pref("browser.contentblocking.report.lockwise.mobile-ios.url", ""); +user_pref("browser.contentblocking.report.mobile-android.url", ""); +user_pref("browser.contentblocking.report.mobile-ios.url", ""); +// ------------------------------------- // Pref : Disable send content blocking log to about:protections // https://bugzilla.mozilla.org/show_bug.cgi?id=1549832 user_pref("browser.contentblocking.database.enabled", false); @@ -515,6 +541,22 @@ user_pref("network.tickle-wifi.enabled", false); // Pref : Disable Corroborate.jsm telemetry // https://bugzilla.mozilla.org/show_bug.cgi?id=1608308 user_pref("corroborator.enabled", false); // [DESKTOP] +// ------------------------------------- +// Pref : Disable Remote Settings +// https://github.com/mozilla-services/remote-settings-lambdas +// https://remote-settings.readthedocs.io/en/latest/ +user_pref("security.remote_settings.intermediates.enabled", false); +user_pref("security.remote_settings.intermediates.bucket", ""); +user_pref("security.remote_settings.intermediates.collection", ""); +user_pref("security.remote_settings.intermediates.signer", ""); +user_pref("security.remote_settings.crlite_filters.enabled", false); +user_pref("security.remote_settings.crlite_filters.bucket", ""); +user_pref("security.remote_settings.crlite_filters.collection", ""); +user_pref("security.remote_settings.crlite_filters.signer", ""); +// ------------------------------------- +// Pref : Disable Default Browser Agent +// https://firefox-source-docs.mozilla.org/main/latest/toolkit/mozapps/defaultagent/default-browser-agent/index.html +user_pref("default-browser-agent.enabled", false); // [WINDOWS] // [DESKTOP] // // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // Section : IJWY To Shut Up @@ -902,6 +944,22 @@ user_pref("permissions.manager.defaultsUrl", ""); // [DESKTOP] // Pref : Enable FF Process Priority Manager // https://bugzilla.mozilla.org/show_bug.cgi?id=1548364 user_pref("dom.ipc.processPriorityManager.enabled", true); // [DESKTOP] // [TEST] +// ------------------------------------- +// Pref : Enforce no system colors +// [NOTE] They can be fingerprinted +user_pref("browser.display.use_system_colors", false); // [DEFAULT: false] +// ------------------------------------- +// Pref : Disable purge site data after identifying tracking site via cookies +// [NOTE] Relax this with 'privacy.clearOnShutdown.*' enabled +// https://bugzilla.mozilla.org/show_bug.cgi?id=1599262 +// https://www.ghacks.net/2020/03/04/firefox-75-will-purge-site-data-if-associated-with-tracking-cookies/ +user_pref("privacy.purge_trackers.enabled", false); +user_pref("privacy.purge_trackers.logging.enabled", false); +// ------------------------------------- +// Pref : Disable permissions delegation +// Currently applies to cross-origin geolocation, camera, mic and screen-sharing permissions, and fullscreen requests. Disabling delegation means any prompts for these will show/use their correct 3rd party origin +// https://groups.google.com/forum/#!topic/mozilla.dev.platform/BdFOMAuCGW8/discussion +user_pref("permissions.delegation.enabled", false); // // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // Section : Web Workers @@ -976,7 +1034,7 @@ user_pref("dom.vibrator.enabled", false); user_pref("javascript.options.asmjs", false); // ------------------------------------- // Pref : Disable Ion, baseline JIT and RegExp to help harden JS against exploits -// If false, causes the odd site issue and there is also a performance loss +// [WARNING] Disabling Ion/JIT can cause some site issues and performance loss // https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0817 // https://trac.torproject.org/projects/tor/ticket/26019 user_pref("javascript.options.ion", false); // [DESKTOP - BUG] Navigation issues @@ -1013,7 +1071,6 @@ user_pref("javascript.options.shared_memory", false); // [DEFAULT: false] user_pref("dom.targetBlankNoOpener.enabled", true); // [DEFAULT: false] // ------------------------------------- // Pref : Don't reveal build ID -// Value taken from Tor Browser for Android // https://bugzilla.mozilla.org/show_bug.cgi?id=583181 // user_pref("browser.startup.homepage_override.buildID", ""); // user_pref("extensions.lastAppBuildId", ""); @@ -1088,7 +1145,7 @@ user_pref("gfx.offscreencanvas.enabled", false); // [DEFAULT: false] // 0=Allow all, 1=Block non-muted media, 5=Block all // [NOTE] You can set exceptions under site permissions user_pref("media.autoplay.default", 5); -user_pref("media.autoplay.allow-muted", false); +user_pref("media.autoplay.allow-muted", false); // [FENNEC] user_pref("media.autoplay.block-event.enabled", true); // [DEFAULT: false] user_pref("media.autoplay.block-webaudio", true); // [DEFAULT: false] // ------------------------------------- @@ -1386,7 +1443,14 @@ user_pref("network.negotiate-auth.allow-insecure-ntlm-v1", false); // [DESKTOP] // https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555 user_pref("security.ssl.require_safe_negotiation", true); // ------------------------------------- -// Pref : Disable deprecated TLS versions +// Pref : Control TLS versions with min and max +// 1=TLS 1.0, 2=TLS 1.1, 3=TLS 1.2, 4=TLS 1.3 +// [WARNING] Leave these at default, otherwise you alter your TLS fingerprint. +// https://www.ssllabs.com/ssl-pulse/ +// user_pref("security.tls.version.min", 3); +// user_pref("security.tls.version.max", 4); +// ------------------------------------- +// Pref : Enforce TLS 1.0 and 1.1 downgrades as session only user_pref("security.tls.version.enable-deprecated", false); // ------------------------------------- // Pref : Disable SSL Error Reporting @@ -1751,7 +1815,7 @@ user_pref("browser.sessionstore.max_tabs_undo", 0); user_pref("browser.sessionstore.privacy_level", 2); // ------------------------------------- // Pref : Disable resuming session from crash -// user_pref("browser.sessionstore.resume_from_crash", false); +user_pref("browser.sessionstore.resume_from_crash", false); // ------------------------------------- // Pref : Set the minimum interval between session save operations // Increasing this can help on older machines and some websites, as well as reducing writes. Default is 15000 (15 secs). Try 30000 (30 secs), 60000 (1 min) etc. @@ -1801,7 +1865,6 @@ user_pref("geo.enabled", false); // https://trac.torproject.org/projects/tor/ticket/16254 // https://support.mozilla.org/en-US/kb/how-stop-firefox-making-automatic-connections#w_geolocation-for-default-search-engine user_pref("browser.search.region", "US"); -user_pref("browser.search.geoip.url", ""); user_pref("browser.search.geoSpecificDefaults.url", ""); user_pref("browser.snippets.geoUrl", ""); // ------------------------------------- @@ -1817,8 +1880,8 @@ user_pref("geo.provider.ms-windows-location", false); // [WINDOWS] // [DESKTOP] user_pref("geo.provider.use_corelocation", false); // [MAC] // [DESKTOP] user_pref("geo.provider.use_gpsd", false); // [LINUX] // [DESKTOP] user_pref("geo.provider.network.url", ""); -user_pref("geo.provider-country.network.scan", false); // [FENIX] -user_pref("geo.provider-country.network.url", ""); // [FENIX] +user_pref("geo.provider-country.network.scan", false); +user_pref("geo.provider-country.network.url", ""); // ------------------------------------- // Pref : Disable logging geolocation to the console user_pref("geo.provider.network.logging.enabled", false); // [HIDDEN PREF] // [DESKTOP] @@ -1994,7 +2057,7 @@ user_pref("extensions.blocklist.url", ""); // [URL SANITIZED: https://blocklists // ------------------------------------- // Pref : Opt-out of add-on metadata updates // https://blog.mozilla.org/addons/how-to-opt-out-of-add-on-metadata-updates/ -user_pref("extensions.getAddons.cache.enabled", false) +user_pref("extensions.getAddons.cache.enabled", false); // ------------------------------------- // Pref : Disable Google Safe Browsing (Block dangerous and deceptive contents) user_pref("browser.safebrowsing.enabled", false); // [DESKTOP] @@ -2412,7 +2475,6 @@ user_pref("dom.vr.enabled", false); // [DEFAULT: true] user_pref("dom.vr.autoactivate.enabled", false); user_pref("dom.vr.oculus.enabled", false); user_pref("dom.vr.oculus.invisible.enabled", false); -user_pref("dom.vr.openvr.action_input", false); user_pref("dom.vr.openvr.enabled", false); user_pref("dom.vr.osvr.enabled", false); user_pref("dom.vr.poseprediction.enabled", false); @@ -2514,12 +2576,6 @@ user_pref("browser.ctrlTab.recentlyUsedOrder", false); // [DESKTOP] // ------------------------------------- // Pref : Display long lines in view-source page user_pref("view_source.wrap_long_lines", true); -// ------------------------------------- -// Pref : Enable one-click select all URL bar -user_pref("browser.urlbar.clickSelectsAll", true); -// ------------------------------------- -// Pref : Enable double click selects a string segment in URL bar -user_pref("browser.urlbar.doubleClickSelectsAll", false); // [DESKTOP] // // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // Section : Deprecated / Removed / Legacy / Renamed @@ -2568,7 +2624,7 @@ user_pref("plugins.click_to_play", true); // Pref : Disable autoplay of HTML5 media // https://bugzilla.mozilla.org/1562331 // https://hg.mozilla.org/mozilla-central/rev/3780202d7104 -user_pref("media.autoplay.allow-muted", false); +user_pref("media.autoplay.allow-muted", false); // [FENNEC] // ------------------------------------- // FF70+ // ------------------------------------- @@ -2756,12 +2812,32 @@ user_pref("geo.wifi.logging.enabled", false); // [HIDDEN PREF] // https://hg.mozilla.org/mozilla-central/rev/4a6071f143a5 user_pref("privacy.userContext.longPressBehavior", 2); // ------------------------------------- -// Pref : Control TLS versions with min and max -// 1=TLS 1.0, 2=TLS 1.1, 3=TLS 1.2, 4=TLS 1.3 -// [WARNING] Leave these at default, otherwise you alter your TLS fingerprint. -// https://bugzilla.mozilla.org/show_bug.cgi?id=1606734 -user_pref("security.tls.version.min", 3); -// user_pref("security.tls.version.max", 4); -// ------------------------------------- // FF75+ +// ------------------------------------- +// Pref : Disable contentblocking reports +// https://bugzilla.mozilla.org/show_bug.cgi?id=1612088 +// https://hg.mozilla.org/mozilla-central/rev/b582c518daeb +user_pref("browser.contentblocking.report.lockwise.url", ""); +// ------------------------------------- +// Pref : Disable GeoIP lookup on your address to set default search engine region +// https://bugzilla.mozilla.org/show_bug.cgi?id=1589618 +// https://hg.mozilla.org/mozilla-central/rev/eeda4bdcd130 +user_pref("browser.search.geoip.url", ""); +// ------------------------------------- +// Pref : Enable one-click select all URL bar +// https://bugzilla.mozilla.org/show_bug.cgi?id=333714 +// https://hg.mozilla.org/mozilla-central/rev/9d574c79405d +user_pref("browser.urlbar.clickSelectsAll", true); +// ------------------------------------- +// Pref : Enable double click selects a string segment in URL bar +// https://bugzilla.mozilla.org/show_bug.cgi?id=333714 +// https://hg.mozilla.org/mozilla-central/rev/9d574c79405d +user_pref("browser.urlbar.doubleClickSelectsAll", false); +// ------------------------------------- +// Pref : Disable virtual reality devices APIs +// https://bugzilla.mozilla.org/show_bug.cgi?id=1602102 +// https://hg.mozilla.org/mozilla-central/rev/bb85b121d2ac +user_pref("dom.vr.openvr.action_input", false); +// ------------------------------------- +// FF76+ // ------------------------------------- \ No newline at end of file