Update 'user.js'

This commit is contained in:
Narsil 2021-07-10 17:56:06 +00:00
parent 4c8ca5dc93
commit d49071de02
1 changed files with 24 additions and 9 deletions

33
user.js
View File

@ -564,9 +564,6 @@ user_pref("network.proxy.socks_remote_dns", true);
// Avoid the client to complete its handshake before starting the actual session // Avoid the client to complete its handshake before starting the actual session
user_pref("security.ssl.enable_false_start", false); user_pref("security.ssl.enable_false_start", false);
// ------------------------------------- // -------------------------------------
// Disable FTP [FF60+]
// user_pref("network.ftp.enabled", false); // [DEFAULT: false FF88+]
// -------------------------------------
// Disable using UNC (Uniform Naming Convention) paths [FF61+] // Disable using UNC (Uniform Naming Convention) paths [FF61+]
// [SETUP-CHROME] Can break extensions for profiles on network shares // [SETUP-CHROME] Can break extensions for profiles on network shares
// https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/26424 // https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/26424
@ -717,6 +714,10 @@ user_pref("signon.formlessCapture.enabled", false);
// 1=don't allow cross-origin sub-resources to open HTTP authentication credentials dialogs // 1=don't allow cross-origin sub-resources to open HTTP authentication credentials dialogs
// 2=allow sub-resources to open HTTP authentication credentials dialogs (default) // 2=allow sub-resources to open HTTP authentication credentials dialogs (default)
user_pref("network.auth.subresource-http-auth-allow", 1); user_pref("network.auth.subresource-http-auth-allow", 1);
// -------------------------------------
// Disable automatic authentication on Microsoft sites [FF91+] [WINDOWS]
// https://bugzilla.mozilla.org/buglist.cgi?bug_id=1695693,1719301 ***/
user_pref("network.http.windows-sso.enabled", false);
// //
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// CACHE // CACHE
@ -983,7 +984,7 @@ user_pref("security.insecure_connection_text.pbmode.enabled", true);
// >>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>
// Disable websites choosing fonts (0=block, 1=allow) // Disable websites choosing fonts (0=block, 1=allow)
// This can limit most (but not all) JS font enumeration which is a high entropy fingerprinting vector // This can limit most (but not all) JS font enumeration which is a high entropy fingerprinting vector
// [WARNING] **DO NOT USE**: in FF80+ RFP covers this, and non-RFP users should use font vis // [WARNING] DO NOT USE: in FF80+ RFP covers this, and non-RFP users should use font vis
// [SETTING] General>Language and Appearance>Fonts & Colors>Advanced>Allow pages to choose... // [SETTING] General>Language and Appearance>Fonts & Colors>Advanced>Allow pages to choose...
user_pref("browser.display.use_document_fonts", 0); user_pref("browser.display.use_document_fonts", 0);
// ------------------------------------- // -------------------------------------
@ -1005,7 +1006,7 @@ user_pref("gfx.font_rendering.graphite.enabled", false);
// ------------------------------------- // -------------------------------------
// Limit system font exposure to a whitelist [FF52+] [RESTART] // Limit system font exposure to a whitelist [FF52+] [RESTART]
// If the whitelist is empty, then whitelisting is considered disabled and all fonts are allowed // If the whitelist is empty, then whitelisting is considered disabled and all fonts are allowed
// [WARNING] **DO NOT USE**: in FF80+ RFP covers this, and non-RFP users should use font vis // [WARNING] DO NOT USE: in FF80+ RFP covers this, and non-RFP users should use font vis
// https://bugzilla.mozilla.org/1121643 // https://bugzilla.mozilla.org/1121643
// user_pref("font.system.whitelist", ""); // [HIDDEN PREF] // user_pref("font.system.whitelist", ""); // [HIDDEN PREF]
// //
@ -1522,10 +1523,10 @@ user_pref("network.cookie.lifetimePolicy", 2);
// You are better off using an extension for more granular control // You are better off using an extension for more granular control
// user_pref("dom.storage.enabled", false); // user_pref("dom.storage.enabled", false);
// ------------------------------------- // -------------------------------------
// Enforce no offline cache storage (appCache) // Disable offline cache (appCache)
// The API is easily fingerprinted, use the "storage" pref instead // [NOTE] In FF90+ the storage capability has been removed.
// [WARNING] The API is easily fingerprinted, do not disable ***/
// user_pref("browser.cache.offline.enable", false); // user_pref("browser.cache.offline.enable", false);
user_pref("browser.cache.offline.storage.enable", false); // [FF71+] [DEFAULT: false FF84+]
// ------------------------------------- // -------------------------------------
// Disable service worker cache and cache storage // Disable service worker cache and cache storage
// [NOTE] We clear service worker cache on exiting Firefox // [NOTE] We clear service worker cache on exiting Firefox
@ -1656,12 +1657,18 @@ user_pref("extensions.webextensions.identity.redirectDomain", "");
// Dynamically resizes the inner window by applying margins in stepped ranges // Dynamically resizes the inner window by applying margins in stepped ranges
// If you use the dimension pref, then it will only apply those resolutions. The format is // If you use the dimension pref, then it will only apply those resolutions. The format is
// "width1xheight1, width2xheight2, ..." (e.g. "800x600, 1000x1000, 1600x900") // "width1xheight1, width2xheight2, ..." (e.g. "800x600, 1000x1000, 1600x900")
// [WARNING] The dimension pref is only meant for testing, and we recommend you DO NOT USE it // [WARNING] DO NOT USE: the dimension pref is only meant for testing
// https://bugzilla.mozilla.org/1407366 // https://bugzilla.mozilla.org/1407366
// https://hg.mozilla.org/mozilla-central/rev/6d2d7856e468#l2.32 ***/ // https://hg.mozilla.org/mozilla-central/rev/6d2d7856e468#l2.32 ***/
// user_pref("privacy.resistFingerprinting.letterboxing", true); // [HIDDEN PREF] // user_pref("privacy.resistFingerprinting.letterboxing", true); // [HIDDEN PREF]
// user_pref("privacy.resistFingerprinting.letterboxing.dimensions", ""); // [HIDDEN PREF] // user_pref("privacy.resistFingerprinting.letterboxing.dimensions", ""); // [HIDDEN PREF]
// ------------------------------------- // -------------------------------------
// Experimental RFP [FF91+]
// [WARNING] DO NOT USE unless testing
// https://bugzilla.mozilla.org/1635603 ***/
// user_pref("privacy.resistFingerprinting.exemptedDomains", "*.example.invalid");
// user_pref("privacy.resistFingerprinting.testGranularityMask", 0);
// -------------------------------------
// Disable showing about:blank as soon as possible during startup [FF60+] // Disable showing about:blank as soon as possible during startup [FF60+]
// When default true this no longer masks the RFP chrome resizing activity // When default true this no longer masks the RFP chrome resizing activity
// https://bugzilla.mozilla.org/1448423 // https://bugzilla.mozilla.org/1448423
@ -1919,5 +1926,13 @@ user_pref("security.mixed_content.block_object_subrequest", true);
// [NOTE] You can still override individual sites via site permissions // [NOTE] You can still override individual sites via site permissions
// https://bugzilla.mozilla.org/1682030 [underlying NPAPI code removed] // https://bugzilla.mozilla.org/1682030 [underlying NPAPI code removed]
user_pref("plugin.state.flash", 0); // [DEFAULT: 1] user_pref("plugin.state.flash", 0); // [DEFAULT: 1]
// -------------------------------------
// Disable FTP [FF60+]
// https://bugzilla.mozilla.org/1574475
// user_pref("network.ftp.enabled", false); // [DEFAULT: false FF88+]
// -------------------------------------
// Enforce no offline cache storage (appCache) [FF71+]
// https://bugzilla.mozilla.org/1694662
user_pref("browser.cache.offline.storage.enable", false); // [DEFAULT: false FF84+]
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// //