From 2a68aa77fb70707c8bc64636e6f3b566b7b6a209 Mon Sep 17 00:00:00 2001 From: quindecim Date: Sun, 23 Jun 2019 20:25:00 +0300 Subject: [PATCH] Update 'config/mozilla.cfg' MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ✅ Enabled Ion and baseline JIT javascript (due addons and navigation issues) ✅ Enabled double click selects a string segment in URL bar ✅ Enabled one-click select all URL bar ⛔️ Locked recent Highlights in the Library ⛔️ Locked warnings about close/open multiple tabs ⛔️ Locked warnings by entering full screen mode ⛔️ Locked more unwanted connections ⛔️ Locked missing prefs in already disabled pref ⛔️ Disabled by default urlbar suggest history, bookmarks and open tabs ⛔️ Locked new requests asking to access your hardware components (geo, camera, mic, notifications) ⛔️ Locked completly password manager ⛔️ Locked completly Virtual Reality feauture ℹ️ Sorted some prefs ℹ️ Defaulted instead locked some prefs - close tabs with db-click action - URL bar autocomplete and history/bookmarks suggestions dropdown --- config/mozilla.cfg | 116 +++++++++++++++++++++++++++++++++++++-------- 1 file changed, 95 insertions(+), 21 deletions(-) diff --git a/config/mozilla.cfg b/config/mozilla.cfg index e5dd291..5f99a49 100644 --- a/config/mozilla.cfg +++ b/config/mozilla.cfg @@ -49,8 +49,7 @@ lockPref("browser.newtabpage.activity-stream.section.highlights.includePocket", lockPref("browser.newtabpage.activity-stream.showSponsored", false); // [DESKTOP] lockPref("browser.newtabpage.activity-stream.feeds.discoverystreamfeed", false); // [DESKTOP] // ------------------------------------- -// Pref : Set first run page and HOME+NEWWINDOW page -lockPref("startup.homepage_welcome_url", ""); // [DESKTOP] +// Pref : Set Homepage lockPref("browser.startup.homepage", "about:blank"); // [DESKTOP] // ------------------------------------- // Pref : Disable Activity Stream Snippets @@ -121,7 +120,7 @@ lockPref("browser.startup.homepage_override.mstone", "ignore"); // Pref : Disable app from auto-update // lockPref("app.update.enabled", false); // lockPref("app.update.auto", false); // [DESKTOP] -// lockPref("app.update.autodownload", ""); // [TEST] // [FENNEC] +// lockPref("app.update.autodownload", "never"); // [TEST] // [FENNEC] // lockPref("app.update.channel", ""); lockPref("app.update.url", "https://aus5.mozilla.org/update/6/%PRODUCT%/%VERSION%/%BUILD_ID%/%BUILD_TARGET%/%CHANNEL%/%OS_VERSION%/%SYSTEM_CAPABILITIES%/%DISTRIBUTION%/%DISTRIBUTION_VERSION%/update.xml"); // [URL SANITIZED] // [DESKTOP] lockPref("app.update.url.details", "https://www.mozilla.org/firefox/notes"); // [URL SANITIZED] // [DESKTOP] @@ -254,6 +253,21 @@ lockPref("services.sync.prefs.sync.browser.safebrowsing.downloads.enabled", fals lockPref("services.sync.prefs.sync.browser.safebrowsing.malware.enabled", false); // [DESKTOP] lockPref("services.sync.prefs.sync.browser.safebrowsing.passwords.enabled", false); // [DESKTOP] lockPref("services.sync.prefs.sync.browser.safebrowsing.phishing.enabled", false); // [DESKTOP] +lockPref("services.sync.engine.addresses.available", false); // [DESKTOP] +lockPref("services.sync.addons.trustedSourceHostnames", ""); // [DESKTOP] +lockPref("services.sync.engine.tabs.filteredUrls", ""); // [DESKTOP] +lockPref("services.sync.log.appender.console", ""); // [DESKTOP] +lockPref("services.sync.log.appender.dump", ""); // [DESKTOP] +lockPref("services.sync.log.appender.file.level", ""); // [DESKTOP] +lockPref("services.sync.log.logger", ""); // [DESKTOP] +lockPref("services.sync.log.logger.engine", ""); // [DESKTOP] +lockPref("services.sync.prefs.sync.media.eme.enabled", false); // [DESKTOP] +lockPref("services.sync.prefs.sync.privacy.fuzzyfox.clockgrainus", false); // [DESKTOP] +lockPref("services.sync.prefs.sync.privacy.fuzzyfox.enabled", false); // [DESKTOP] +lockPref("services.sync.engine.addresses.available", false); // [DESKTOP] +lockPref("services.sync.engine.addresses.available", false); // [DESKTOP] +lockPref("services.sync.engine.addresses.available", false); // [DESKTOP] +lockPref("services.sync.prefs.sync.signon.rememberSignons", false); // [DESKTOP] lockPref("services.sync.serverURL", ""); // [DESKTOP] lockPref("services.sync.fxa.privacyURL", ""); // [DESKTOP] lockPref("services.sync.fxa.termsURL", ""); // [DESKTOP] @@ -475,9 +489,21 @@ lockPref("social.directories", ""); // [DEPRECATED] // [DESKTOP] lockPref("social.remote-install.enabled", false); // [DEPRECATED] // [DESKTOP] lockPref("social.whitelist", ""); // [DEPRECATED] // [DESKTOP] // ------------------------------------- -// Pref : Disable Firefox warnings +// Pref : Disable Firefox internal page warnings lockPref("network.warnOnAboutNetworking", false); lockPref("general.warnOnAboutConfig", false); +// ------------------------------------- +// Pref : Disable recent Highlights in the Library +lockPref("browser.library.activity-stream.enabled", false); // [DESKTOP] +// ------------------------------------- +// Pref : Disable warnings about close/open multiple tabs +lockPref("browser.tabs.warnOnClose", false); // [DESKTOP] +lockPref("browser.tabs.warnOnCloseOtherTabs", false); // [DESKTOP] +lockPref("browser.tabs.warnOnOpen", false); // [DESKTOP] +// ------------------------------------- +// Pref : Disables warnings by entering full screen mode +lockPref("full-screen-api.warning.delay", 0); +lockPref("full-screen-api.warning.timeout", 0); // // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // Section : IJWY To Shut Up @@ -517,6 +543,9 @@ lockPref("toolkit.datacollection.infoURL", ""); // [DESKTOP] lockPref("toolkit.telemetry.infoURL", ""); // [DESKTOP] lockPref("dom.keyboardevent.keypress.hack.dispatch_non_printable_keys", ""); lockPref("dom.keyboardevent.keypress.hack.use_legacy_keycode_and_charcode", ""); +lockPref("startup.homepage_welcome_url", ""); // [DESKTOP] +lockPref("startup.homepage_welcome_url.additional", ""); // [DESKTOP] +lockPref("startup.homepage_override_url", ""); // [DESKTOP] // ------------------------------------- // Pref : Devtools cleanup lockPref("devtools.devices.url", ""); @@ -600,6 +629,7 @@ lockPref("layout.accessiblecaret.hapticfeedback", false); // [DEFAULT: true] lockPref("dom.registerProtocolHandler.insecure.enabled", false); // ------------------------------------- // Pref : Disable Firefox Accounts and Sync +lockPref("identity.fxaccounts.enabled", false); // [DESKTOP] lockPref("identity.fxaccounts.auth.uri", ""); lockPref("identity.fxaccounts.remote.oauth.uri", ""); lockPref("identity.fxaccounts.remote.profile.uri", ""); @@ -610,6 +640,10 @@ lockPref("identity.fxaccounts.pairing.enabled", false); // [DESKTOP] lockPref("identity.fxaccounts.remote.pairing.uri", ""); // [DESKTOP] lockPref("identity.fxaccounts.toolbar.accessed", false); // [DESKTOP] lockPref("identity.fxaccounts.toolbar.enabled", false); // [DESKTOP] +lockPref("identity.fxaccounts.migrateToDevEdition", false); // [DESKTOP] +lockPref("identity.fxaccounts.contextParam", ""); // [DESKTOP] +lockPref("identity.fxaccounts.commands.enabled", false); // [DESKTOP] +lockPref("identity.fxaccounts.autoconfig.uri", ""); // [DESKTOP] // ------------------------------------- // Pref : Disable snippets lockPref("browser.snippets.enabled", false); // [FENNEC] @@ -710,8 +744,8 @@ defaultPref("devtools.chrome.enabled", false); // https://bugzilla.mozilla.org/1173199 lockPref("mathml.disabled", true); // ------------------------------------- -// Pref : Disable middle mouse click paste -// This preference determines how to handle middle clicks in text fields. +// Pref : Disable middle mouse click paste leaking on Linux +// https://bugzilla.mozilla.org/1528289 // Useless on Android lockPref("middlemouse.paste", false); // ------------------------------------- @@ -864,7 +898,7 @@ lockPref("security.xpconnect.plugin.unrestricted", false); // [DESKTOP] lockPref("ui.use_standins_for_native_colors", true); // [DESKTOP] // ------------------------------------- // Pref : Close tab with double click action -lockPref("browser.tabs.closeTabByDblclick", true); // [DESKTOP] +defaultPref("browser.tabs.closeTabByDblclick", true); // [DESKTOP] // ------------------------------------- // Pref : Remove special permissions for certain mozilla domains // resource://app/defaults/permissions @@ -953,8 +987,8 @@ lockPref("javascript.options.asmjs", false); // If false, causes the odd site issue and there is also a performance loss // https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0817 // https://trac.torproject.org/projects/tor/ticket/26019 -lockPref("javascript.options.ion", false); -lockPref("javascript.options.baselinejit", false); +// lockPref("javascript.options.ion", false); // [DESKTOP - BUG] Navigation issues +// lockPref("javascript.options.baselinejit", false); // [BUG] Addons issues lockPref("javascript.options.native_regexp", false); // ------------------------------------- // Pref : Disable WebAssembly @@ -1150,9 +1184,9 @@ lockPref("browser.urlbar.timesBeforeHidingSuggestionsHint", 0); // [DESKTOP] // Pref : Disable URL bar autocomplete and history/bookmarks suggestions dropdown // [NOTE] This does not cause privacy/leaking issue // lockPref("browser.urlbar.autocomplete.enabled", false); // [DESKTOP] -// lockPref("browser.urlbar.suggest.history", false); // [DESKTOP] -// lockPref("browser.urlbar.suggest.bookmark", false); // [DESKTOP] -// lockPref("browser.urlbar.suggest.openpage", false); // [DESKTOP] +defaultPref("browser.urlbar.suggest.history", false); // [DESKTOP] +defaultPref("browser.urlbar.suggest.bookmark", false); // [DESKTOP] +defaultPref("browser.urlbar.suggest.openpage", false); // [DESKTOP] // ------------------------------------- // Pref : Disable browsing and download history // lockPref("places.history.enabled", false); // [DESKTOP] @@ -1221,6 +1255,13 @@ defaultPref("extensions.webextensions.tabhide.enabled", false); // [DEFAULT: tru // Pref : WebSockets is a technology that makes it possible to open an interactive communication session between the user's browser and a server. (May leak IP when using proxy/VPN) // https://bugzilla.mozilla.org/show_bug.cgi?id=1091016 lockPref("network.websocket.enabled", false); // [HIDDEN PREF] // [DEPRECATED] // [DESKTOP] +// ------------------------------------- +// Pref : Block new requests asking to access your hardware components +// This will prevent any websites not listed in a specific list from requesting permission to access your components +lockPref("permissions.default.geo", 2); // [DESKTOP] +lockPref("permissions.default.camera", 2); // [DESKTOP] +lockPref("permissions.default.microphone", 2); // [DESKTOP] +lockPref("permissions.default.desktop-notification", 2); // [DESKTOP] // // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // Section : Block Implicit Outbound @@ -1582,8 +1623,18 @@ lockPref("security.insecure_field_warning.contextual.enabled", true); // Pref : Disable password manager // [NOTE] This does not clear any passwords already saved lockPref("signon.rememberSignons", false); +lockPref("signon.rememberSignons.visibilityToggle", false); +lockPref("signon.schemeUpgrades", false); +lockPref("signon.showAutoCompleteFooter", false); +lockPref("signon.autologin.proxy", false); +lockPref("signon.privateBrowsingCapture.enabled", false); lockPref("signon.debug", false); // ------------------------------------- +// Pref : Disable Firefox import password from signons.sqlite file +// https://support.mozilla.org/en-US/questions/1020818 +lockPref("signon.importedFromSqlite", false); +lockPref("signon.recipes.path", ""); +// ------------------------------------- // Pref : Set how often Firefox should ask for the master password // 0=the first time (default), 1=every time it's needed, 2=every n minutes lockPref("security.ask_for_password", 2); @@ -1744,7 +1795,6 @@ lockPref("toolkit.winRegisterApplicationRestart", false); // [WINDOWS] // [DESKT // >>>>>>>>>>>>>>>>>>>> // Pref : Disable geolocation lockPref("geo.enabled", false); -lockPref("permissions.default.geo", 2); // [DESKTOP] // lockPref("geo.wifi.xhr.timeout", 0); // ------------------------------------- // Pref : Disable GeoIP lookup on your address to set default search engine region @@ -1781,7 +1831,7 @@ lockPref("geo.wifi.logging.enabled", false); // [HIDDEN PREF] // [DESKTOP] // Section : Fonts // >>>>>>>>>>>>>>>>>>>>>> // Pref : Disable websites choosing fonts (0=block, 1=allow) -// If you disallow fonts, this drastically limits/reduces font enumeration (by JS) which is a high entropy fingerprinting vector. +// This can limit most (but not all) JS font enumeration which is a high entropy fingerprinting vector. // [NOTE] Disabling fonts can uglify the web a fair bit. // https://addons.mozilla.org/en-US/firefox/addon/ublock-origin/ defaultPref("browser.display.use_document_fonts", 0); @@ -1800,7 +1850,7 @@ lockPref("font.name.monospace.x-western", "Lucida Console"); // [DEFAULT: Courie // https://trac.torproject.org/projects/tor/ticket/8455 // https://addons.mozilla.org/en-US/firefox/addon/ublock-origin/ // defaultPref("gfx.downloadable_fonts.enabled", false); -// lockPref("gfx.downloadable_fonts.fallback_delay", 0); +// defaultPref("gfx.downloadable_fonts.fallback_delay", 0); // ------------------------------------- // Pref : Disable WOFF2 (Web Open Font Format) defaultPref("gfx.downloadable_fonts.woff2.enabled", false); @@ -1810,9 +1860,9 @@ defaultPref("gfx.downloadable_fonts.woff2.enabled", false); defaultPref("layout.css.font-loading-api.enabled", false); // ------------------------------------- // Pref : Disable special underline handling for a few fonts which you will probably never use -// Any of these fonts on your system can be enumerated for fingerprinting. // http://kb.mozillazine.org/Font.blacklist.underline_offset -lockPref("font.blacklist.underline_offset", ""); +// https://github.com/ghacksuserjs/ghacks-user.js/issues/744 +// lockPref("font.blacklist.underline_offset", ""); // ------------------------------------- // Pref : Disable graphite which turned back on by default // https://www.mozilla.org/security/advisories/mfsa2017-15/#CVE-2017-7778 @@ -2063,7 +2113,7 @@ lockPref("extensions.formautofill.heuristics.enabled", false); // [DESKTOP] // 0=keep until they expire (default), 2=keep until you close Firefox // [NOTE] Use "Cookie AutoDelete" extension to manage your cookies // https://addons.mozilla.org/en-US/firefox/addon/cookie-autodelete/ -// lockPref("network.cookie.lifetimePolicy", 2); +// defaultPref("network.cookie.lifetimePolicy", 2); // ------------------------------------- // Pref : Disable 3rd-party cookies and site-data // [NOTE] Can breaks payment gateways @@ -2335,11 +2385,29 @@ lockPref("dom.battery.enabled", false); // [DEFAULT: true] // https://developer.mozilla.org/en-US/Firefox/Releases/36#Interfaces.2FAPIs.2FDOM // https://developer.mozilla.org/en-US/docs/Web/API/WebVR_API lockPref("dom.vr.enabled", false); // [DEFAULT: true] +lockPref("dom.vr.autoactivate.enabled", false); +lockPref("dom.vr.external.enabled", false); +lockPref("dom.vr.oculus.enabled", false); +lockPref("dom.vr.oculus.invisible.enabled", false); +lockPref("dom.vr.openvr.action_input", false); +lockPref("dom.vr.openvr.enabled", false); +lockPref("dom.vr.osvr.enabled", false); +lockPref("dom.vr.poseprediction.enabled", false); +lockPref("dom.vr.puppet.enabled", false); +lockPref("dom.vr.require-gesture", true); +lockPref("dom.vr.service.enabled", false); +lockPref("dom.vr.test.enabled", false); +lockPref("gfx.vr.osvr.clientKitLibPath", ""); +lockPref("gfx.vr.osvr.clientLibPath", ""); +lockPref("gfx.vr.osvr.commonLibPath", ""); +lockPref("gfx.vr.osvr.utilLibPath", ""); // ------------------------------------- // Pref : Disable hardware acceleration to reduce graphics fingerprinting -// [SETUP-PERF] Affects text rendering (fonts will look different), impacts video performance, and parts of Quantum that utilize the GPU will also be affected as they are rolled out +// [WARNING] Affects text rendering (fonts will look different), impacts video performance, and parts of Quantum that utilize the GPU will also be affected as they are rolled out // https://wiki.mozilla.org/Platform/GFX/HardwareAcceleration -// defaultPref("layers.acceleration.disabled", true); // [DEFAULT: false] +defaultPref("gfx.direct2d.disabled", true); // [DESKTOP] // [WINDOWS] +defaultPref("layers.acceleration.disabled", true); // [DEFAULT: false] +defaultPref("layers.acceleration.force-enabled", false); // ------------------------------------- // Pref : Disable Web Audio API // https://bugzilla.mozilla.org/show_bug.cgi?id=1288359 @@ -2439,5 +2507,11 @@ defaultPref("view_source.wrap_long_lines", true); // ------------------------------------- // Pref : Enable dark mode in all about:* pages defaultPref("browser.in-content.dark-mode", true); +// ------------------------------------- +// Pref : Enable one-click select all URL bar +defaultPref("browser.urlbar.clickSelectsAll", true); +// ------------------------------------- +// Pref : Enable double click selects a string segment in URL bar +defaultPref("browser.urlbar.doubleClickSelectsAll", false); // [DESKTOP] // -// +// \ No newline at end of file