Commit Graph

41 Commits

Author SHA1 Message Date
quindecim 1be62ea706 Update 'config/mozilla.cfg'
️ Disabled `PiP` (Picture-in-Picture) feature
️ Disabled autoplay of HTML5 media if you interacted with the site | FF78
️ Disabled using the OS's geolocation service | FF78
️ Disabled one more webextension sync process | FF78
️ Disabled Top Sites as suggestion from the search bar | FF78
️ Disabled chrome animations (RFP spoofs this for web content)
️ Disabled FF from sending search terms to ISPs | FF77
️ Disabled new contentblocking report connections prefs | FF78
️ Disabled "Open with PdfJS" dialog | FF78
️ Disabled new stories related activity-stream prefs | FF78
ℹ️ Grouped CBC ciphers
ℹ️ Modified some links, tag and descriptions
ℹ️ Moved some preferences from FF77+ into deprecated section (keeping them active for ESR68.x.x)
2020-07-26 11:38:00 -04:00
quindecim 11f1133aa4 Update 'config/distribution/policies.json'
️ Disabled and locked EME (FF will not download Encrypted Media Extensions, like Widevine, or ask the user to install them) | FF77
️ Disabled PDFjs viewer and .pdf document permissions (like preventing the copying of text) | FF77
2020-06-18 07:28:09 -04:00
quindecim c3eb667ea6 Update 'config/mozilla.cfg'
 Added, but not enabled, https_only_mode.upgrade_local (still experimental) | FF77
 Enforced prefers-reduced-motion as no-preference
️ Disabled permissions manager from writing to disk
ℹ️ Modified some links, tag and descriptions
ℹ️ Moved some preferences from FF76+ into deprecated section (keeping them active for ESR68.x.x)
2020-06-18 07:27:37 -04:00
quindecim d55bcdbf2b Update 'config/distribution/policies.json'
️ Disabled some non secure ciphers | FF76
️ Disabled autoplay for audio and video | FF76
2020-05-07 13:43:13 -04:00
quindecim eb26dfff02 Update 'config/mozilla.cfg'
 Added, but not enabled, HTTPS-only-mode (experimental) | FF76
 Enabled Ion for installed extensions only | FF76
️ Disabled compatibility heuristics to 3rd-party cookie blocking | FF76
️ Disabled the default checkedness for "Save card and address to Firefox" checkboxes
️ Disabled permissions manager from writing to disk
️ Disabled media cache from writing to disk in Private Browsing
️ Disabled purge trackers logging (main pref already disabled) | FF76
️ Disabled staging auto-updates | FF76
️ Disable (temporarily) "Megabar" design
️ Disable Ion and baseline JIT to help harden JS against exploits
️ Disabled one more telemetry pref | FF76
️ Disabled one more pref related to the new about:welcome page | FF76
️ Disabled ExperimentManager and relative API | FF76
ℹ️ Removed few duplicates
ℹ️ Modified some links, tag and descriptions
ℹ️ Moved some preferences from FF75+ into deprecated section (keeping them active for ESR68.x.x)
2020-05-07 13:43:04 -04:00
quindecim e1816c3e68 Update 'config/distribution/policies.json'
️ Disabled Firefox to AutoUpdate without user consent | FF75
️ Disabled DefaultBrowserAgent | FF75 | [WINDOWS]
️ Disabled some UserMessaging (don't recommend extensions, browser features and specific suggestions in the URL bar) | FF75
ℹ️ Sorted SearchEngines removed in alphabetical order
2020-04-08 16:55:17 -04:00
quindecim 7b480248d9 Update 'config/mozilla.cfg'
 Enforced no system colors (they can be fingerprinted)
️ Disabled Firefox to autoupdate without user consent
️ Disabled Default Browser Agent | FF75 | [WINDOWS]
️ Disabled Crash Report for Reporting API | FF75
️ Disabled lockwise app callout to the ETP card | FF75
️ Disabled Remote Settings | FF75
️ Disabled permissions delegation | FF73
️ Disabled geo -country.network.scan and -country.network.url 
️ Disabled purge site data after identifying tracking site via cookies feature (relax this with privacy.clearOnShutdown.* enabled)
️ Disabled caching content of the homepage (not needed when set to about:blank) | FF75
️ Disabled few more browser.newtabpage.activity-stream.* prefs | FF75
️ Disabled JSWindowActors to separate about:welcome page
ℹ️ Fixed a typo that didn't allow the correct deactivation of  extensions.getAddons.cache.enabled pref
ℹ️ Added some links and descriptions
ℹ️ Moved some preferences from FF74+ into deprecated section (keeping them active for ESR68.x.x)
2020-04-08 16:55:09 -04:00
quindecim c758eb5392 Update 'config/mozilla.cfg'
 Enforced FPI (First Party Isolation) by allow communication only if FPDs also match
️ Disabled activity-stream.feeds.recommendationproviderswitcher
️ Disabled activity-stream.discoverystream.personalization.modelKeys
️ Disabled Corroborate.jsm telemetry
️ Disabled experiments extensions (ex legacy) | FF74
️ Disabled Network Predictor on SSL
️ Disabled  the remaining non-modern cipher suites
️ Disabled one more pref to prevent 'Restore Session' after a crash
ℹ️ Increased history leaks via enumeration (PER TAB: back/forward) from 3 to 4
ℹ️ Removed all the redundant buildIDs values. Let privacy.resistFingerprinting do the rest
ℹ️ Renamed using the OS's geolocation service pref | FF74
ℹ️ Renamed logging geolocation to the console pref | FF74
ℹ️ Removed TLS version min 1.2 (FF implemented it by itself)
ℹ️ Created a dedicated section for FPI (First Party Isolation)
ℹ️ Added some links and descriptions
ℹ️ Moved some preferences from FF73+ into deprecated section (keeping them active for ESR68.x.x)
2020-03-15 13:00:24 -04:00
quindecim 1a67c8dac0 Update 'config/distribution/policies.json'
ℹ️ Removed TLS version min 1.2 (FF implemented it by itself)
2020-03-15 13:00:19 -04:00
quindecim 5da9f284ce Update 'config/distribution/policies.json'
 Enabled SanitizeOnShutdown (All) (clear all data on shutdown, including Browsing & Download History, Cookies, Active Logins, Cache, Form & Search History, Site Preferences and Offline Website Data) 
️ Disabled FormHistory (turn off saving information on web forms and the search bar)
️ Disabled SafeMode (disable safe mode within the browser)
️ Disabled NewTabPage (disable the New Tab page)
ℹ️ Set to keep cookies until you close FF
2020-02-17 07:16:13 -05:00
quindecim 476853f4e1 Update 'config/mozilla.cfg'
 Synced all the buildIDs with Tor's ones
 Added a pref (commented by default) to "Enable start in Private Browsing mode"
 Forced Startup page to blank
 Enabled clear cookies and site settings when you close FF
️ Disabled activity-stream.feeds.asrouterfeed from FF Home Content section
️Disabled telemetry for app menu protections button | FF73
️ Disabled tickle time under wifi network (no more packets transmitted trought 4886 port over Wi-Fi)
️ Disabled some more unwanted connections
️ Disabled two more VR prefs | FF73
️ Disabled by default the permission for VR | FF73
ℹ️ Reduced history leaks via enumeration (PER TAB: back/forward) from 20 to 3
ℹ️ Set to keep cookies until you close FF
ℹ️ Added some links and descriptions
ℹ️ Moved some preferences from FF72+ into deprecated section (keeping them active for ESR68.x)
2020-02-17 07:16:10 -05:00
quindecim 0d36cf1224 Update 'config/distribution/policies.json'
️ Disabled StartPage, Twitter and Yahoo extensions (like search engines)
️ Disabled Bing, Google, Twitter, Amazon and eBay as preinstalled search engines in ESR versions
ℹ️ Removed custom folder with some usefull about: pages
ℹ️ Removed StartPage as default search engine in ESR versions
2020-01-10 10:23:14 -05:00
quindecim d71fc8c986 Update 'config/mozilla.cfg'
 Synced all the buildIDs with Tor's ones
 Added a pref (commented by default) to set the days before cookies are delated if you choose for:
network.cookie.lifetimePolicy = 3
️ Disabled two more webgl prefs
️ Disabled two more signon prefs
️ Disabled one more extensions.blocklist pref
ℹ️ Added some links and descriptions
ℹ️ Moved some preferences from FF71+ into deprecated section (keeping them active for ESR68.x)
2020-01-10 10:23:12 -05:00
quindecim 175f80a798 Update 'config/distribution/policies.json'
️ Disabled PasswordReveal (do not allow passwords to be shown in saved logins)
2019-12-04 16:57:25 -05:00
quindecim 24e23267a3 Update 'config/mozilla.cfg'
Synced all the buildIDs with Tor's ones
 Enabled all the internal pages and disabled the related warnings | FF71+
 Sanitized app.releaseNotesURL
 Forget about last download directory used
️ Disabled celebrating milestone toast when certain numbers of trackers are blocked | FF71+
️ Disabled ping to Mozilla for Man-in-the-Middle detection
️ Disabled deprecated TLS versions
️ Disabled all the WebAssembly remaining prefs
️ Disabled telemetry | FF71+
️ Disabled report browser errors in Nightly to Mozilla
ℹ️ Remove all the timeout prefs 
ℹ️ Reordered and renamed some prefs with better criteria
ℹ️ Moved some preferences from FF70+ into deprecated section (keeping them active for ESR68.x)
2019-12-04 16:55:45 -05:00
quindecim be4501dcdd Update 'config/distribution/policies.json'
️ Disabled Cryptomining and Fingerprinting trackingprotection
️ Disabled OfferToSaveLogins by default
️ Disabled PasswordManager (remove access to the password manager via preferences and blocks about:logins)
2019-10-23 04:18:23 -04:00
quindecim 9db5f62550 Update 'config/mozilla.cfg'
 Enforced fallback text encoding to match en-US
 Forced Encrypted Server Name Indication (eSNI) (for TLS 1.3 if TRR/DoH is enabled)
 Enabled (again) disk cache for SSL page - READ HERE
 (https://github.com/ghacksuserjs/ghacks-user.js/issues/792) Synced all the buildIDs with Tor's ones
️ Disabled remaining Activity Stream (order and Pocket)
️ Disabled more telemetry | FF70+
️ Disabled all the contentblocking reports
️ Disabled check route, IPv4 and IPv6, to akamaitechnologies.com | FF70+
️ Disabled new FF accounts and sync prefs | FF70+
️ Disabled more FF Lockwise prefs
️ Disabled cryptomining, fingerprinting and social TP's ping to Mozilla servers | FF70+
️ Disabled all the TP blocked elements by default
️ Disabled sensors.test.events | FF70+
ℹ️ Removed "Use APP locale over OS locale in regional preferences"
ℹ️ Reordered and renamed many prefs with better criteria
ℹ️ Removed all the http:// links
ℹ️ Removed ESR60.x support
ℹ️ Moved some preferences from FF70+ into deprecated section (keeping them active for ESR68.x)
2019-10-23 04:18:20 -04:00
quindecim 4128fbae83 Update 'config/distribution/policies.json'
️ Removed AppUpdateURL (overwrite the existing one in mozilla.cfg)
️ Removed Cookies 'true' value (overwrite the existing one in mozilla.cfg)
2019-09-02 10:04:45 -04:00
quindecim 0e18822393 Update 'config/mozilla.cfg'
 Sanitized almost all URLs for requests to Mozilla servers from LOCALE
 Synced all the buildIDs with Tor's ones
️ Removed all the warnings on quit and from accessing about:config page
️ Disabled more unwanted connections
️ Disabled vendor useragent info leakage to Mozilla
️ Disabled entering in safe mode
️ Disabled completely PingCentre telemetry (used in several System Add-ons)
ℹ️ Moved some preferences from FF69+ into deprecated section (keeping them active for ESR60.x and ESR68.x)
ℹ️ Added new links for better descriptions
2019-09-02 10:04:29 -04:00
quindecim 439cb92289 Update 'config/mozilla.cfg'
ℹ️ Fixed typo
2019-08-24 18:04:00 -04:00
quindecim 226372b03b Update 'config/distribution/policies.json'
 Added new folder in Bookmarks Menu (Ctrl+Shift+O) called "ADVANCED" that contains the more used about: pages of FF:
- about:restartrequired | (restart FF)
- about:config
- about:about
- about:policies
- about:networking
- about:profiles
- about:support
 Added StartPage as default search engine | Only ESR60.x
️ Removed Amazon.com, eBay as suggested search engine | Only ESR60.x
2019-08-24 15:06:27 -04:00
quindecim 97e0ee02d5 Update 'config/mozilla.cfg'
️ Disabled FF password generator | FF69+
️ Locked social trackingprotection | FF70+
️ Locked more sub-sync prefs | FF69+
️ Locked more sub-webgl prefs | FF69+
️ Locked more sub-gamepad prefs | FF69+
️ Locked one more telemetry pref | FF69+
️ Locked send content blocking log to about:protections | FF69+
️ Locked WebVTT logging and test events | FF69+
️ Locked about:logins (Firefox Lockwise) page
ℹ️ Updated author link, added mirrors
ℹ️ Moved lots of preferences from FF52-FF63 and newest ones from FF69+ into deprecated section (keeping them active for ESR60.x)
ℹ️ Defaulted back theme and density values
ℹ️ Fixed typos
2019-08-24 15:06:26 -04:00
quindecim 68d6c18352 Update 'config/distribution/policies.json'
 reEnabled System Add-on updates
2019-07-29 06:36:07 +00:00
quindecim f52132693b Update 'config/mozilla.cfg'
 reEnabled System Add-on updates and sanitized from LOCALE the URL
2019-07-29 06:35:34 +00:00
quindecim 040d18229a Update 'config/distribution/policies.json'
Rewritten the file from scratch.
Synced all the prefs already configured with  mozilla.cfg and added new ones (not settable with the .cfg file), such as:
️ Disabled master password creation
️ Disabled set Desktop background
️ Disabled feedback commands
️ Disabled Firefox Studies
️ Disabled profile import
️ Disabled system addon updates
️ Disabled Firefox home (Search, Top Sites, Highlights, Pocket, Snippets)
️ Removed all defaults bookmarks
️ Removed "Bing", "Google", "Twitter" as search engines and set "DuckDuckGo" as deafult (this policy is only available on the ESR.)
2019-07-28 09:34:36 +00:00
quindecim 1e87458c8a Update 'config/mozilla.cfg'
️ Locked security bypass buttons (DESKTOP only)
2019-07-28 09:34:35 +00:00
quindecim af90a5df7e Update 'config/mozilla.cfg'
 Created new section "Deprecated": moved inside it the already existing prefs and added some missing ones that have been removed, renamed or changed over time (these prefs remain active for ESR60.x versions)
ℹ️ Fixed some descriptions for a better explanation
2019-07-18 12:08:47 +03:00
quindecim 0804c20123 Update 'config/mozilla.cfg'
️ Locked missing sync pref from FF68 update
️ Locked few missing extension recommendations/report prefs from FF68 update
ℹ️ Changed from lockPref to defaultPref URL bar autocomplete
ℹ️ Fixed author's links in credits
ℹ️ Duplicated removed
2019-07-15 12:37:53 +03:00
quindecim 0f281947c6 Update 'config/mozilla.cfg'
 Defaulted to an empty value about DoH resolvers instead Cloudflare and co. (FF68)
️ Locked entirely add-on and certificate blocklists (OneCRL) from Mozilla
️ Locked more sync (FF68)
️ Locked more telemetry (FF68)
️ Locked recommendations in about:addons Extensions and Themes panes (FF68)
️ Locked report extension option in about:addons (FF68)
️ Decreased more system information leakage to Mozilla addons update servers
️ Locked the Enterprise Roots preference (FF68)
️ Locked access to navigator.mediaDevices features on HTTP web pages (FF68)
️ Locked FF Remote Agent (FF68)
️ Locked more VR features (FF68)
ℹ️ Fixed some typo
ℹ️ Fixed FF doesen't save theme selected by user
ℹ️ Removed "Defaulting Proxy settings" because the two values I entered are the same of default now
2019-07-08 12:27:31 +03:00
quindecim cf2307d58f Update 'config/distribution/policies.json'
️ Disabled descriptions in help section:
- Feedback commands
- FF account
- FF screenshot
- FF Studies
- Pocket
- Profile import
- System addons update
- Telemetry
2019-06-23 20:25:01 +03:00
quindecim 2a68aa77fb Update 'config/mozilla.cfg'
 Enabled Ion and baseline JIT javascript (due addons and navigation issues)
 Enabled double click selects a string segment in URL bar
 Enabled one-click select all URL bar
️ Locked recent Highlights in the Library
️ Locked warnings about close/open multiple tabs
️ Locked warnings by entering full screen mode
️ Locked more unwanted connections
️ Locked missing prefs in already disabled pref
️ Disabled by default urlbar suggest history, bookmarks and open tabs
️ Locked new requests asking to access your hardware components (geo, camera, mic, notifications)
️ Locked completly password manager
️ Locked completly Virtual Reality feauture
ℹ️ Sorted some prefs
ℹ️ Defaulted instead locked some prefs
- close tabs with db-click action
- URL bar autocomplete and history/bookmarks suggestions dropdown
2019-06-23 20:25:00 +03:00
quindecim a2fd3365b5
Update mozilla.cfg
 Enabled FF Process Priority Manager (FF69+)  [TEST for WINDOWS]
 Locked missing prefs in already existing prefs
️ Locked more telemetry
️ Locked FF Recommended Extensions suggestions (FF68+)
️ Locked Ion, baseline JIT and RegExp to help harden JS against exploits
️ Locked more webGL (FF68+)
ℹ️ Set more legible default fonts
2019-06-06 16:32:46 +00:00
quindecim 9d60d01678
Update mozilla.cfg
 Masked more builID in according to TBB
 reEnabled reader mode
️ Locked documents loading fonts (this drastically limits/reduces font enumeration)
️ Locked first run page (no more firefox welcome)
️ Locked javascript Ion, baseline JIT and RegExp to help harden JS against exploits (disabled in TBB, performance loss??) [need test]
️ Locked new cryptomining and fingerprinting trackingprotection
ℹ️ Added some descriptions
2019-05-28 09:00:24 +00:00
quindecim 88293ff1d3
Update mozilla.cfg
 Synced new prefs of FF67 in already disabled prefs
 Enabled dark-mode by default (must wait for FF68+)
️ Locked more unwanted connections (FF67)
2019-05-25 16:45:16 +00:00
quindecim dbdcf8af8c
Update mozilla.cfg
 Added missing prefs (for prevention) in already disabled prefs
 Locked FF to display long lines in view-source page
️ Locked FF warnings (about:config/networking)
️ Locked pinned sites from searchbar
️ Locked all sensors
️ Disabled dark theme on forms (usefull with system dark theme e.g. Linux)
️ Locked ctrl+tab back to the old one
ℹ️ Set FF to “don’t read add-ons from the user’s directory or the system.” (usefull for portable versions)
ℹ️ Disabled RFP-letterboxing (for now, let's see if FF will implement this pref in resistFingerprinting)
2019-05-24 19:15:57 +00:00
quindecim fb70fab4bf
Update policies.json
ℹ️ Removed "DisablePocket_Explain" (useless)
2019-05-21 19:53:54 +00:00
quindecim ba2958d0ce
Update mozilla.cfg
 Added missing prefs (for prevention) in already disabled prefs
 Added some deprecated prefs (for prevention)
 Added some descriptions
️ Locked more sync prefs (for prevention)
️ Locked more telemetry/coverage/healthreport/onboarding prefs (for prevention)
️ Locked GCLI (Graphical Command Line Interface)
️ Locked Firefox screenshot extension
️ Defaulted spellchecker functionality
️ Locked "Savant" Shield study (for prevention)
️ Locked social integration with FF (for prevention)
️ Locked useragent updates and site specific overrides
️ Locked mailnews
️ Locked website protocol handlers (irc,mailto,webcal)
️ Locked more unwanted connections
️ Locked more URL protocol handlers
️ Locked remote JAR files being opened
️ Removed special permissions for certain mozilla domains
️ Locked Firefox Tips / Search suggestions
️ Locked OCSP (again..) 
️ Locked Adbobe Primetime
️ Defaulted Reader mode (less RAM consumption..just a bit) [useless?]
ℹ️ Set SSL version min 1.2
ℹ️ Cleanup devtools
ℹ️ Now Display "insecure" icon and "Not Secure" text on HTTP sites also in private browsing mode
ℹ️ Now clear on shutdown also history and downloads
2019-05-21 19:53:41 +00:00
quindecim 78e04e01b1
Update policies.json
 Enabled app from auto-update

️ Disabled check default browser
️ Disabled and locked camera requests
️ Disabled and locked camera requests
️ Disabled and locked microphone requests
️ Disabled and locked location requests
️ Disabled and locked notifications requests
️ Disabled and locked trackingprotection
️ Disabled accept third-party cookies
️ Disabled offer to save logins

ℹ️ Set SSL version min `1.2`
2019-05-16 09:59:40 +00:00
quindecim d3781a24de
Update mozilla.cfg
 Enabled app from auto-update (DESKTOP ONLY)
 Locked "close tab with dbclick" function (DESKTOP ONLY)
 Added "PROTECTION" section to lock mozilla.cfg file itself (DESKTOP ONLY)

️ Locked reveal buildID
️ Locked more activity stream contents
️ Locked Browser Error Reporter
️ Locked contentblocking reportBreakage
️ Locked Onboarding + tour
️ Locked check default browser on first run
️ Locked more unwanted connections
️ Locked browser translate integration
️ Locked raw TCP socket support (mozTCPSocket)
️ Locked more UI tours
️ Locked more safebrowsing connections
️ Locked more Normandy/SHIELD
️ Defaulted browser animations (DESKTOP ONLY)
️ Defaulted autohide download button (DESKTOP ONLY)
️ Locked and hidden third-party cookie and tracking protection UI (DESKTOP ONLY)

ℹ️ Changed `#test` line. from `user.js.applied` to `_config.applied`
ℹ️ Set history leaks via enumeration (PER TAB: back/forward) from 8 to 20
ℹ️ Added UI section
2019-05-16 09:59:35 +00:00
quindecim 9ac175c5c8
init
same changelog of my user.js until now
2019-05-14 07:45:14 +00:00
quindecim ac04d67224
init 2019-05-14 01:15:13 +00:00