diff --git a/user.js b/user.js index ad3f9a7..8e9f2e2 100644 --- a/user.js +++ b/user.js @@ -133,19 +133,26 @@ user_pref("identity.fxaccounts.auth.uri", ""); user_pref("identity.fxaccounts.remote.oauth.uri", ""); user_pref("identity.fxaccounts.remote.profile.uri", ""); // [FENNEC][BUG] If empty "Settings" faded -user_pref("identity.fxaccounts.remote.webchannel.uri", "https://127.0.0.1"); +user_pref("identity.fxaccounts.remote.webchannel.uri", "https://0.0.0.0"); // Pref : Disable predictor / prefetching // Network predicator load pages before they are opened // with mose hover for example user_pref("network.predictor.enabled", false); user_pref("network.predictor.cleaned-up", true); user_pref("network.predictor.enable-prefetch", false); -// Pref : Sync prefs +// Pref : Disable sync user_pref("services.sync.enabled", false); -user_pref("browser.snippets.syncPromo.enabled", false); +user_pref("browser.startup.homepage_override.mstone", "ignore"); user_pref("webextensions.storage.sync.enabled", false); user_pref("webextensions.storage.sync.serverURL", ""); user_pref("privacy.item.syncAccount", false); +// Pref : [FENNEC] Disable snippets +user_pref("browser.snippets.enabled", false); +user_pref("browser.snippets.firstrunHomepageenabled", false); +user_pref("browser.snippets.statsUrl", ""); +user_pref("browser.snippets.updateInterval", -1); +user_pref("browser.snippets.updateUrl", ""); +user_pref("browser.snippets.syncPromo.enabled", false); // Pref : Disable collection/sending of the health report (healthreport.sqlite*) user_pref("datareporting.policy.currentPolicyVersion", 0); user_pref("datareporting.policy.dataSubmissionEnabled", false); @@ -381,7 +388,7 @@ user_pref("media.block-autoplay-until-in-foreground", true); // >>>>>>>>>>>>>>>>>>>> // Pref : Disable location bar using search // Don't leak typos to a search engine, give an error message instead -user_pref("keyword.enabled", false); +// user_pref("keyword.enabled", false); // [DEFAULT: true] // Pref : Don't try to guess domain names when entering an invalid domain name in URL bar // http://www-archive.mozilla.org/docs/end-user/domain-guessing.html user_pref("browser.fixup.alternate.enabled", false); @@ -405,9 +412,9 @@ user_pref("browser.search.suggest.enabled", false); // [NOTE] You can clear formdata on exiting Firefox user_pref("browser.formfill.enable", false); // Pref : Disable date/time picker -// This can leak your locale if not en-US +// [WARNING] This can leak your locale if not en-US // https://trac.torproject.org/projects/tor/ticket/21787 -user_pref("dom.forms.datetime", false); +// user_pref("dom.forms.datetime", false); // // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // Section : Security @@ -466,6 +473,8 @@ user_pref("security.tls.version.fallback-limit", 3); // Pref : Only allow TLS 1.[0-3] // http://kb.mozillazine.org/Security.tls.version.* user_pref("security.tls.version.min", 2); +// Pref : Limits the amount of entries in your DNS cache which can give someone who has access to your computer a list of websites you visited +user_pref("network.dnsCacheEntries", 100); // // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // Section : User Settings @@ -582,7 +591,7 @@ user_pref("browser.cache.disk_cache_ssl", false); // http://kb.mozillazine.org/Browser.sessionhistory.max_total_viewers // user_pref("browser.sessionhistory.max_total_viewers", 0); // Pref : Exclude "Undo Closed Tabs" in Session Restore -// user_pref("browser.sessionstore.max_tabs_undo", 0); +user_pref("browser.sessionstore.max_tabs_undo", 0); // Pref : Disable storing extra session data // Extra session data contains contents of forms, scrollbar positions, cookies and POST data // Define on which sites to save extra session data: @@ -885,17 +894,16 @@ user_pref("dom.storage_access.enabled", false); user_pref("network.http.sendRefererHeader", 2); // Pref : Control the amount of information to send // 0=send full URI (default), 1=scheme+host+port+path, 2=scheme+host+port -user_pref("network.http.referer.trimmingPolicy", 0); +user_pref("network.http.referer.trimmingPolicy", 2); // Pref : Control when to send a referer // 0=always (default), 1=only if base domains match, 2=only if hosts match -user_pref("network.http.referer.XOriginPolicy", 1); +user_pref("network.http.referer.XOriginPolicy", 2); // Pref : Control the amount of information to send // 0=send full URI (default), 1=scheme+host+port+path, 2=scheme+host+port -user_pref("network.http.referer.XOriginTrimmingPolicy", 0); +user_pref("network.http.referer.XOriginTrimmingPolicy", 2); // Pref : Disable spoofing a referer -// [WARNING] Do not set this to true, as spoofing effectively disables the anti-CSRF (Cross-Site Request Forgery) protections that some sites may rely on -user_pref("network.http.referer.spoofSource", false); // [DEFAULT: false] -// Pref : Set the default Referrer Policy [FF59+] +user_pref("network.http.referer.spoofSource", true); // [DEFAULT: false] +// Pref : Set the default Referrer Policy // 0=no-referer, 1=same-origin, 2=strict-origin-when-cross-origin, 3=no-referrer-when-downgrade // [NOTE] This is only a default, it can be overridden by a site-controlled Referrer Policy // https://www.w3.org/TR/referrer-policy/