d3cim
/
mozilla.cfg
Archived
1
1
Fork 1
Code Issues 1 Pull Requests Releases Wiki Activity

Update 'config/mozilla.cfg' 

 Added, but not enabled, https_only_mode.upgrade_local (still experimental) | FF77
 Enforced prefers-reduced-motion as no-preference
️ Disabled permissions manager from writing to disk
ℹ️ Modified some links, tag and descriptions
ℹ️ Moved some preferences from FF76+ into deprecated section (keeping them active for ESR68.x.x)
This commit is contained in:
quindecim 2020-06-18 07:27:37 -04:00
parent d55bcdbf2b
commit c3eb667ea6
1 changed files with 40 additions and 23 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

63
config/mozilla.cfg
View File

@ -121,10 +121,9 @@ lockPref("browser.newtabpage.activity-stream.asrouter.messageProviders", ""); //
// https://bugzilla.mozilla.org/show_bug.cgi?id=583181
lockPref("browser.startup.homepage_override.mstone", "ignore");
// -------------------------------------
// Pref : Disable separate about:welcome page and log level to console
// Pref : Disable separate about:welcome page
// https://bugzilla.mozilla.org/show_bug.cgi?id=1617783
lockPref("browser.aboutwelcome.enabled", false); // [DESKTOP]
lockPref("browser.aboutwelcome.log", ""); // [DESKTOP]
lockPref("trailhead.firstrun.branches", ""); // [DESKTOP]
//
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
@ -409,7 +408,6 @@ lockPref("browser.crashReports.unsubmittedCheck.autoSubmit2", false); // [DESKTO
// -------------------------------------
// Pref : Disable about:addons Recommendations pane (uses Google Analytics)
lockPref("extensions.getAddons.showPane", false); // [HIDDEN PREF] // [DESKTOP]
lockPref("extensions.webservice.discoverURL", ""); // [DESKTOP]
// -------------------------------------
// Pref : Disable recommendations in about:addons Extensions and Themes panes
// https://www.ghacks.net/2019/05/15/enable-new-firefox-recommended-extensions-suggestions-in-firefox-68-nightly/
@ -689,9 +687,6 @@ lockPref("extensions.experiments.enabled", false);
// Pref : Provide haptic feedback on longPress selection events
lockPref("layout.accessiblecaret.hapticfeedback", false); // [DEFAULT: true]
// -------------------------------------
// Pref :
lockPref("dom.registerProtocolHandler.insecure.enabled", false);
// -------------------------------------
// Pref : Disable Firefox Accounts and Sync
lockPref("identity.fxaccounts.enabled", false); // [DESKTOP]
lockPref("identity.fxaccounts.auth.uri", "");
@ -911,10 +906,6 @@ lockPref("extensions.pocket.api", ""); // [DESKTOP]
lockPref("extensions.pocket.oAuthConsumerKey", ""); // [DESKTOP]
lockPref("extensions.pocket.site", ""); // [DESKTOP]
// -------------------------------------
// Pref : Lock web content in file processes
// https://bugzilla.mozilla.org/1343184
lockPref("browser.tabs.remote.allowLinkedWebInFileUriProcess", false); // [DESKTOP]
// -------------------------------------
// Pref : Disable Displaying Javascript in History URLs
lockPref("browser.urlbar.filter.javascript", true); // [DESKTOP]
// -------------------------------------
@ -961,8 +952,6 @@ lockPref("browser.display.use_system_colors", false); // [DEFAULT: false]
// https://bugzilla.mozilla.org/show_bug.cgi?id=1599262
// https://www.ghacks.net/2020/03/04/firefox-75-will-purge-site-data-if-associated-with-tracking-cookies/
lockPref("privacy.purge_trackers.enabled", false);
lockPref("privacy.purge_trackers.logging.enabled", false);
lockPref("privacy.purge_trackers.logging.level", "");
// -------------------------------------
// Pref : Disable permissions delegation
// Currently applies to cross-origin geolocation, camera, mic and screen-sharing permissions, and fullscreen requests. Disabling delegation means any prompts for these will show/use their correct 3rd party origin
@ -1066,6 +1055,7 @@ lockPref("javascript.options.wasm_baselinejit", false);
lockPref("javascript.options.wasm_cranelift", false);
lockPref("javascript.options.wasm_gc", false);
lockPref("javascript.options.wasm_ionjit", false);
lockPref("javascript.options.wasm_reftypes", false);
lockPref("javascript.options.wasm_trustedprincipals", false);
lockPref("javascript.options.wasm_verbose", false);
// -------------------------------------
@ -1456,6 +1446,7 @@ lockPref("network.negotiate-auth.allow-insecure-ntlm-v1", false); // [DESKTOP]
// https://www.ghacks.net/2020/03/24/firefox-76-gets-optional-https-only-mode/
// https://bugzilla.mozilla.org/1613063
// defaultPref("dom.security.https_only_mode", true);
// defaultPref("dom.security.https_only_mode.upgrade_local", true);
// -------------------------------------
// Pref : Require safe negotiation
// Blocks connections to servers that don't support RFC 5746 as they're potentially vulnerable to a MiTM attack. A server *without* RFC 5746 can be safe from the attack if it disables renegotiations but the problem is that the browser can't know that.
@ -1694,7 +1685,6 @@ defaultPref("privacy.usercontext.about_newtab_segregation.enabled", true); // [D
// Pref : Disable about:logins (Firefox Lockwise)
// https://lockwise.firefox.com/
// https://support.mozilla.org/en-US/kb/firefox-lockwise-managing-account-data
lockPref("signon.management.overrideURI", ""); // [DESKTOP]
lockPref("signon.management.page.breach-alerts.enabled", false); // [DESKTOP]
lockPref("signon.management.page.breachAlertUrl", ""); // [DESKTOP]
lockPref("signon.management.page.hideMobileFooter", true); // [DESKTOP]
@ -1826,7 +1816,7 @@ lockPref("browser.cache.disk.smart_size.first_run", false);
// Pref : Disable permissions manager from writing to disk
// [NOTE] This means any permission changes are session only
// https://bugzilla.mozilla.org/967812
// lockPref("permissions.memory_only", true); // [HIDDEN PREF]
lockPref("permissions.memory_only", true); // [HIDDEN PREF]
// -------------------------------------
// Pref : Disable media cache from writing to disk in Private Browsing
// [NOTE] MSE (Media Source Extensions) are already stored in-memory in PB
@ -2549,10 +2539,14 @@ lockPref("dom.webaudio.enabled", false); // [DEFAULT: true]
// https://bugzilla.mozilla.org/1448423
lockPref("browser.startup.blankWindow", false); // [DESKTOP]
// -------------------------------------
/// Pref : Disable network API
// Pref : Disable network API
// https://developer.mozilla.org/en-US/docs/Web/API/Connection/onchange
// https://www.torproject.org/projects/torbrowser/design/#fingerprinting-defenses
lockPref("dom.network.enabled", false); // [DESKTOP]
// -------------------------------------
// Pref : Enforce prefers-reduced-motion as no-preference
// 0=no-preference, 1=reduce
lockPref("ui.prefersReducedMotion", 0); // [HIDDEN PREF]
//
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// Section : UI (User Interface)
@ -2569,13 +2563,6 @@ defaultPref("browser.download.autohideButton", false); // [DESKTOP]
// Pref : Disable browser animation
// https://bugzilla.mozilla.org/show_bug.cgi?id=1352069
defaultPref("toolkit.cosmeticAnimations.enabled", false);
// -------------------------------------
// Pref : Disable (temporarily) "Megabar" design
// https://support.mozilla.org/en-US/questions/1284354
defaultPref("browser.urlbar.openViewOnFocus", false); // [DESKTOP]
defaultPref("browser.urlbar.update1", false); // [DESKTOP]
defaultPref("browser.urlbar.update1.interventions", false); // [DESKTOP]
defaultPref("browser.urlbar.update1.searchTips", false); // [DESKTOP]
//
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// Section : Personal
@ -2619,6 +2606,14 @@ defaultPref("browser.ctrlTab.recentlyUsedOrder", false); // [DESKTOP]
defaultPref("view_source.wrap_long_lines", true);
//
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// Section : Hotfix
// >>>>>>>>>>>>>>>>>>>>>
// Pref : Disable UNC
// [NOTE] Disabling UNC can cause extension storage to fail
// https://github.com/ghacksuserjs/ghacks-user.js/issues/923
lockPref("network.file.disable_unc_paths", false); // [HIDDEN PREF]
//
// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
// Section : Deprecated / Removed / Legacy / Renamed
// >>>>>>>>>>>>>>>>>>>>
// ESR68.x still uses all the following prefs
@ -2910,4 +2905,26 @@ lockPref("extensions.blocklist.useXML", false);
lockPref("network.predictor.cleaned-up", true);
// -------------------------------------
// FF77+
// -------------------------------------
// -------------------------------------
// Pref : Lock web content in file processes
// https://bugzilla.mozilla.org/show_bug.cgi?id=1603007
// https://hg.mozilla.org/mozilla-central/rev/b25250e2c618
lockPref("browser.tabs.remote.allowLinkedWebInFileUriProcess", false);
// -------------------------------------
// Pref : Remove dom.registerProtocolHandler.insecure.enabled
// https://bugzilla.mozilla.org/show_bug.cgi?id=1597267
// https://hg.mozilla.org/mozilla-central/rev/89f07125aee8
lockPref("dom.registerProtocolHandler.insecure.enabled", false);
// -------------------------------------
// Pref : Disable about:addons Recommendations pane (uses Google Analytics)
// https://bugzilla.mozilla.org/show_bug.cgi?id=1620438
// https://hg.mozilla.org/mozilla-central/rev/03da091fad18
lockPref("extensions.webservice.discoverURL", "");
// -------------------------------------
// Pref : Disable about:logins (Firefox Lockwise)
// https://bugzilla.mozilla.org/show_bug.cgi?id=1569253
// https://hg.mozilla.org/mozilla-central/rev/fbd06f30bb6d
lockPref("signon.management.overrideURI", "");
// -------------------------------------
// FF78+
// -------------------------------------