From c3eb667ea601a0ccfdf200f1823a0248797769a4 Mon Sep 17 00:00:00 2001 From: quindecim Date: Thu, 18 Jun 2020 07:27:37 -0400 Subject: [PATCH] Update 'config/mozilla.cfg' MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ✅ Added, but not enabled, https_only_mode.upgrade_local (still experimental) | FF77 ✅ Enforced prefers-reduced-motion as no-preference ⛔️ Disabled permissions manager from writing to disk ℹ️ Modified some links, tag and descriptions ℹ️ Moved some preferences from FF76+ into deprecated section (keeping them active for ESR68.x.x) --- config/mozilla.cfg | 63 +++++++++++++++++++++++++++++----------------- 1 file changed, 40 insertions(+), 23 deletions(-) diff --git a/config/mozilla.cfg b/config/mozilla.cfg index 125a4e4..a9d1775 100644 --- a/config/mozilla.cfg +++ b/config/mozilla.cfg @@ -121,10 +121,9 @@ lockPref("browser.newtabpage.activity-stream.asrouter.messageProviders", ""); // // https://bugzilla.mozilla.org/show_bug.cgi?id=583181 lockPref("browser.startup.homepage_override.mstone", "ignore"); // ------------------------------------- -// Pref : Disable separate about:welcome page and log level to console +// Pref : Disable separate about:welcome page // https://bugzilla.mozilla.org/show_bug.cgi?id=1617783 lockPref("browser.aboutwelcome.enabled", false); // [DESKTOP] -lockPref("browser.aboutwelcome.log", ""); // [DESKTOP] lockPref("trailhead.firstrun.branches", ""); // [DESKTOP] // // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> @@ -409,7 +408,6 @@ lockPref("browser.crashReports.unsubmittedCheck.autoSubmit2", false); // [DESKTO // ------------------------------------- // Pref : Disable about:addons Recommendations pane (uses Google Analytics) lockPref("extensions.getAddons.showPane", false); // [HIDDEN PREF] // [DESKTOP] -lockPref("extensions.webservice.discoverURL", ""); // [DESKTOP] // ------------------------------------- // Pref : Disable recommendations in about:addons Extensions and Themes panes // https://www.ghacks.net/2019/05/15/enable-new-firefox-recommended-extensions-suggestions-in-firefox-68-nightly/ @@ -689,9 +687,6 @@ lockPref("extensions.experiments.enabled", false); // Pref : Provide haptic feedback on longPress selection events lockPref("layout.accessiblecaret.hapticfeedback", false); // [DEFAULT: true] // ------------------------------------- -// Pref : -lockPref("dom.registerProtocolHandler.insecure.enabled", false); -// ------------------------------------- // Pref : Disable Firefox Accounts and Sync lockPref("identity.fxaccounts.enabled", false); // [DESKTOP] lockPref("identity.fxaccounts.auth.uri", ""); @@ -911,10 +906,6 @@ lockPref("extensions.pocket.api", ""); // [DESKTOP] lockPref("extensions.pocket.oAuthConsumerKey", ""); // [DESKTOP] lockPref("extensions.pocket.site", ""); // [DESKTOP] // ------------------------------------- -// Pref : Lock web content in file processes -// https://bugzilla.mozilla.org/1343184 -lockPref("browser.tabs.remote.allowLinkedWebInFileUriProcess", false); // [DESKTOP] -// ------------------------------------- // Pref : Disable Displaying Javascript in History URLs lockPref("browser.urlbar.filter.javascript", true); // [DESKTOP] // ------------------------------------- @@ -961,8 +952,6 @@ lockPref("browser.display.use_system_colors", false); // [DEFAULT: false] // https://bugzilla.mozilla.org/show_bug.cgi?id=1599262 // https://www.ghacks.net/2020/03/04/firefox-75-will-purge-site-data-if-associated-with-tracking-cookies/ lockPref("privacy.purge_trackers.enabled", false); -lockPref("privacy.purge_trackers.logging.enabled", false); -lockPref("privacy.purge_trackers.logging.level", ""); // ------------------------------------- // Pref : Disable permissions delegation // Currently applies to cross-origin geolocation, camera, mic and screen-sharing permissions, and fullscreen requests. Disabling delegation means any prompts for these will show/use their correct 3rd party origin @@ -1066,6 +1055,7 @@ lockPref("javascript.options.wasm_baselinejit", false); lockPref("javascript.options.wasm_cranelift", false); lockPref("javascript.options.wasm_gc", false); lockPref("javascript.options.wasm_ionjit", false); +lockPref("javascript.options.wasm_reftypes", false); lockPref("javascript.options.wasm_trustedprincipals", false); lockPref("javascript.options.wasm_verbose", false); // ------------------------------------- @@ -1456,6 +1446,7 @@ lockPref("network.negotiate-auth.allow-insecure-ntlm-v1", false); // [DESKTOP] // https://www.ghacks.net/2020/03/24/firefox-76-gets-optional-https-only-mode/ // https://bugzilla.mozilla.org/1613063 // defaultPref("dom.security.https_only_mode", true); +// defaultPref("dom.security.https_only_mode.upgrade_local", true); // ------------------------------------- // Pref : Require safe negotiation // Blocks connections to servers that don't support RFC 5746 as they're potentially vulnerable to a MiTM attack. A server *without* RFC 5746 can be safe from the attack if it disables renegotiations but the problem is that the browser can't know that. @@ -1694,7 +1685,6 @@ defaultPref("privacy.usercontext.about_newtab_segregation.enabled", true); // [D // Pref : Disable about:logins (Firefox Lockwise) // https://lockwise.firefox.com/ // https://support.mozilla.org/en-US/kb/firefox-lockwise-managing-account-data -lockPref("signon.management.overrideURI", ""); // [DESKTOP] lockPref("signon.management.page.breach-alerts.enabled", false); // [DESKTOP] lockPref("signon.management.page.breachAlertUrl", ""); // [DESKTOP] lockPref("signon.management.page.hideMobileFooter", true); // [DESKTOP] @@ -1826,7 +1816,7 @@ lockPref("browser.cache.disk.smart_size.first_run", false); // Pref : Disable permissions manager from writing to disk // [NOTE] This means any permission changes are session only // https://bugzilla.mozilla.org/967812 -// lockPref("permissions.memory_only", true); // [HIDDEN PREF] +lockPref("permissions.memory_only", true); // [HIDDEN PREF] // ------------------------------------- // Pref : Disable media cache from writing to disk in Private Browsing // [NOTE] MSE (Media Source Extensions) are already stored in-memory in PB @@ -2549,10 +2539,14 @@ lockPref("dom.webaudio.enabled", false); // [DEFAULT: true] // https://bugzilla.mozilla.org/1448423 lockPref("browser.startup.blankWindow", false); // [DESKTOP] // ------------------------------------- -/// Pref : Disable network API +// Pref : Disable network API // https://developer.mozilla.org/en-US/docs/Web/API/Connection/onchange // https://www.torproject.org/projects/torbrowser/design/#fingerprinting-defenses lockPref("dom.network.enabled", false); // [DESKTOP] +// ------------------------------------- +// Pref : Enforce prefers-reduced-motion as no-preference +// 0=no-preference, 1=reduce +lockPref("ui.prefersReducedMotion", 0); // [HIDDEN PREF] // // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // Section : UI (User Interface) @@ -2569,13 +2563,6 @@ defaultPref("browser.download.autohideButton", false); // [DESKTOP] // Pref : Disable browser animation // https://bugzilla.mozilla.org/show_bug.cgi?id=1352069 defaultPref("toolkit.cosmeticAnimations.enabled", false); -// ------------------------------------- -// Pref : Disable (temporarily) "Megabar" design -// https://support.mozilla.org/en-US/questions/1284354 -defaultPref("browser.urlbar.openViewOnFocus", false); // [DESKTOP] -defaultPref("browser.urlbar.update1", false); // [DESKTOP] -defaultPref("browser.urlbar.update1.interventions", false); // [DESKTOP] -defaultPref("browser.urlbar.update1.searchTips", false); // [DESKTOP] // // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // Section : Personal @@ -2619,6 +2606,14 @@ defaultPref("browser.ctrlTab.recentlyUsedOrder", false); // [DESKTOP] defaultPref("view_source.wrap_long_lines", true); // // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> +// Section : Hotfix +// >>>>>>>>>>>>>>>>>>>>> +// Pref : Disable UNC +// [NOTE] Disabling UNC can cause extension storage to fail +// https://github.com/ghacksuserjs/ghacks-user.js/issues/923 +lockPref("network.file.disable_unc_paths", false); // [HIDDEN PREF] +// +// >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> // Section : Deprecated / Removed / Legacy / Renamed // >>>>>>>>>>>>>>>>>>>> // ESR68.x still uses all the following prefs @@ -2910,4 +2905,26 @@ lockPref("extensions.blocklist.useXML", false); lockPref("network.predictor.cleaned-up", true); // ------------------------------------- // FF77+ -// ------------------------------------- \ No newline at end of file +// ------------------------------------- +// Pref : Lock web content in file processes +// https://bugzilla.mozilla.org/show_bug.cgi?id=1603007 +// https://hg.mozilla.org/mozilla-central/rev/b25250e2c618 +lockPref("browser.tabs.remote.allowLinkedWebInFileUriProcess", false); +// ------------------------------------- +// Pref : Remove dom.registerProtocolHandler.insecure.enabled +// https://bugzilla.mozilla.org/show_bug.cgi?id=1597267 +// https://hg.mozilla.org/mozilla-central/rev/89f07125aee8 +lockPref("dom.registerProtocolHandler.insecure.enabled", false); +// ------------------------------------- +// Pref : Disable about:addons Recommendations pane (uses Google Analytics) +// https://bugzilla.mozilla.org/show_bug.cgi?id=1620438 +// https://hg.mozilla.org/mozilla-central/rev/03da091fad18 +lockPref("extensions.webservice.discoverURL", ""); +// ------------------------------------- +// Pref : Disable about:logins (Firefox Lockwise) +// https://bugzilla.mozilla.org/show_bug.cgi?id=1569253 +// https://hg.mozilla.org/mozilla-central/rev/fbd06f30bb6d +lockPref("signon.management.overrideURI", ""); +// ------------------------------------- +// FF78+ +// -------------------------------------