Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- /* my overrides */
- /* override recipe: enable session restore ***/
- /* 0102: set startup page [SETUP-CHROME]
- * 0=blank, 1=home, 2=last visited page, 3=resume previous session
- * [NOTE] Session Restore is cleared with history (2811, 2812), and not used in Private Browsing mode
- * [SETTING] General>Startup>Restore previous session ***/
- user_pref("browser.startup.page", 3);
- /* 1003: disable storing extra session data [SETUP-CHROME]
- * define on which sites to save extra session data such as form content, cookies and POST data
- * 0=everywhere, 1=unencrypted sites, 2=nowhere ***/
- user_pref("browser.sessionstore.privacy_level", 0);
- /* 2811: set/enforce what items to clear on shutdown (if 2810 is true) [SETUP-CHROME]
- * These items do not use exceptions, it is all or nothing (1681701)
- * [NOTE] If "history" is true, downloads will also be cleared
- * [NOTE] "sessions": Active Logins: refers to HTTP Basic Authentication [1], not logins via cookies
- * [NOTE] "offlineApps": Offline Website Data: localStorage, service worker cache, QuotaManager (IndexedDB, asm-cache)
- * [SETTING] Privacy & Security>History>Custom Settings>Clear history when Firefox closes>Settings
- * [1] https://en.wikipedia.org/wiki/Basic_access_authentication ***/
- user_pref("privacy.clearOnShutdown.history", false); // [DEFAULT: true]
- user_pref("privacy.clearOnShutdown.downloads", false); // [DEFAULT: true]
- /* 2812: reset default items to clear with Ctrl-Shift-Del (to match 2811) [SETUP-CHROME]
- * This dialog can also be accessed from the menu History>Clear Recent History
- * Firefox remembers your last choices. This will reset them when you start Firefox
- * [NOTE] Regardless of what you set "downloads" to, as soon as the dialog
- * for "Clear Recent History" is opened, it is synced to the same as "history" ***/
- user_pref("privacy.cpd.history", false); // [DEFAULT: true]
- /* addition not in the original recipe ***/
- user_pref("privacy.clearOnShutdown.cache", false); // [DEFAULT: false]
- user_pref("privacy.cpd.cache", false); // [DEFAULT: true]
- /* 0103: set HOME+NEWWINDOW page
- * about:home=Activity Stream (default, see 0105), custom URL, about:blank
- * [SETTING] Home>New Windows and Tabs>Homepage and new windows ***/
- user_pref("browser.startup.homepage", "about:home"); // change back to blank (default) if performance issues
- /* 0710: disable DNS-over-HTTPS (DoH) rollout [FF60+]
- * 0=off by default, 2=TRR (Trusted Recursive Resolver) first, 3=TRR only, 5=explicitly off
- * see "doh-rollout.home-region": USA Feb 2020, Canada July 2021 [3]
- * [1] https://hacks.mozilla.org/2018/05/a-cartoon-intro-to-dns-over-https/
- * [2] https://wiki.mozilla.org/Security/DOH-resolver-policy
- * [3] https://blog.mozilla.org/mozilla/news/firefox-by-default-dns-over-https-rollout-in-canada/
- * [4] https://www.eff.org/deeplinks/2020/12/dns-doh-and-odoh-oh-my-year-review-2020 ***/
- user_pref("network.trr.mode", 3);
- // more TRR stuffs
- user_pref("network.trr.uri", "https://dns.quad9.net/dns-query");
- /* 0820: disable coloring of visited links
- * [SETUP-HARDEN] Bulk rapid history sniffing was mitigated in 2010 [1][2]. Slower and more expensive
- * redraw timing attacks were largely mitigated in FF77+ [3]. Using RFP (4501) further hampers timing
- * attacks. Don't forget clearing history on exit (2811). However, social engineering [2#limits][4][5]
- * and advanced targeted timing attacks could still produce usable results
- * [1] https://developer.mozilla.org/docs/Web/CSS/Privacy_and_the_:visited_selector
- * [2] https://dbaron.org/mozilla/visited-privacy
- * [3] https://bugzilla.mozilla.org/1632765
- * [4] https://earthlng.github.io/testpages/visited_links.html (see github wiki APPENDIX A on how to use)
- * [5] https://lcamtuf.blogspot.com/2016/08/css-mix-blend-mode-is-bad-for-keeping.html ***/
- user_pref("layout.css.visited_links_enabled", false);
- /* 1001: disable disk cache
- * [SETUP-CHROME] If you think disk cache helps perf, then feel free to override this
- * [NOTE] We also clear cache on exit (2811) ***/
- user_pref("browser.cache.disk.enable", true);
- /* 1004: set the minimum interval between session save operations
- * Increasing this can help on older machines and some websites, as well as reducing writes [1]
- * [1] https://bugzilla.mozilla.org/1304389 ***/
- user_pref("browser.sessionstore.interval", 300000); // [DEFAULT: 15000]
- /* 1601: control when to send a cross-origin referer
- * 0=always (default), 1=only if base domains match, 2=only if hosts match
- * [SETUP-WEB] Breakage: older modems/routers and some sites e.g banks, vimeo, icloud, instagram
- * If "2" is too strict, then override to "0" and use Smart Referer extension (Strict mode + add exceptions) ***/
- user_pref("network.http.referer.XOriginPolicy", 0);
- /* 2001: disable WebRTC (Web Real-Time Communication)
- * Firefox uses mDNS hostname obfuscation on desktop (except Windows7/8) and the
- * private IP is NEVER exposed, except if required in TRUSTED scenarios; i.e. after
- * you grant device (microphone or camera) access
- * [SETUP-HARDEN] Test first. Windows7/8 users only: behind a proxy who never use WebRTC
- * [TEST] https://browserleaks.com/webrtc
- * [1] https://groups.google.com/g/discuss-webrtc/c/6stQXi72BEU/m/2FwZd24UAQAJ
- * [2] https://datatracker.ietf.org/doc/html/draft-ietf-mmusic-mdns-ice-candidates#section-3.1.1 ***/
- user_pref("media.peerconnection.enabled", false);
- /* 2030: disable autoplay of HTML5 media [FF63+]
- * 0=Allow all, 1=Block non-muted media (default), 5=Block all
- * [NOTE] You can set exceptions under site permissions
- * [SETTING] Privacy & Security>Permissions>Autoplay>Settings>Default for all websites ***/
- user_pref("media.autoplay.default", 5);
- /* 2662: disable webextension restrictions on certain mozilla domains (you also need 4503) [FF60+]
- * [1] https://bugzilla.mozilla.org/buglist.cgi?bug_id=1384330,1406795,1415644,1453988 ***/
- user_pref("extensions.webextensions.restrictedDomains", "");
- /* 4504: enable RFP letterboxing [FF67+]
- * Dynamically resizes the inner window by applying margins in stepped ranges [2]
- * If you use the dimension pref, then it will only apply those resolutions.
- * The format is "width1xheight1, width2xheight2, ..." (e.g. "800x600, 1000x1000")
- * [SETUP-WEB] This is independent of RFP (4501). If you're not using RFP, or you are but
- * dislike the margins, then flip this pref, keeping in mind that it is effectively fingerprintable
- * [WARNING] DO NOT USE: the dimension pref is only meant for testing
- * [1] https://bugzilla.mozilla.org/1407366
- * [2] https://hg.mozilla.org/mozilla-central/rev/6d2d7856e468#l2.32 ***/
- user_pref("privacy.resistFingerprinting.letterboxing", false); // [HIDDEN PREF]
- /* 4520: disable WebGL (Web Graphics Library)
- * [SETUP-WEB] If you need it then override it. RFP still randomizes canvas for naive scripts ***/
- user_pref("webgl.disabled", false);
- /* 5003: disable saving passwords
- * [NOTE] This does not clear any passwords already saved
- * [SETTING] Privacy & Security>Logins and Passwords>Ask to save logins and passwords for websites ***/
- user_pref("signon.rememberSignons", false);
- /* 5506: disable WebAssembly [FF52+]
- * Vulnerabilities [1] have increasingly been found, including those known and fixed
- * in native programs years ago [2]. WASM has powerful low-level access, making
- * certain attacks (brute-force) and vulnerabilities more possible
- * [STATS] ~0.2% of websites, about half of which are for crytopmining / malvertising [2][3]
- * [1] https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=wasm
- * [2] https://spectrum.ieee.org/tech-talk/telecom/security/more-worries-over-the-security-of-web-assembly
- * [3] https://www.zdnet.com/article/half-of-the-websites-using-webassembly-use-it-for-malicious-purposes ***/
- user_pref("javascript.options.wasm", false);
- /* UPDATES ***/
- user_pref("app.update.auto", false); // [NON-WINDOWS] disable auto app updates
- // [NOTE] You will still get prompts to update, and should do so in a timely manner
- // [SETTING] General>Firefox Updates>Check for updates but let you choose to install them
- /* APPEARANCE ***/
- user_pref("ui.prefersReducedMotion", 1); // disable chrome animations [FF77+] [RESTART] [HIDDEN PREF]
- // 0=no-preference, 1=reduce: with RFP this only affects chrome
- user_pref("ui.systemUsesDarkTheme", 1); // [FF67+] [HIDDEN PREF]
- // 0=light, 1=dark: with RFP this only affects chrome
- /* UX BEHAVIOR ***/
- user_pref("browser.backspace_action", 2); // 0=previous page, 1=scroll up, 2=do nothing
- user_pref("browser.tabs.loadBookmarksInTabs", true); // open bookmarks in a new tab [FF57+]
- user_pref("view_source.tab", false); // view "page/selection source" in a new window [FF68+]
- // ** Theme Related Options ****************************************************
- // userchrome.css usercontent.css activate
- user_pref("toolkit.legacyUserProfileCustomizations.stylesheets", true); // [FF68+] allow userChrome/userContent
- // Proton Enabled #127 || Removed at 97 #328 (Maintained for compatibility with ESR)
- // user_pref("browser.proton.enabled", true);
- // Proton Tooltip
- user_pref("browser.proton.places-tooltip.enabled", true);
- // Fill SVG Color
- user_pref("svg.context-properties.content.enabled", true);
- // CSS Color Mix - 88 Above
- user_pref("layout.css.color-mix.enabled", true);
- // CSS Blur Filter - 88 Above
- user_pref("layout.css.backdrop-filter.enabled", true);
- // Restore Compact Mode - 89 Above
- user_pref("browser.compactmode.show", true);
- // about:home Search Bar - 89 Above
- user_pref("browser.newtabpage.activity-stream.improvesearch.handoffToAwesomebar", false);
- // Browser Theme Based Scheme - Will be activate 95 Above
- // user_pref("layout.css.prefers-color-scheme.content-override", 3);
- // ** Useful Options ***********************************************************
- // Integrated calculator at urlbar
- user_pref("browser.urlbar.suggest.calculator", true);
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement