-
Notifications
You must be signed in to change notification settings - Fork 60
/
firefox-user.js
125 lines (125 loc) · 6.48 KB
/
firefox-user.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
// firefox-user.js from https://github.com/bomonike/linux-setup/
// Automated hardening settings explained at #FirefoxConfig
// instead of pressing (on mac) command+,
//
// General : Startup
user_pref("browser.pagethumbnails.capturing_disabled", true);
user_pref("browser.ping-centre.telemetry", false);
user_pref("browser.places.speculativeConnect.enabled", false);
user_pref("browser.sessionstore.privacy_level", 2);
user_pref("browser.ssl_override_behavior", 1);
user_pref("browser.tabs.crashReporting.sendReport", false);
user_pref("browser.uitour.enabled", false);
user_pref("browser.uitour.url", "");
user_pref("browser.urlbar.speculativeConnect.enabled", false);
user_pref("browser.urlbar.trimURLs", false);
user_pref("browser.xul.error_pages.expert_bad_cert", true);
user_pref("browser.download.useDownloadDir", false);
user_pref("browser.formfill.enable", false);
// Use hardware accleration:
user_pref("layers.accleration.force-enabled", true);
user_pref("gfx.webrender.all", true);
//
user_pref("network.cookie.cookieBehavior", 1);
user_pref("network.cookie.lifetimePolicy", 2); // Used to delete cookies when Firefox is closed… set to `0` to enable default cookie persistence
user_pref("network.proxy.socks_remote_dns", true);
//
user_pref("network.trr.custom_uri", "https://doh.mullvad.net/dns-query");
user_pref("network.trr.mode", 3); // Used to enable Mullvad DNS over HTTPS… set to `5` to disable Mullvad DNS over HTTPS
user_pref("network.trr.uri", "https://doh.mullvad.net/dns-query");
// Home
user_pref("browser.startup.homepage", "https://wilsonmar.github.io");
user_pref("browser.newtabpage.activity-stream.feeds.topsites", false);
user_pref("extensions.pocket.enabled", false);
// Home - Firefox Home Content:
user_pref("browser.newtabpage.activity-stream.asrouter.userprefs.cfr.addons", false);
user_pref("browser.newtabpage.activity-stream.asrouter.userprefs.cfr.features", false);
user_pref("browser.newtabpage.activity-stream.feeds.section.topstories", false);
// No Highlights, Snippets
// Search - engine Startpage or DuckDuckGo
user_pref("browser.urlbar.placeholderName", "DuckDuckGo");
user_pref("browser.search.suggest.enabled", false);
user_pref("browser.urlbar.suggest.quicksuggest.nonsponsored", false);
user_pref("browser.urlbar.suggest.quicksuggest.sponsored", false);
// Privacy & Securty
user_pref("browser.contentblocking.category", "custom");
// Do Not Track: Always
user_pref("privacy.donottrackheader.enabled", true);
user_pref("privacy.trackingprotection.enabled", true);
user_pref("privacy.trackingprotection.socialtracking.enabled", true);
// Logins and Passwords:
user_pref("dom.forms.autocomplete.formautofill", true);
// History: Use custom settings:
user_pref("privacy.history.custom", true);
user_pref("places.history.enabled", false);
// Clear history when Firefox closes:
user_pref("privacy.sanitize.sanitizeOnShutdown", true); // Used to delete cookies and site data when Firefox is closed… set to `false` to enable cookie and site data persistence
// Firefox Data Collection and Use: Disallow all
//
user_pref("dom.security.https_only_mode_ever_enabled", true);
user_pref("dom.security.https_only_mode", true);
// Firefox fingerprinting hardening using about:config (automated)
user_pref("privacy.resistFingerprinting", false); // Used to help resist fingerprinting but breaks dark mode and screenshots (among other features)… set to `true` for increased privacy
user_pref("privacy.resistFingerprinting.block_mozAddonManager", true);
user_pref("privacy.resistFingerprinting.letterboxing", true); // Used to help resist fingerprinting… set to `false` to disable letterboxing
user_pref("privacy.userContext.enabled", true);
user_pref("privacy.userContext.ui.enabled", true);
//
user_pref("datareporting.healthreport.uploadEnabled", false);
user_pref("datareporting.policy.dataSubmissionEnabled", false);
//
user_pref("security.cert_pinning.enforcement_level", 2);
user_pref("security.mixed_content.block_display_content", true);
user_pref("security.OCSP.require", true);
user_pref("security.pki.crlite_mode", 2);
user_pref("security.pki.sha1_enforcement_level", 1);
user_pref("security.remote_settings.crlite_filters.enabled", true);
user_pref("security.ssl.require_safe_negotiation", true);
user_pref("security.ssl.treat_unsafe_negotiation_as_broken", true);
user_pref("security.tls.enable_0rtt_data", false);
// Sync
user_pref("identity.fxaccounts.enabled", false); # Removes Sync menu item from GUI.
//
user_pref("app.normandy.first_run", false);
user_pref("app.normandy.api_url", "");
user_pref("app.normandy.enabled", false);
//
user_pref("layout.spellcheckDefault", 1); // Used to disable spellchecker… set to `0` for increased privacy
user_pref("app.shield.optoutstudies.enabled", false);
user_pref("app.update.auto", false);
user_pref("doh-rollout.disable-heuristics", true);
user_pref("media.peerconnection.enabled", false); // Used to disable WebRTC (mitigating WebRTC leaks)… set to `true` to enable WebRTC
//
user_pref("signon.management.page.breach-alerts.enabled", false);
user_pref("signon.rememberSignons", false);
// Firefox hardening using about:config (arkenfox/user.js recommendations, automated)
user_pref("accessibility.force_disabled", 1);
user_pref("app.shield.optoutstudies.enabled", false);
//
user_pref("beacon.enabled", false);
user_pref("captivedetect.canonicalURL", "");
user_pref("dom.security.https_only_mode_send_http_background_request", false);
user_pref("geo.provider.use_corelocation", false);
//
user_pref("network.auth.subresource-http-auth-allow", 1);
user_pref("network.captive-portal-service.enabled", false);
user_pref("network.connectivity-service.enabled", false);
user_pref("network.dns.disableIPv6", true);
user_pref("network.dns.disablePrefetch", true);
user_pref("network.http.speculative-parallel-limit", 0);
user_pref("network.predictor.enabled", false);
user_pref("network.prefetch-next", false);
//
user_pref("pdfjs.enableScripting", false);
user_pref("toolkit.coverage.endpoint.base", "");
user_pref("toolkit.coverage.opt-out", true);
user_pref("toolkit.telemetry.coverage.opt-out", true);
user_pref("webgl.disabled", true);
// Extensions & Themes
user_pref("extensions.getAddons.showPane", false);
user_pref("extensions.htmlaboutaddons.recommendations.enabled", false);
user_pref("extensions.formautofill.addresses.enabled", false);
user_pref("extensions.formautofill.creditCards.enabled", false);
// Addon Privacy Badger
// Addon HTTPS Everywhere
// Addon Firefox Multi-Account Containers to compartmentalize to block reading cookies