From b833ea7300fdb6c983ae7b9b4713044adfa084b9 Mon Sep 17 00:00:00 2001 From: HJ <11689349+yokoffing@users.noreply.github.com> Date: Fri, 29 Sep 2023 19:29:34 -0600 Subject: [PATCH] v118 (#235) --- Fastfox.js | 3 +- Peskyfox.js | 10 ++--- Securefox.js | 78 +++++++++++++++++++------------------- personal/user-overrides.js | 6 ++- user.js | 6 +-- 5 files changed, 53 insertions(+), 50 deletions(-) diff --git a/Fastfox.js b/Fastfox.js index 39cfdd576..2ffcd4470 100644 --- a/Fastfox.js +++ b/Fastfox.js @@ -3,7 +3,7 @@ * Fastfox * * "Non ducor duco" * * priority: speedy browsing * - * version: 117 * + * version: 118 * * url: https://github.com/yokoffing/Betterfox * ***************************************************************************************/ @@ -231,7 +231,6 @@ user_pref("dom.security.sanitizer.enabled", true); // PREF: if your hardware doesn't support Webrender, you can fallback to Webrender's software renderer // [1] https://www.ghacks.net/2020/12/14/how-to-find-out-if-webrender-is-enabled-in-firefox-and-how-to-enable-it-if-it-is-not/ -//user_pref("gfx.webrender.enabled", true); // [REMOVED FF118?] //user_pref("gfx.webrender.software", true); // Software Webrender uses CPU instead of GPU //user_pref("gfx.webrender.software.opengl", true); // LINUX diff --git a/Peskyfox.js b/Peskyfox.js index 2b845387c..625d28532 100644 --- a/Peskyfox.js +++ b/Peskyfox.js @@ -3,7 +3,7 @@ * Peskyfox * * "Aquila non capit muscas" * * priority: remove annoyances * - * version: 117 * + * version: 118 * * url: https://github.com/yokoffing/Betterfox * ***************************************************************************/ @@ -388,7 +388,7 @@ user_pref("pdfjs.sidebarViewOnLoad", 2); //user_pref("browser.tabs.loadDivertedInBackground", false); // DEFAULT // PREF: force bookmarks to open in a new tab, not the current tab -user_pref("browser.tabs.loadBookmarksInTabs", true); +//user_pref("browser.tabs.loadBookmarksInTabs", true); //user_pref("browser.tabs.loadBookmarksInBackground", true); // load bookmarks in background // PREF: leave Bookmarks Menu open when selecting a site @@ -460,9 +460,9 @@ user_pref("findbar.highlightAll", true); //user_pref("ui.key.menuAccessKeyFocuses", false); //user_pref("ui.key.menuAccessKey", 18); // DEFAULT -// PREF: CTRL+TAB cycles tabs in chronological order instead of -// recently-used order -//user_pref("browser.ctrlTab.recentlyUsedOrder", false); +// PREF: cycle through tabs in recently used order +// [SETTING] Ctrl+Tab cycles through tabs in recently used order +//user_pref("browser.ctrlTab.sortByRecentlyUsed", true); // PREF: Spell-check // 0=none, 1-multi-line, 2=multi-line & single-line diff --git a/Securefox.js b/Securefox.js index f4881a5d2..1c3319bf8 100644 --- a/Securefox.js +++ b/Securefox.js @@ -3,7 +3,7 @@ * Securefox * * "Natura non contristatur" * * priority: provide sensible security and privacy * - * version: 117 * + * version: 118 * * url: https://github.com/yokoffing/Betterfox * ****************************************************************************/ @@ -118,7 +118,7 @@ user_pref("urlclassifier.features.socialtracking.skipURLs", "*.instagram.com, *. //user_pref("privacy.partition.serviceWorkers", true); // [DEFAULT: true FF105+] //user_pref("privacy.partition.network_state.ocsp_cache", true); // enabled with "Strict" //user_pref("privacy.partition.bloburl_per_agent_cluster", false); // DEFAULT [REGRESSIONS - DO NOT TOUCH] - //user_pref("privacy.partition.bloburl_per_partition_key", true); // enabled with "Strict"? [FF118+] + user_pref("privacy.partition.bloburl_per_partition_key", true); // [FF118+] // enable APS (Always Partitioning Storage) [FF104+] //user_pref("privacy.partition.always_partition_third_party_non_cookie_storage", true); // [DEFAULT: true FF109+] //user_pref("privacy.partition.always_partition_third_party_non_cookie_storage.exempt_sessionstorage", false); // [DEFAULT: false FF109+] @@ -247,7 +247,13 @@ user_pref("security.remote_settings.crlite_filters.enabled", true); user_pref("security.pki.crlite_mode", 2); // PREF: HTTP Public Key Pinning (HPKP) -// If you rely on an antivirus to protect your web browsing +// HPKP enhances the security of SSL certificates by associating +// a host with their expected public key. It prevents attackers +// from impersonating the host using fraudulent certificates, +// even if they hold a valid certificate from a trusted certification authority. +// HPKP ensures that the client maintains a secure connection with +// the correct server, thereby reducing the risk of man-in-the-middle (MITM) attacks. +// [NOTE] If you rely on an antivirus to protect your web browsing // by inspecting ALL your web traffic, then leave at 1. // [ERROR] MOZILLA_PKIX_ERROR_KEY_PINNING_FAILURE // By default, pinning enforcement is not applied if a user-installed @@ -263,16 +269,12 @@ user_pref("security.cert_pinning.enforcement_level", 2); //user_pref("security.enterprise_roots.enabled", false); // DEFAULT //user_pref("security.certerrors.mitm.auto_enable_enterprise_roots", false); -// PREF: disable Microsoft Family Safety [WINDOWS 8-10] -// [1] https://wiki.mozilla.org/QA/Windows_Child_Mode -//user_pref("security.family_safety.mode", 0); - /**************************************************************************** * SECTION: SSL (Secure Sockets Layer) / TLS (Transport Layer Security) * ****************************************************************************/ // PREF: display warning on the padlock for "broken security" -// Bug: warning padlock not indicated for subresources on a secure page! [2] +// [NOTE] Warning padlock not indicated for subresources on a secure page! [2] // [1] https://wiki.mozilla.org/Security:Renegotiation // [2] https://bugzilla.mozilla.org/1353705 user_pref("security.ssl.treat_unsafe_negotiation_as_broken", true); @@ -483,6 +485,17 @@ user_pref("privacy.history.custom", true); // [2] https://winaero.com/firefox-75-strips-https-and-www-from-address-bar-results/ //user_pref("browser.urlbar.trimURLs", true); // DEFAULT +// PREF: trim https:// from the URL bar [FF119+] +// Firefox will hide https:// from the address bar, but not subdomains like www. +// [TEST] http://www.http2demo.io/ +// [1] https://www.ghacks.net/2023/09/19/firefox-119-will-launch-with-an-important-address-bar-change/ +//user_pref("browser.urlbar.trimHttps", true); + +// PREF: display "Not Secure" text on HTTP sites +// Needed with HTTPS-First Policy; not needed with HTTPS-Only Mode. +user_pref("security.insecure_connection_text.enabled", true); +user_pref("security.insecure_connection_text.pbmode.enabled", true); + // PREF: do not show search terms in URL bar [FF110+] [FF113+] // Show search query instead of URL on search results pages. // [SETTING] Search>Search Bar>Use the address bar for search and navigation>Show search terms instead of URL... @@ -542,13 +555,6 @@ user_pref("browser.formfill.enable", false); // and is a security risk (e.g. common typos & malicious sites set up to exploit this). //user_pref("browser.fixup.alternate.enabled", false); // [DEFAULT FF104+] -// PREF: display "Not Secure" text on HTTP sites -// Needed with HTTPS-First Policy; not needed with HTTPS-Only Mode. -user_pref("security.insecure_connection_text.enabled", true); -user_pref("security.insecure_connection_text.pbmode.enabled", true); -//user_pref("security.insecure_connection_icon.enabled", true); // DEFAULT -//user_pref("security.insecure_connection_icon.pbmode.enabled", true); // DEFAULT - // PREF: Disable location bar autofill // https://support.mozilla.org/en-US/kb/address-bar-autocomplete-firefox#w_url-autocomplete //user_pref("browser.urlbar.autoFill", false); @@ -637,27 +643,23 @@ user_pref("dom.security.https_only_mode_error_page_user_suggestions", true); * SECTION: DNS-over-HTTPS * ******************************************************************************/ -// PREF: DNS-over-HTTPS (DoH) mode -// Mozilla uses Cloudfare by default. NextDNS is also an option. -// You can set this to 0 if you are already using secure DNS for -// your entire network (e.g. OS-level, router-level). +// PREF: DNS-over-HTTPS (DoH) implementation +// [NOTE] Mode 3 has site exceptions with a nice UI on the error page. +// [SETTINGS] Privacy & Security > DNS over HTTPS > Enable secure DNS using: // [NOTE] Mode 3 has site-exceptions with a nice UI on the error page // [1] https://hacks.mozilla.org/2018/05/a-cartoon-intro-to-dns-over-https/ -// [2] https://www.internetsociety.org/blog/2018/12/dns-privacy-support-in-mozilla-firefox/ -// 0=disable DoH (default) -// 2=use DoH; fall back to native DNS if necessary -// 3=only use DoH; do not fall back to native DNS -// 5=explicitly disable DoH +// [2] https://support.mozilla.org/en-US/kb/dns-over-https#w_protection-levels-explained +// 0= Default Protection: disable DoH (default) +// 2= Increased Protection: use DoH and fall back to native DNS if necessary +// 3= Max Protection: only use DoH; do not fall back to native DNS +// 5= Off: disable DoH //user_pref("network.trr.mode", 0); // DEFAULT // PREF: display fallback warning page [FF115+] -// Show a warning checkbox UI in modes 0 + 2. +// Show a warning checkbox UI in modes 0 or 2 above. //user_pref("network.trr_ui.show_fallback_warning_option", false); // DEFAULT //user_pref("network.trr.display_fallback_warning", false); // DEFAULT -// PREF: fallback to native DNS upon network errors -//user_pref("network.trr.strict_native_fallback", false); // DEFAULT - // PREF: DoH resolver // [1] https://github.com/uBlockOrigin/uBlock-issues/issues/1710 //user_pref("network.trr.uri", "https://xxxx/dns-query"); @@ -666,6 +668,9 @@ user_pref("dom.security.https_only_mode_error_page_user_suggestions", true); // PREF: adjust providers //user_pref("network.trr.resolvers", '[{ "name": "Cloudflare", "url": "https://mozilla.cloudflare-dns.com/dns-query" },{ "name": "SecureDNS", "url": "https://doh.securedns.eu/dns-query" },{ "name": "AppliedPrivacy", "url": "https://doh.appliedprivacy.net/query" },{ "name": "Digitale Gesellschaft (CH)", "url": "https://dns.digitale-gesellschaft.ch/dns-query" }, { "name": "Quad9", "url": "https://dns.quad9.net/dns-query" }]'); +// PREF: fallback to native DNS upon network errors +//user_pref("network.trr.strict_native_fallback", false); // DEFAULT + // PREF: EDNS Client Subnet (ECS) // [WARNING] In some circumstances, enabling ECS may result // in suboptimal routing between CDN origins and end users [2]. @@ -874,13 +879,6 @@ user_pref("pdfjs.enableScripting", false); // [1] https://bugzilla.mozilla.org/buglist.cgi?bug_id=1659530,1681331 user_pref("extensions.postDownloadThirdPartyPrompt", false); -// PREF: disable permissions delegation [deprecated in FF118] -// Currently applies to cross-origin geolocation, camera, mic and screen-sharing -// permissions, and fullscreen requests. Disabling delegation means any prompts -// for these will show/use their correct 3rd party origin. -// [1] https://groups.google.com/forum/#!topic/mozilla.dev.platform/BdFOMAuCGW8/discussion -user_pref("permissions.delegation.enabled", false); - // PREF: disable middle click on new tab button opening URLs or searches using clipboard [FF115+] // Enable if you're using LINUX. //user_pref("browser.tabs.searchclipboardfor.middleclick", false); // DEFAULT WINDOWS macOS @@ -947,6 +945,7 @@ user_pref("permissions.delegation.enabled", false); // 0=send full URI (default), 1=scheme+host+port+path, 2=scheme+host+port // [1] https://blog.mozilla.org/security/2021/03/22/firefox-87-trims-http-referrers-by-default-to-protect-user-privacy/ // [2] https://web.dev/referrer-best-practices/ +// [3] https://www.reddit.com/r/waterfox/comments/16px8yq/comment/k29r6bu/?context=3 user_pref("network.http.referer.XOriginTrimmingPolicy", 2); /****************************************************************************** @@ -1117,10 +1116,10 @@ user_pref("browser.safebrowsing.downloads.remote.enabled", false); // [3] https://www.reddit.com/r/firefox/comments/p8g5zd/why_does_disabling_accessibility_services_improve // [4] https://winaero.com/firefox-has-accessibility-service-memory-leak-you-should-disable-it/ // [5] https://www.ghacks.net/2022/12/26/firefoxs-accessibility-performance-is-getting-a-huge-boost/ -user_pref("accessibility.force_disabled", 1); +//user_pref("accessibility.force_disabled", 1); //user_pref("devtools.accessibility.enabled", false); -// PREF: disable Firefox accounts +// PREF: disable Firefox Sync // [ALTERNATIVE] Use xBrowserSync [1] // [1] https://addons.mozilla.org/en-US/firefox/addon/xbs // [2] https://github.com/arkenfox/user.js/issues/1175 @@ -1131,6 +1130,9 @@ user_pref("identity.fxaccounts.enabled", false); user_pref("browser.tabs.firefox-view", false); //user_pref("browser.tabs.firefox-view-next", false); // [FF119+] +// PREF: disable the Firefox View tour from popping up +//user_pref("browser.firefox-view.feature-tour", "{\"screen\":\"\",\"complete\":true}"); + // PREF: disable Push Notifications API [FF44+] // Push is an API that allows websites to send you (subscribed) messages even when the site // isn't loaded, by pushing messages to your userAgentID through Mozilla's Push Server. @@ -1258,7 +1260,7 @@ user_pref("datareporting.policy.dataSubmissionEnabled", false); // [SETTING] Privacy & Security>Firefox Data Collection & Use>Allow Firefox to install and run studies user_pref("app.shield.optoutstudies.enabled", false); -// Personalized Extension Recommendations in about:addons and AMO +// PREF: Personalized Extension Recommendations in about:addons and AMO // [NOTE] This pref has no effect when Health Reports are disabled. // [SETTING] Privacy & Security>Firefox Data Collection & Use>Allow Firefox to make personalized extension recommendations user_pref("browser.discovery.enabled", false); diff --git a/personal/user-overrides.js b/personal/user-overrides.js index 7d624b44e..76d2b905a 100644 --- a/personal/user-overrides.js +++ b/personal/user-overrides.js @@ -55,6 +55,8 @@ user_pref("browser.search.update", false); // do not update opensearch engines user_pref("network.dns.skipTRR-when-parental-control-enabled", false); // bypass parental controls when using DoH user_pref("network.trr.confirmationNS", "skip"); // skip TRR confirmation request user_pref("extensions.webextensions.restrictedDomains", ""); // remove Mozilla domains so adblocker works on pages +user_pref("browser.firefox-view.feature-tour", "{\"screen\":\"\",\"complete\":true}"); // disable the Firefox View tour from popping up for new profiles +user_pref("accessibility.force_disabled", 1); // disable Accessibility features /** PESKYFOX ***/ user_pref("devtools.accessibility.enabled", false); // removes un-needed "Inspect Accessibility Properties" on right-click @@ -77,7 +79,8 @@ user_pref("browser.bookmarks.max_backups", 0); // minimize disk use; manually ba user_pref("view_source.wrap_long_lines", true); // wrap source lines user_pref("devtools.debugger.ui.editor-wrapping", true); // wrap lines in devtools user_pref("browser.zoom.full", false); // text-only zoom, not all elements on page -user_pref("pdfjs.sidebarViewOnLoad", 2); // [HIDDEN] force showing of Table of Contents in sidebar for PDFs (if available) +//user_pref("pdfjs.sidebarViewOnLoad", 2); // [HIDDEN] force showing of Table of Contents in sidebar for PDFs (if available) +user_pref("browser.tabs.loadBookmarksInTabs", true); // force bookmarks to open in a new tab, not the current tab user_pref("ui.key.menuAccessKey", 0); // remove underlined characters from various settings user_pref("general.autoScroll", false); // disable unintentional behavior for middle click user_pref("ui.SpellCheckerUnderlineStyle", 1); // dots for spell check errors @@ -93,6 +96,7 @@ user_pref("privacy.userContext.enabled", false); // disable Containers functiona user_pref("browser.crashReports.unsubmittedCheck.enabled", false); // true by default on NIGHTLY //user_pref("browser.urlbar.suggest.quickactions", false); // Quick Actions in URL bar //user_pref("xpinstall.signatures.required", false); // [ESR/DEV/NIGHTLY] +user_pref("browser.urlbar.trimHttps", true); // hide https in URL bar [FF119] /** DELETE IF NOT WINDOWS DESKTOP ***/ user_pref("network.trr.mode", 3); // enable TRR (without System fallback) diff --git a/user.js b/user.js index 4b4a64da8..750919b1b 100644 --- a/user.js +++ b/user.js @@ -10,7 +10,7 @@ /**************************************************************************** * Betterfox * * "Ad meliora" * - * version: 117 * + * version: 118 * * url: https://github.com/yokoffing/Betterfox * ****************************************************************************/ @@ -72,6 +72,7 @@ user_pref("network.predictor.enable-prefetch", false); user_pref("browser.contentblocking.category", "strict"); user_pref("urlclassifier.trackingSkipURLs", "*.reddit.com, *.twitter.com, *.twimg.com, *.tiktok.com"); user_pref("urlclassifier.features.socialtracking.skipURLs", "*.instagram.com, *.twitter.com, *.twimg.com"); +user_pref("privacy.partition.bloburl_per_partition_key", true); user_pref("browser.uitour.enabled", false); user_pref("privacy.globalprivacycontrol.enabled", true); user_pref("privacy.globalprivacycontrol.functionality.enabled", true); @@ -121,7 +122,6 @@ user_pref("network.auth.subresource-http-auth-allow", 1); user_pref("security.mixed_content.block_display_content", true); user_pref("pdfjs.enableScripting", false); user_pref("extensions.postDownloadThirdPartyPrompt", false); -user_pref("permissions.delegation.enabled", false); /** HEADERS / REFERERS ***/ user_pref("network.http.referer.XOriginTrimmingPolicy", 2); @@ -137,7 +137,6 @@ user_pref("media.peerconnection.ice.default_address_only", true); user_pref("browser.safebrowsing.downloads.remote.enabled", false); /** MOZILLA ***/ -user_pref("accessibility.force_disabled", 1); user_pref("identity.fxaccounts.enabled", false); user_pref("browser.tabs.firefox-view", false); user_pref("permissions.default.desktop-notification", 2); @@ -230,7 +229,6 @@ user_pref("browser.download.open_pdf_attachments_inline", true); user_pref("pdfjs.sidebarViewOnLoad", 2); /** TAB BEHAVIOR ***/ -user_pref("browser.tabs.loadBookmarksInTabs", true); user_pref("browser.bookmarks.openInTabClosesMenu", false); user_pref("browser.menu.showViewImageInfo", true); user_pref("findbar.highlightAll", true);