From c5fca2dbf7289c8dbce901c040683f3cdfdd7926 Mon Sep 17 00:00:00 2001
From: yokoffing <11689349+yokoffing@users.noreply.github.com>
Date: Tue, 16 Jul 2024 10:30:49 -0400
Subject: [PATCH] v127-128 (#301)

---
 Fastfox.js                 |  50 ++-----
 Peskyfox.js                |  12 +-
 README.md                  |   5 +-
 Securefox.js               | 277 ++++++++++++++++++++++++-------------
 personal/user-overrides.js |  33 +++--
 user.js                    |   9 +-
 6 files changed, 231 insertions(+), 155 deletions(-)

diff --git a/Fastfox.js b/Fastfox.js
index 17eafc44b..ddf4414ea 100644
--- a/Fastfox.js
+++ b/Fastfox.js
@@ -3,7 +3,7 @@
  * Fastfox                                                                              *
  * "Non ducor duco"                                                                     *
  * priority: speedy browsing                                                            *
- * version: 126                                                                         *
+ * version: 128                                                                         *
  * url: https://github.com/yokoffing/Betterfox                                          *
  ***************************************************************************************/
 
@@ -98,14 +98,6 @@ user_pref("content.notify.interval", 100000); // (.10s); default=120000 (.12s)
 //user_pref("gfx.webrender.software", true); // Software Webrender uses CPU instead of GPU
     //user_pref("gfx.webrender.software.opengl", true); // LINUX
 
-// PREF: NVIDIA RTX Video Super Resolution and RTX Video HDR [WINDOWS] [FF125+]
-// Super Resolution activiates on video content 720p or below.
-// [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1823135
-// [2] https://www.reddit.com/r/firefox/comments/17a0noa/nvidia_video_super_resolution_not_working_on/
-// [3] https://blogs.nvidia.com/blog/ai-decoded-rtxvideo-firefox/
-// [4] https://www.mozilla.org/en-US/firefox/126.0/releasenotes/
-//user_pref("gfx.webrender.super-resolution.nvidia", true); // [REMOVED]
-
 // PREF: GPU-accelerated Canvas2D
 // Use gpu-canvas instead of to skia-canvas.
 // [WARNING] May cause issues on some Windows machines using integrated GPUs [2] [3]
@@ -409,18 +401,26 @@ user_pref("network.ssl_tokens_cache_capacity", 10240); // default=2048; more TLS
 // [5] https://3perf.com/blog/link-rels/#prefetch
 //user_pref("network.http.speculative-parallel-limit", 20); // DEFAULT (FF127+?)
 
-// PREF: DNS prefetching <link rel="dns-prefetch">
+// PREF: DNS prefetching for HTMLLinkElement <link rel="dns-prefetch">
 // Used for cross-origin connections to provide small performance improvements.
-// Disable DNS prefetching to prevent Firefox from proactively resolving
-// hostnames for other domains linked on a page. This may eliminate
-// unnecessary DNS lookups, but can increase latency when following external links.
+// You can enable rel=dns-prefetch for the HTTPS document without prefetching
+// DNS for anchors, whereas the latter makes more specualtive requests [5].
 // [1] https://bitsup.blogspot.com/2008/11/dns-prefetching-for-firefox.html
 // [2] https://css-tricks.com/prefetching-preloading-prebrowsing/#dns-prefetching
 // [3] https://www.keycdn.com/blog/resource-hints#2-dns-prefetching
 // [4] http://www.mecs-press.org/ijieeb/ijieeb-v7-n5/IJIEEB-V7-N5-2.pdf
-// [5] https://bugzilla.mozilla.org/show_bug.cgi?id=1596935
+// [5] https://bugzilla.mozilla.org/show_bug.cgi?id=1596935#c28
 user_pref("network.dns.disablePrefetch", true);
-user_pref("network.dns.disablePrefetchFromHTTPS", true); // (FF127+ false)
+    user_pref("network.dns.disablePrefetchFromHTTPS", true); // [FF127+ false]
+
+// PREF:  DNS prefetch for HTMLAnchorElement (speculative DNS)
+// Disable speculative DNS calls to prevent Firefox from resolving
+// hostnames for other domains linked on a page. This may eliminate
+// unnecessary DNS lookups, but can increase latency when following external links.
+// [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1596935#c28
+// [2] https://github.com/arkenfox/user.js/issues/1870#issuecomment-2220773972
+//user_pref("dom.prefetch_dns_for_anchor_http_document", false); // [FF128+]
+//user_pref("dom.prefetch_dns_for_anchor_https_document", false); // DEFAULT [FF128+]
 
 // PREF: enable <link rel="preconnect"> tag and Link: rel=preconnect response header handling
 //user_pref("network.preconnect", true); // DEFAULT
@@ -438,26 +438,6 @@ user_pref("network.dns.disablePrefetchFromHTTPS", true); // (FF127+ false)
 // Whether to warm up network connections for places:menus and places:toolbar.
 //user_pref("browser.places.speculativeConnect.enabled", false);
 
-// PREF: network preload <link rel="preload"> [REMOVED]
-// Used to load high-priority resources faster on the current page, for strategic
-// performance improvements.
-// Instructs the browser to immediately fetch and cache high-priority resources
-// for the current page to improve performance. The browser downloads resources
-// but does not execute scripts or apply stylesheets - it just caches them for
-// instant availability later.
-// Unlike other pre-connection tags (except modulepreload), this tag is
-// mandatory for the browser.
-// [1] https://developer.mozilla.org/en-US/docs/Web/HTML/Link_types/preload
-// [2] https://w3c.github.io/preload/
-// [3] https://3perf.com/blog/link-rels/#preload
-// [4] https://medium.com/reloading/preload-prefetch-and-priorities-in-chrome-776165961bbf
-// [5] https://www.smashingmagazine.com/2016/02/preload-what-is-it-good-for/#how-can-preload-do-better
-// [6] https://www.keycdn.com/blog/resource-hints#preload
-// [7] https://github.com/arkenfox/user.js/issues/1098#issue-791949341
-// [8] https://yashints.dev/blog/2018/10/06/web-perf-2#preload
-// [9] https://web.dev/preload-critical-assets/
-//user_pref("network.preload", true); // [REMOVED]
-
 // PREF: network module preload <link rel="modulepreload"> [FF115+]
 // High-priority loading of current page JavaScript modules.
 // Used to preload high-priority JavaScript modules for strategic performance improvements.
diff --git a/Peskyfox.js b/Peskyfox.js
index a08d1f044..edc7e2b92 100644
--- a/Peskyfox.js
+++ b/Peskyfox.js
@@ -3,7 +3,7 @@
  * Peskyfox                                                                 *
  * "Aquila non capit muscas"                                                *
  * priority: remove annoyances                                              *
- * version: 126                                                             *
+ * version: 128                                                             *
  * url: https://github.com/yokoffing/Betterfox                              *
  * credit: Some prefs are reproduced and adapted from the arkenfox project  *
  * credit urL: https://github.com/arkenfox/user.js                          *
@@ -105,9 +105,6 @@ user_pref("layout.css.prefers-color-scheme.content-override", 2);
 // PREF: prevent private windows being separate from normal windows in taskbar [WINDOWS] [FF106+]
 user_pref("browser.privateWindowSeparation.enabled", false);
 
-// PREF: reduce the size of the "private window" indicator in tab bar [FF106+]
-//user_pref("browser.privatebrowsing.enable-new-indicator", false); // REMOVED [FF119+]
-
 // PREF: show search bar [FF122+]
 // Mozilla has removed the search bar option from the settings window.
 //user_pref("browser.search.widget.inNavBar", true);
@@ -238,7 +235,9 @@ user_pref("browser.urlbar.trending.featureGate", false);
 //user_pref("browser.urlbar.maxRichResults", 5); // default=10
 
 // PREF: text fragments [FF126+ NIGHTLY]
-// [1] https://developer.mozilla.org/en-US/docs/Web/Text_fragments
+// [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1753933#c6
+// [2] https://developer.mozilla.org/en-US/docs/Web/Text_fragments
+// [3] https://web.dev/articles/text-fragments
 //user_pref("dom.text_fragments.enabled", true);
 
 /****************************************************************************
@@ -601,3 +600,6 @@ user_pref("layout.word_select.eat_space_to_next_word", false);
 
 // PREF: always underline links [FF120+]
 //user_pref("layout.css.always_underline_links", false); // DEFAULT
+
+// PREF: hide frequent sites on right-click of taskbar icon [WINDOWS?]
+//user_pref("browser.taskbar.lists.frequent.enabled", false);
diff --git a/README.md b/README.md
index f92101c51..447cadaa2 100644
--- a/README.md
+++ b/README.md
@@ -12,7 +12,7 @@
 ## Made for everyday browsing
 **A secure, blazing fast browsing experience. Without breakage.**
 
-Betterfox is an opinionated preference list inspired by the [law of diminishing returns](http://psychologyofwellbeing.com/wp-content/uploads/2017/01/Diminishing-Returns.gif) and the [minimum effective dose](https://medium.com/the-mission/less-is-more-the-minimum-effective-dose-e6d56625931e).
+Betterfox is an opinionated preference list inspired by the [law of diminishing returns](https://web.archive.org/web/20231108092752if_/https://pmctraining.com/site/wp-content/uploads/2018/04/Law-of-Diminishing-Returns-CHART.png) and the [minimum effective dose](https://medium.com/the-mission/less-is-more-the-minimum-effective-dose-e6d56625931e).
 
 ## Required reading
 *If you don't have it already: [Get Firefox](https://www.mozilla.org/en-US/firefox/all/#product-desktop-release)*
@@ -86,9 +86,10 @@ The `user.js` — a configuration file that controls Firefox settings — is cur
 * “I use this one ... The performance is absolutely amazing. There’s definitely a huge difference when it comes to loading sites.” - [DIRIKtv](https://youtu.be/N8IOJiOFVEk?t=16)
 * "BetterFox ... will provide good-enough privacy and help with performance." - [Qdoit12Super](https://old.reddit.com/r/browsers/comments/139h4my/suggestion_for_finding_3_good_privacy_focus/jj3n3qn/?context=2)
 * "...drastically changed the experience with Firefox for me. Improved speed, security, smoothness, and removed clutter." - [AppDate](https://www.appdate.lk/technology/2023-browser-showdown/#:~:text=Used%20the%20BetterFox%20user%20config%20settings%20with%20some%20overrides%20which%20drastically%20changed%20the%20experience)
+* "Firefox with uBlock Origin extension and tuned with Betterfox is faster than Safari."  - [cugeloid](https://elephas.app/blog/best-browsers-mac#what-is-the-best-browser-for-mac-according-to-redditandnbsp)
 * "I don't think I could use Firefox without Betterfox." - [Professional_Fun4616](https://old.reddit.com/r/nextdns/comments/15y815f/the_people_behind_betterfox_have_this_awesome/jxb7cir/?context=3)
 * "The best collection of tweaks available." - [AuRiMaS](https://old.reddit.com/r/MozillaFirefox/comments/15cc1vk/about_changes_in_aboutconfig/jtyx910/?context=3)
-* "FF is now much snappier! Thanks a lot for the suggestions!" - [whotheff](https://old.reddit.com/r/firefox/comments/z5auzi/firefox_not_properly_usingrecognizing_gpu_poor/iy36hyz/)
+* "FF is now much snappier!" - [whotheff](https://old.reddit.com/r/firefox/comments/z5auzi/firefox_not_properly_usingrecognizing_gpu_poor/iy36hyz/)
 * "...the experience is so good now I don’t think I’ll go back to any of the chromium based browsers." - [Mr_Compromise](https://old.reddit.com/r/pcmasterrace/comments/zwioe1/what_browser_will_you_be_using_in_2023_please/j1wmbxo/)
 
 ## Support
diff --git a/Securefox.js b/Securefox.js
index 2589d6b58..c6bca8d95 100644
--- a/Securefox.js
+++ b/Securefox.js
@@ -3,7 +3,7 @@
  * Securefox                                                                *
  * "Natura non contristatur"                                                *     
  * priority: provide sensible security and privacy                          *
- * version: 126                                                             *
+ * version: 128                                                             *
  * url: https://github.com/yokoffing/Betterfox                              *
  * credit: Most prefs are reproduced and adapted from the arkenfox project  *
  * credit urL: https://github.com/arkenfox/user.js                          *
@@ -143,13 +143,13 @@ user_pref("urlclassifier.features.socialtracking.skipURLs", "*.instagram.com, *.
 // [6] https://firefox-source-docs.mozilla.org/toolkit/components/antitracking/anti-tracking/cookie-purging/index.html
 //user_pref("privacy.purge_trackers.enabled", true); // DEFAULT
 
-// PREF: Bounce Tracking Protection [FF127+ NIGHTLY]
+// PREF: Bounce Tracking Protection [FF127+]
 // A new standardised variant of Cookie Purging that uses heuristics to detect bounce trackers,
 // rather than relying on tracker lists.
 // [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1895222
 // [2] https://groups.google.com/a/mozilla.org/g/dev-platform/c/M6erM0SjPTM
-//user_pref("privacy.bounceTrackingProtection.enabled", true); // DEFAULT
-//user_pref("privacy.bounceTrackingProtection.enableDryRunMode", false); // DEFAULT
+//user_pref("privacy.bounceTrackingProtection.enabled", true);
+//user_pref("privacy.bounceTrackingProtection.enableDryRunMode", false); // false enables tracker data purging
 
 // PREF: SameSite Cookies
 // Currently, the absence of the SameSite attribute implies that cookies will be
@@ -306,7 +306,9 @@ user_pref("security.pki.crlite_mode", 2);
 // DLP agents are background processes on managed computers that allow enterprises to monitor locally running
 // applications for data exfiltration events, which they can allow/block based on customer defined DLP policies.
 // [1] https://github.com/chromium/content_analysis_sdk
-//user_pref("browser.contentanalysis.default_allow", false); // DEFAULT
+// [2] https://bugzilla.mozilla.org/show_bug.cgi?id=1880314
+//user_pref("browser.contentanalysis.enabled", false); // [FF121+] [DEFAULT]
+//user_pref("browser.contentanalysis.default_result", 0; // [FF127+] [DEFAULT]
 
 /****************************************************************************
  * SECTION: SSL (Secure Sockets Layer) / TLS (Transport Layer Security)    *
@@ -328,7 +330,7 @@ user_pref("security.ssl.treat_unsafe_negotiation_as_broken", true);
 // know that. Setting this pref to true is the only way for the
 // browser to ensure there will be no unsafe renegotiations on
 // the channel between the browser and the server.
-// [STATS] SSL Labs > Renegotiation Support (Feb 2023) reports over 99.3% of top sites have secure renegotiation [4].
+// [STATS] SSL Labs > Renegotiation Support (May 2024) reports over 99.7% of top sites have secure renegotiation [4].
 // [1] https://wiki.mozilla.org/Security:Renegotiation
 // [2] https://datatracker.ietf.org/doc/html/rfc5746
 // [3] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555
@@ -386,13 +388,6 @@ user_pref("security.tls.enable_0rtt_data", false);
 // [1] https://developer.mozilla.org/en-US/docs/Mozilla/Firefox/Releases/3.5/ICC_color_correction_in_Firefox
 //user_pref("browser.display.use_system_colors", false);
 
-// PREF: enforce non-native widget theme
-// Security: removes/reduces system API calls, e.g. win32k API [1]
-// Fingerprinting: provides a uniform look and feel across platforms [2]
-// [1] https://bugzilla.mozilla.org/1381938
-// [2] https://bugzilla.mozilla.org/1411425
-//user_pref("widget.non-native-theme.enabled", true); // DEFAULT
-
 /****************************************************************************
  * SECTION: DISK AVOIDANCE                                                  *
 ****************************************************************************/
@@ -401,13 +396,16 @@ user_pref("security.tls.enable_0rtt_data", false);
 // [NOTE] MSE (Media Source Extensions) are already stored in-memory in PB
 user_pref("browser.privatebrowsing.forceMediaMemoryCache", true);
 
-// PREF: set the minimum interval (in milliseconds) between session save operations,
-// when crashing or restarting to install updates
-// [NOTE] The value is how often FF checks for state changes.
-// Data is only saved when state changes [2].
+// PREF: minimum interval (in ms) between session save operations
+// Firefox periodically saves the user's session so it can restore
+// their most recent tabs and windows if the browser crashes or restarts.
+// The value sets the minimum time between these session save operations.
+// Firefox only saves session data when the state has changed since the last save [2].
+// Work has been done to mitigate potential performance drawbacks of frequent session saving [3].
 // [1] https://kb.mozillazine.org/Browser.sessionstore.interval
-// [2] https://bugzilla.mozilla.org/1304389
-user_pref("browser.sessionstore.interval", 60000); // 1 minute; default=15000 (15s)
+// [2] https://bugzilla.mozilla.org/show_bug.cgi?id=1304389#c64
+// [3] https://bugzilla.mozilla.org/show_bug.cgi?id=1304389#c66
+user_pref("browser.sessionstore.interval", 60000); // 1 minute; default=15000 (15s); 900000=15 min; 1800000=30 min
 
 // PREF: store extra session data when crashing or restarting to install updates
 // Dictates whether sites may save extra session data such as form content,
@@ -434,10 +432,10 @@ user_pref("browser.sessionstore.interval", 60000); // 1 minute; default=15000 (1
 //user_pref("browser.pagethumbnails.capturing_disabled", true); // [HIDDEN PREF]
 
 /******************************************************************************
- * SECTION: CLEARING DATA DEFAULTS                           *
+ * SECTION: SANITIZE HISTORY                                                  *
 ******************************************************************************/
 
-// PREF: reset default 'Time range to clear' for 'Clear Recent History'.
+// PREF: reset default 'Time range to clear' for "Clear Data" and "Clear History"
 // Firefox remembers your last choice. This will reset the value when you start Firefox.
 // 0=everything, 1=last hour, 2=last two hours, 3=last four hours,
 // 4=today, 5=last five minutes, 6=last twenty-four hours
@@ -445,21 +443,36 @@ user_pref("browser.sessionstore.interval", 60000); // 1 minute; default=15000 (1
 // blank value if they are used, but they do work as advertised.
 //user_pref("privacy.sanitize.timeSpan", 0);
 
-// PREF: reset default items to clear with Ctrl-Shift-Del
-// This dialog can also be accessed from the menu History>Clear Recent History
+// PREF: sanitize site data: set manual "Clear Data" items [FF128+]
+// Firefox remembers your last choices. This will reset them when you start Firefox
+// [SETTING] Privacy & Security>Browser Privacy>Cookies and Site Data>Clear Data
+//user_pref("privacy.clearSiteData.cache", true);
+//user_pref("privacy.clearSiteData.cookiesAndStorage", false); // keep false until it respects "allow" site exceptions
+//user_pref("privacy.clearSiteData.historyFormDataAndDownloads", true);
+    //user_pref("privacy.clearSiteData.siteSettings", false);
+
+// PREF: sanitize history: set manual "Clear History" items, also via Ctrl-Shift-Del | clearHistory migration is FF128+
 // Firefox remembers your last choices. This will reset them when you start Firefox.
-// Regardless of what you set privacy.cpd.downloads to, as soon as the dialog
-// for "Clear Recent History" is opened, it is synced to the same as 'history'.
-//user_pref("privacy.cpd.history", true); // Browsing & Download History [DEFAULT]
-//user_pref("privacy.cpd.formdata", true); // Form & Search History [DEFAULT]
-//user_pref("privacy.cpd.cache", true); // Cache [DEFAULT]
-//user_pref("privacy.cpd.cookies", true); // Cookies [DEFAULT]
-//user_pref("privacy.cpd.sessions", false); // Active Logins [DEFAULT]
-//user_pref("privacy.cpd.offlineApps", false); // Offline Website Data [DEFAULT]
-//user_pref("privacy.cpd.siteSettings", false); // Site Preferences [DEFAULT]
+// [NOTE] Regardless of what you set "downloads" to, as soon as the dialog
+// for "Clear Recent History" is opened, it is synced to the same as "history".
+// [SETTING] Privacy & Security>History>Custom Settings>Clear History
+//user_pref("privacy.cpd.cache", true); // [DEFAULT]
+//user_pref("privacy.clearHistory.cache", true);
+//user_pref("privacy.cpd.formdata", true); // [DEFAULT]
+//user_pref("privacy.cpd.history", true); // [DEFAULT]
+    //user_pref("privacy.cpd.downloads", true); // not used; see note above
+//user_pref("privacy.clearHistory.historyFormDataAndDownloads", true);
+//user_pref("privacy.cpd.cookies", false);
+//user_pref("privacy.cpd.sessions", true); // [DEFAULT]
+//user_pref("privacy.cpd.offlineApps", false); // [DEFAULT]
+//user_pref("privacy.clearHistory.cookiesAndStorage", false);
+    //user_pref("privacy.cpd.openWindows", false); // Session Restore
+   //user_pref("privacy.cpd.passwords", false);
+   //user_pref("privacy.cpd.siteSettings", false);
+   //user_pref("privacy.clearHistory.siteSettings", false);
 
 /******************************************************************************
- * SECTION: SHUTDOWN & SANITIZING                           *
+ * SECTION: SHUTDOWN & SANITIZING                                             *
 ******************************************************************************/
 
 // PREF: set History section to show all options
@@ -478,22 +491,40 @@ user_pref("privacy.history.custom", true);
 // [3] https://github.com/yokoffing/Betterfox/issues/272
 //user_pref("privacy.sanitize.sanitizeOnShutdown", true);
 
-// Uncomment individual prefs to disable clearing on shutdown:
+// PREF: sanitize on shutdown: no site exceptions | v2 migration [FF128+]
 // [NOTE] If "history" is true, downloads will also be cleared.
-// [NOTE] Even if "downloads" pref is enabled, downloads won't be cleared unless "history" is set to true!
-//user_pref("privacy.clearOnShutdown.history", true); // [DEFAULT]
-    //user_pref("privacy.clearOnShutdown.downloads", true);
-//user_pref("privacy.clearOnShutdown.formdata", true); // [DEFAULT]
-//user_pref("privacy.clearOnShutdown.sessions", true); // [DEFAULT]
-//user_pref("privacy.clearOnShutdown.offlineApps", true);
-//user_pref("privacy.clearOnShutdown.siteSettings", false); // [DEFAULT]
+//user_pref("privacy.clearOnShutdown.cache", true); // [DEFAULT]
+//user_pref("privacy.clearOnShutdown_v2.cache", true); // [FF128+] [DEFAULT]
+//user_pref("privacy.clearOnShutdown.downloads", true); // [DEFAULT]
+//user_pref("privacy.clearOnShutdown.formdata", true);  // [DEFAULT]
+//user_pref("privacy.clearOnShutdown.history", true);   // [DEFAULT]
+//user_pref("privacy.clearOnShutdown_v2.historyFormDataAndDownloads", true); // [FF128+] [DEFAULT]
+    //user_pref("privacy.clearOnShutdown.siteSettings", false); // [DEFAULT]
+    //user_pref("privacy.clearOnShutdown_v2.siteSettings", false); // [FF128+] [DEFAULT]
+
+// PREF: set Session Restore to clear on shutdown [FF34+]
+// [NOTE] Not needed if Session Restore is not used or it is already cleared with history (2811)
+// [NOTE] However, if true, this pref prevents resuming from crashes.
+//user_pref("privacy.clearOnShutdown.openWindows", true);
+
+// PREF: sanitize on shutdown: respects allow site exceptions | v2 migration [FF128+]
+// Set cookies, site data, cache, etc. to clear on shutdown.
+// [SETTING] Privacy & Security>History>Custom Settings>Clear history when Firefox closes>Settings
+// [NOTE] "sessions": Active Logins (has no site exceptions): refers to HTTP Basic Authentication [1], not logins via cookies.
+// [NOTE] "offlineApps": Offline Website Data: localStorage, service worker cache, QuotaManager (IndexedDB, asm-cache).
+// Clearing "offlineApps" may affect login items after browser restart.
+// [1] https://en.wikipedia.org/wiki/Basic_access_authentication
+//user_pref("privacy.clearOnShutdown.cookies", true); // Cookies
+//user_pref("privacy.clearOnShutdown.offlineApps", true); // Site Data
+//user_pref("privacy.clearOnShutdown.sessions", true);  // Active Logins [DEFAULT]
+//user_pref("privacy.clearOnShutdown_v2.cookiesAndStorage", true); // Cookies, Site Data, Active Logins [FF128+]
 
 // PREF: configure site exceptions
-// [NOTE] Currently, there is no way to add sites via about:config
-// [SETTING] to manage site exceptions: Options>Privacy & Security>Cookies & Site Data>Manage Exceptions
-// or when on the website in question: Ctrl+I>Permissions>Cookies>Allow 
-// For cross-domain logins, add exceptions for both sites:
-// e.g. https://www.youtube.com (site) + https://accounts.google.com (single sign on)
+// [NOTE] Currently, there is no way to add sites via about:config.
+// [SETTING] to add site exceptions: Ctrl+I>Permissions>Cookies>Allow (when on the website in question)
+// [SETTING] To manage site exceptions: Options>Privacy & Security>Cookies & Site Data>Manage Exceptions
+// [NOTE] Exceptions: A "cookie" permission also controls "offlineApps" (see note below). For cross-domain logins,
+// add exceptions for both sites e.g. https://www.youtube.com (site) + https://accounts.google.com (single sign on)
 // [WARNING] Be selective with what cookies you keep, as they also disable partitioning [1]
 // [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1767271
 
@@ -501,8 +532,9 @@ user_pref("privacy.history.custom", true);
  * SECTION: SEARCH / URL BAR                                                 *
 ******************************************************************************/
 
-// PREF: trim certain parts of the URL
+// PREF: darken certain parts of the URL [FF75+]
 // Makes the domain name more prominent by graying out other parts of the URL.
+// Also hidse https:// and www parts from the suggestion URL.
 // [1] https://udn.realityripple.com/docs/Mozilla/Preferences/Preference_reference/browser.urlbar.trimURLs
 // [2] https://winaero.com/firefox-75-strips-https-and-www-from-address-bar-results/
 //user_pref("browser.urlbar.trimURLs", true); // DEFAULT
@@ -514,26 +546,27 @@ user_pref("privacy.history.custom", true);
 // so it's not like we need to see https. It's not a privacy issue, so you can add to your overrides.
 // [TEST] http://www.http2demo.io/
 // [1] https://www.ghacks.net/2023/09/19/firefox-119-will-launch-with-an-important-address-bar-change/
-//user_pref("browser.urlbar.trimHttps", true);
+user_pref("browser.urlbar.trimHttps", true);
+
+// PREF: reveal HTTPS in the URL upon double click [FF127+]
+//user_pref("browser.urlbar.untrimOnUserInteraction.featureGate", true);
 
 // PREF: display "Not Secure" text on HTTP sites
 // Needed with HTTPS-First Policy; not needed with HTTPS-Only Mode.
 user_pref("security.insecure_connection_text.enabled", true);
 user_pref("security.insecure_connection_text.pbmode.enabled", true);
 
-// PREF: do not show search terms in URL bar [FF110+] [FF113+]
+// PREF: do not show search terms in URL bar [FF110+]
 // Show search query instead of URL on search results pages.
 // [SETTING] Search>Search Bar>Use the address bar for search and navigation>Show search terms instead of URL...
 //user_pref("browser.urlbar.showSearchTerms.enabled", false);
+    //user_pref("browser.urlbar.showSearchTerms.featureGate", false); // DEFAULT
 
 // PREF: enable seperate search engine for Private Windows
 // [SETTINGS] Preferences>Search>Default Search Engine>"Use this search engine in Private Windows"
 user_pref("browser.search.separatePrivateDefault.ui.enabled", true);
 // [SETTINGS] "Choose a different default search engine for Private Windows only"
-//user_pref("browser.search.separatePrivateDefault", true); // DEFAULT
-// enable prompt for searching in a Private Window when using normal browsing window URL bar
-// [1] https://www.reddit.com/r/firefox/comments/yg8jyh/different_private_search_option_gone_firefox_106/
-//user_pref("browser.search.separatePrivateDefault.urlbarResult.enabled", true); // HIDDEN
+    //user_pref("browser.search.separatePrivateDefault", true); // DEFAULT
 
 // PREF: enable option to add custom search engine
 // [SETTINGS] Settings -> Search -> Search Shortcuts -> Add
@@ -553,11 +586,11 @@ user_pref("browser.urlbar.suggest.searches", false);
 
 // PREF: disable Firefox Suggest
 // [1] https://github.com/arkenfox/user.js/issues/1257
-//user_pref("browser.urlbar.quicksuggest.enabled", false); // controls whether the UI is shown
-user_pref("browser.urlbar.suggest.quicksuggest.sponsored", false);
-user_pref("browser.urlbar.suggest.quicksuggest.nonsponsored", false);
+user_pref("browser.urlbar.quicksuggest.enabled", false); // controls whether the UI is shown
+user_pref("browser.urlbar.suggest.quicksuggest.sponsored", false); // [FF92+] 
+user_pref("browser.urlbar.suggest.quicksuggest.nonsponsored", false); // [FF95+]
 // hide Firefox Suggest label in URL dropdown box
-//user_pref("browser.urlbar.groupLabels.enabled", false);
+user_pref("browser.urlbar.groupLabels.enabled", false);
 
 // PREF: disable search and form history
 // Be aware that autocomplete form data can be read by third parties [1][2].
@@ -613,9 +646,9 @@ user_pref("network.IDN_show_punycode", true);
 // [4] https://web.dev/why-https-matters/
 // [5] https://www.cloudflare.com/learning/ssl/why-use-https/
 // [6] https://blog.chromium.org/2023/08/towards-https-by-default.html
-user_pref("dom.security.https_first", true);
-//user_pref("dom.security.https_first_pbm", true); // DEFAULT
-user_pref("dom.security.https_first_schemeless", true); // [FF120+]
+user_pref("dom.security.https_first", true); [DEFAULT FF129+]
+//user_pref("dom.security.https_first_pbm", true); // [DEFAULT FF91+]
+//user_pref("dom.security.https_first_schemeless", true); // [FF120+]
 
 /******************************************************************************
  * SECTION: HTTPS-ONLY MODE                              *
@@ -671,7 +704,8 @@ user_pref("dom.security.https_only_mode_error_page_user_suggestions", true);
 // [SETTINGS] Privacy & Security > DNS over HTTPS > Enable secure DNS using:
 // [NOTE] Mode 3 has site-exceptions with a nice UI on the error page.
 // [1] https://hacks.mozilla.org/2018/05/a-cartoon-intro-to-dns-over-https/
-// [2] https://support.mozilla.org/en-US/kb/dns-over-https#w_protection-levels-explained
+// [2] https://wiki.mozilla.org/Security/DOH-resolver-policy
+// [3] https://support.mozilla.org/en-US/kb/dns-over-https#w_protection-levels-explained
 // 0= Default Protection: Firefox decides when to use secure DNS (default)
 // 2= Increased Protection: use DoH and fall back to native DNS if necessary
 // 3= Max Protection: only use DoH; do not fall back to native DNS
@@ -871,32 +905,32 @@ user_pref("editor.truncate_user_pastes", false);
  * SECTION: MIXED CONTENT + CROSS-SITE                                       *
 ******************************************************************************/
 
-// [TEST] https://mixed-script.badssl.com/
-
-// PREF: disable automatic authentication on Microsoft sites [WINDOWS]
-// [1] https://bugzilla.mozilla.org/buglist.cgi?bug_id=1695693,1719301
-//user_pref("network.http.windows-sso.enabled", false);
-
 // PREF: block insecure active content (scripts) on HTTPS pages
+// [TEST] https://mixed-script.badssl.com/
 // [1] https://trac.torproject.org/projects/tor/ticket/21323
 //user_pref("security.mixed_content.block_active_content", true); // DEFAULT
 
+// PREF: upgrade passive content to use HTTPS on secure pages
+// Firefox will now automatically try to upgrade <img>, <audio>, and <video> elements
+// from HTTP to HTTPS if they are embedded within an HTTPS page. If these
+// mixed content elements do not support HTTPS, they will no longer load.
+// [NOTE] Enterprise users may need to disable this setting [1].
+// [1] https://blog.mozilla.org/security/2024/06/05/firefox-will-upgrade-more-mixed-content-in-version-127/
+//user_pref("security.mixed_content.upgrade_display_content", true); // [DEFAULT FF127+]
+    //user_pref("security.mixed_content.upgrade_display_content.audio", true); // [DEFAULT FF119+]
+    //user_pref("security.mixed_content.upgrade_display_content.image", true); // [DEFAULT FF127+]
+    //user_pref("security.mixed_content.upgrade_display_content.video", true); // [DEFAULT FF119+]
+
 // PREF: block insecure passive content (images) on HTTPS pages
-// Using HTTPS First Policy, Firefox will still make a HTTP connection
-// if it can't find a secure connection, so this isn't redundant.
-// There's the small chance that someone does a MITM on the images
-// and deploys a malicious image. (They're rare, but possible).
-// [NOTE] You can remove if using HTTPS-Only Mode.
+// [WARNING] This preference blocks all mixed content, including upgradable.
+// Firefox still attempts an HTTP connection if it can't find a secure one,
+// even with HTTPS First Policy. Although rare, this leaves a small risk of
+// a malicious image being served through a MITM attack.
+// Disable this pref if using HTTPS-Only Mode.
+// [NOTE] Enterprise users may need to enable this setting [1].
+// [1] https://blog.mozilla.org/security/2024/06/05/firefox-will-upgrade-more-mixed-content-in-version-127/
 user_pref("security.mixed_content.block_display_content", true);
 
-// PREF: upgrade passive content to use HTTPS on secure pages
-// [NOTE] You can remove if using HTTPS-Only Mode.
-user_pref("security.mixed_content.upgrade_display_content", true);
-// [FF119+]:
-//user_pref("security.mixed_content.upgrade_display_content.audio", true); // DEFAULT
-user_pref("security.mixed_content.upgrade_display_content.image", true);
-//user_pref("security.mixed_content.upgrade_display_content.video", true); // DEFAULT
-
 // PREF: block insecure downloads from secure sites
 // [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1660952
 //user_pref("dom.block_download_insecure", true); // DEFAULT
@@ -921,6 +955,14 @@ user_pref("extensions.postDownloadThirdPartyPrompt", false);
 // Enable if you're using LINUX.
 //user_pref("browser.tabs.searchclipboardfor.middleclick", false); // DEFAULT WINDOWS macOS
 
+// PREF: disable content analysis by Data Loss Prevention (DLP) agents
+// DLP agents are background processes on managed computers that
+// allow enterprises to monitor locally running applications for
+// data exfiltration events, which they can allow/block based on
+// customer-defined DLP policies.
+// [1] https://github.com/chromium/content_analysis_sdk
+//user_pref("browser.contentanalysis.default_allow", false); // [FF124+] [DEFAULT: false]
+
 // PREF: enforce TLS 1.0 and 1.1 downgrades as session only
 //user_pref("security.tls.version.enable-deprecated", false); // DEFAULT
 
@@ -934,6 +976,10 @@ user_pref("extensions.postDownloadThirdPartyPrompt", false);
 // string is restored if the tab reverts back to the original page. This change prevents some cross-site attacks.
 //user_pref("privacy.window.name.update.enabled", true); // DEFAULT
 
+// PREF: disable automatic authentication on Microsoft sites [WINDOWS]
+// [1] https://bugzilla.mozilla.org/buglist.cgi?bug_id=1695693,1719301
+//user_pref("network.http.windows-sso.enabled", false);
+
 /******************************************************************************
  * SECTION: HEADERS / REFERERS                                               *
 ******************************************************************************/
@@ -1007,6 +1053,13 @@ user_pref("privacy.userContext.ui.enabled", true);
 // [SETTING] General>Tabs>Enable Container Tabs>Settings>Select a container for each new tab ***/
 //user_pref("privacy.userContext.newTabContainerOnLeftClick.enabled", true);
 
+// PREF: set external links to open in site-specific containers [FF123+]
+// Depending on your container extension(s) and their settings:
+// true=Firefox will not choose a container (so your extension can)
+// false=Firefox will choose the container/no-container (default)
+// [1] https://bugzilla.mozilla.org/1874599
+    //user_pref("browser.link.force_default_user_context_id_for_external_opens", true);
+
 /******************************************************************************
  * SECTION: WEBRTC                                                           *
 ******************************************************************************/
@@ -1066,12 +1119,6 @@ user_pref("media.peerconnection.ice.default_address_only", true);
  * SECTION: VARIOUS                                                          *
 ******************************************************************************/
 
-// PREF: enable FTP protocol
-// Firefox redirects any attempt to load a FTP resource.
-// to the default search engine if the FTP protocol is disabled.
-// [1] https://www.ghacks.net/2018/02/20/firefox-60-with-new-preference-to-disable-ftp/
-//user_pref("network.ftp.enabled", true);
-
 // PREF: decode URLs in other languages
 // [WARNING] Causes unintended consequences when copy+paste links with underscores.
 // [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1320061
@@ -1081,6 +1128,39 @@ user_pref("media.peerconnection.ice.default_address_only", true);
 // If this is less than 5, then pasting code into the web console is disabled.
 //user_pref("devtools.selfxss.count", 5);
 
+// PREF: disable asm.js [FF22+]
+// [WARNING] Disabling this pref may disrupt your browsing experience.
+// [1] http://asmjs.org/
+// [2] https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=asm.js
+// [3] https://rh0dev.github.io/blog/2017/the-return-of-the-jit/
+//user_pref("javascript.options.asmjs", false);
+
+// PREF: disable Ion and baseline JIT to harden against JS exploits
+// [NOTE] When both Ion and JIT are disabled, and trustedprincipals
+// is enabled, then Ion can still be used by extensions [4].
+// [WARNING] Disabling these prefs will disrupt your browsing experience [6].
+// Tor Browser doesn't even ship with these disabled by default.
+// [1] https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=firefox+jit
+// [2] https://microsoftedge.github.io/edgevr/posts/Super-Duper-Secure-Mode/
+// [3] https://support.microsoft.com/en-us/microsoft-edge/enhance-your-security-on-the-web-with-microsoft-edge-b8199f13-b21b-4a08-a806-daed31a1929d
+// [4] https://bugzilla.mozilla.org/show_bug.cgi?id=1599226
+// [5] https://wiki.mozilla.org/IonMonkey
+// [6] https://github.com/arkenfox/user.js/issues/1791#issuecomment-1891273681
+//user_pref("javascript.options.ion", false);
+//user_pref("javascript.options.baselinejit", false);
+//user_pref("javascript.options.jit_trustedprincipals", true); // [FF75+] [HIDDEN PREF]
+
+// PREF: disable WebAssembly [FF52+]
+// [WARNING] Disabling this pref may disrupt your browsing experience.
+// Vulnerabilities [1] have increasingly been found, including those known and fixed
+// in native programs years ago [2]. WASM has powerful low-level access, making
+// certain attacks (brute-force) and vulnerabilities more possible.
+// [STATS] ~0.2% of websites, about half of which are for cryptomining / malvertising [2][3]
+// [1] https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=wasm
+// [2] https://spectrum.ieee.org/tech-talk/telecom/security/more-worries-over-the-security-of-web-assembly
+// [3] https://www.zdnet.com/article/half-of-the-websites-using-webassembly-use-it-for-malicious-purposes ***/
+//user_pref("javascript.options.wasm", false);
+
 /******************************************************************************
  * SECTION: SAFE BROWSING (SB)                                               *
 ******************************************************************************/
@@ -1167,12 +1247,10 @@ user_pref("browser.safebrowsing.downloads.remote.enabled", false);
     //user_pref("identity.fxaccounts.autoconfig.uri", "");
 
 // PREF: disable Firefox View [FF106+]
+// You can no longer disable Firefox View as of [FF127+].
+// To hide the icon from view, see [2].
 // [1] https://support.mozilla.org/en-US/kb/how-set-tab-pickup-firefox-view#w_what-is-firefox-view
-//user_pref("browser.tabs.firefox-view", false);
-//user_pref("browser.tabs.firefox-view-next", false); // [FF119+]
-//user_pref("browser.tabs.firefox-view-newIcon", false); // [FF119+]
-    //user_pref("browser.firefox-view.search.enabled", false); // [FF122+]
-    //user_pref("browser.firefox-view.virtual-list.enabled", false); // [FF122+]
+// [2] https://support.mozilla.org/en-US/kb/how-set-tab-pickup-firefox-view#w_how-do-i-remove-firefox-view-from-the-tabs-bar
 
 // PREF: disable the Firefox View tour from popping up
 //user_pref("browser.firefox-view.feature-tour", "{\"screen\":\"\",\"complete\":true}");
@@ -1200,12 +1278,14 @@ user_pref("permissions.default.desktop-notification", 2);
 user_pref("permissions.default.geo", 2);
 
 // PREF: use Mozilla geolocation service instead of Google when geolocation is enabled
-user_pref("geo.provider.network.url", "https://location.services.mozilla.com/v1/geolocate?key=%MOZILLA_API_KEY%");
+// [NOTE] Mozilla's geolocation service is discontinued 12 June 2024 [1].
+// [1] https://github.com/mozilla/ichnaea/issues/2065
+//user_pref("geo.provider.network.url", "https://location.services.mozilla.com/v1/geolocate?key=%MOZILLA_API_KEY%");
 
 // PREF: disable using the OS's geolocation service
 //user_pref("geo.provider.ms-windows-location", false); // [WINDOWS]
 //user_pref("geo.provider.use_corelocation", false); // [MAC]
-//user_pref("geo.provider.use_gpsd", false); // [LINUX] broken on Linux?
+//user_pref("geo.provider.use_gpsd", false); // [LINUX]
 //user_pref("geo.provider.use_geoclue", false); // [FF102+] [LINUX]
 
 // PREF: logging geolocation to the console
@@ -1346,6 +1426,11 @@ user_pref("network.captive-portal-service.enabled", false);
 // [1] https://bugzilla.mozilla.org/1460537
 user_pref("network.connectivity-service.enabled", false);
 
+// PREF: disable Privacy-Preserving Attribution [FF128+]
+// [SETTING] Privacy & Security>Website Advertising Preferences>Allow websites to perform privacy-preserving ad measurement
+// [1] https://support.mozilla.org/kb/privacy-preserving-attribution
+user_pref("dom.private-attribution.submission.enabled", false);
+
 // PREF: software that continually reports what default browser you are using [WINDOWS]
 // [WARNING] Breaks "Make Default..." button in Preferences to set Firefox as the default browser [2].
 // [1] https://techdows.com/2020/04/what-is-firefox-default-browser-agent-and-how-to-disable-it.html
@@ -1357,12 +1442,10 @@ user_pref("network.connectivity-service.enabled", false);
 
 // PREF: SERP Telemetry [FF125+]
 // [1] https://blog.mozilla.org/en/products/firefox/firefox-search-update/
-//user_pref("browser.search.serpEventTelemetry.enabled", false); // [removed in FF128?]
 //user_pref("browser.search.serpEventTelemetryCategorization.enabled", false);
 
 // PREF: assorted telemetry
-// [NOTE] Shouldn't be needed for user.js, but browser forks
-// may want to disable these prefs.
+// [NOTE] Shouldn't be needed for user.js, but browser forks may want to disable these prefs.
 //user_pref("doh-rollout.disable-heuristics", true); // ensure DoH doesn't get enabled automatically
 //user_pref("dom.security.unexpected_system_load_telemetry_enabled", false);
 //user_pref("messaging-system.rsexperimentloader.enabled", false);
@@ -1372,7 +1455,5 @@ user_pref("network.connectivity-service.enabled", false);
 //user_pref("security.certerrors.recordEventTelemetry", false);
 //user_pref("security.protectionspopup.recordEventTelemetry", false);
 //user_pref("signon.recipes.remoteRecipes.enabled", false);
-//user_pref("security.identitypopup.recordEventTelemetry", false); // ESR only; removed FF116+ [1]
-// [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1837979
 //user_pref("privacy.trackingprotection.emailtracking.data_collection.enabled", false);
 //user_pref("messaging-system.askForFeedback", true); // DEFAULT [FF120+]
diff --git a/personal/user-overrides.js b/personal/user-overrides.js
index 84af313bc..48041607a 100644
--- a/personal/user-overrides.js
+++ b/personal/user-overrides.js
@@ -20,6 +20,7 @@
 /** FASTFOX ***/
 user_pref("browser.sessionstore.restore_pinned_tabs_on_demand", true);
 user_pref("browser.sessionhistory.max_total_viewers", 4); // only remember # of pages in Back-Forward cache
+user_pref("browser.cache.disk.enable", false); // disable disk cache
 
 /** SECUREFOX ***/
 //user_pref("urlclassifier.features.socialtracking.skipURLs", "*.twitter.com, *.twimg.com"); // removed *.instagram.com
@@ -28,7 +29,7 @@ user_pref("extensions.formautofill.addresses.enabled", false); // disable addres
 user_pref("extensions.formautofill.creditCards.enabled", false); // disable credit card manager
 user_pref("browser.urlbar.showSearchSuggestionsFirst", false); // unselect "Show search suggestions ahead of browsing history in address bar results" for clean UI
 //user_pref("browser.urlbar.suggest.trending", false); // FF119+ disable showing trending searches; unselect for clean UI
-user_pref("browser.urlbar.groupLabels.enabled", false); // hide Firefox Suggest label in URL dropdown box
+//user_pref("browser.urlbar.groupLabels.enabled", false); // hide Firefox Suggest label in URL dropdown box
 user_pref("signon.management.page.breach-alerts.enabled", false); // extra hardening
 user_pref("signon.autofillForms", false); // unselect "Autofill logins and passwords" for clean UI
 user_pref("signon.generation.enabled", false); // unselect "Suggest and generate strong passwords" for clean UI
@@ -44,16 +45,14 @@ user_pref("browser.search.update", false); // do not update opensearch engines
 user_pref("network.trr.confirmationNS", "skip"); // skip TRR confirmation request
 user_pref("extensions.webextensions.restrictedDomains", ""); // remove Mozilla domains so adblocker works on pages
 user_pref("identity.fxaccounts.enabled", false); // disable Firefox Sync
-user_pref("browser.tabs.firefox-view", false); // disable Firefox View
-user_pref("browser.tabs.firefox-view-next", false); // disable Firefox View [FF119+]
 user_pref("browser.firefox-view.feature-tour", "{\"screen\":\"\",\"complete\":true}"); // disable the Firefox View tour from popping up for new profiles
 user_pref("accessibility.force_disabled", 1); // disable Accessibility features
 //user_pref("security.ssl.require_safe_negotiation", true); // safe negotiation
 user_pref("security.cert_pinning.enforcement_level", 2); // strict public key pinning
-user_pref("browser.download.useDownloadDir", true); // one-click downloads
+//user_pref("browser.download.useDownloadDir", true); // one-click downloads
 
 /** PESKYFOX ***/
-user_pref("cookiebanners.service.mode", 2); // fall back to the accept button to remove banner
+//user_pref("cookiebanners.service.mode", 2); // fall back to the accept button to remove banner
 user_pref("devtools.accessibility.enabled", false); // removes un-needed "Inspect Accessibility Properties" on right-click
 user_pref("browser.newtabpage.activity-stream.showSponsoredTopSites", false); // Settings>Home>Firefox Home Content>Recent Activity>Shortcuts>Sponsored shortcuts
 user_pref("browser.newtabpage.activity-stream.showSponsored", false); // Settings>Home>Firefox Home Content>Recent Activity>Recommended by Pocket>Sponsored Stories  
@@ -61,7 +60,7 @@ user_pref("browser.newtabpage.activity-stream.section.highlights.includeBookmark
 user_pref("browser.newtabpage.activity-stream.section.highlights.includeDownloads", false); // Settings>Home>Firefox Home Content>Recent Activity>Most Recent Download
 user_pref("browser.newtabpage.activity-stream.section.highlights.includeVisited", false); // Settings>Home>Firefox Home Content>Recent Activity>Visited Pages
 user_pref("browser.newtabpage.activity-stream.section.highlights.includePocket", false); // Settings>Home>Firefox Home Content>Recent Activity>Pages Saved to Pocket
-user_pref("browser.download.useDownloadDir", true); // use direct downloads
+//user_pref("browser.download.useDownloadDir", true); // use direct downloads
 user_pref("browser.download.folderList", 0); // 0=desktop, 1=downloads, 2=last used
 user_pref("browser.toolbars.bookmarks.visibility", "never"); // always hide bookmark bar
 user_pref("browser.startup.homepage_override.mstone", "ignore"); // What's New page after updates; master switch
@@ -70,7 +69,7 @@ user_pref("browser.urlbar.suggest.bookmark", false); // Bookmarks; hide URL bar
 user_pref("browser.urlbar.suggest.openpage", false); // Open tabs; hide URL bar dropdown suggestions
 user_pref("browser.urlbar.suggest.topsites", false); // Shortcuts; disable dropdown suggestions with empty query
 user_pref("browser.urlbar.suggest.engines", false); // Search engines; tab-to-search
-//user_pref("browser.urlbar.suggest.searches", false); // (needed?); hide URL bar dropdown suggestions
+user_pref("browser.urlbar.quicksuggest.enabled", false); // hide Firefox Suggest UI in the settings
 //user_pref("browser.urlbar.maxRichResults", 1); // minimum suggestion needed for URL bar autofill
 user_pref("browser.bookmarks.max_backups", 0); // minimize disk use; manually back-up
 user_pref("view_source.wrap_long_lines", true);  // wrap source lines
@@ -88,7 +87,6 @@ user_pref("media.videocontrols.picture-in-picture.urlbar-button.enabled", false)
 user_pref("reader.parse-on-load.enabled", false); // disable reader mode
 //user_pref("reader.color_scheme", "auto"); // match system theme for when reader is enabled
 //user_pref("browser.urlbar.openintab", true); // stay on current site and open new tab when typing in URL bar
-user_pref("browser.urlbar.trimHttps", true); // hide https in URL bar [FF119]
 
 /** DELETE IF NOT NIGHTLY ***/
 user_pref("privacy.userContext.enabled", false); // disable Containers functionality
@@ -113,9 +111,22 @@ user_pref("gfx.font_rendering.directwrite.use_gdi_table_loading", false);
 //user_pref("font.name.serif.x-western", "Roboto Slab"); // serif font
 //user_pref("font.name.sans-serif.x-western", "Roboto"); // sans-serif font
 //user_pref("font.name.monospace.x-western", "Fira Code"); // monospace font
-user_pref("browser.cache.disk.enable", false); // disable disk cache
-user_pref("browser.cache.memory.capacity", 65536); // default= -1 (32768)
-user_pref("media.memory_cache_max_size", 131072); // AF=65536
+
+/** DELETE IF NOT ENTERPRISE WINDOWS LAPTOP ***/
+//user_pref("network.trr.mode", 3); // enable TRR (without System fallback)
+//user_pref("browser.startup.preXulSkeletonUI", false); // WINDOWS
+user_pref("gfx.font_rendering.cleartype_params.rendering_mode", 5);
+user_pref("gfx.font_rendering.cleartype_params.cleartype_level", 100);
+user_pref("gfx.font_rendering.cleartype_params.force_gdi_classic_for_families", "");
+user_pref("gfx.font_rendering.cleartype_params.force_gdi_classic_max_size", 6);
+user_pref("gfx.font_rendering.directwrite.use_gdi_table_loading", false);
+user_pref("toolkit.legacyUserProfileCustomizations.stylesheets", false); // no need for userChrome
+user_pref("browser.urlbar.suggest.history", true); // Browsing history
+user_pref("browser.urlbar.suggest.bookmark", true); // Bookmarks
+//user_pref("browser.urlbar.suggest.openpage", true); // Open tabs
+//user_pref("browser.urlbar.suggest.topsites", true); // Shortcuts
+user_pref("browser.download.folderList", 1); // 0=desktop, 1=downloads, 2=last used
+user_pref("browser.download.useDownloadDir", false); // ask where to download
 
 /** DELETE IF NOT macOS LAPTOP ***/
 user_pref("network.trr.mode", 2); // enable TRR (with System fallback)
diff --git a/user.js b/user.js
index 6932ea8b8..40f9e8b3f 100644
--- a/user.js
+++ b/user.js
@@ -10,7 +10,7 @@
 /****************************************************************************
  * Betterfox                                                                *
  * "Ad meliora"                                                             *
- * version: 126                                                             *
+ * version: 128                                                             *
  * url: https://github.com/yokoffing/Betterfox                              *
 ****************************************************************************/
 
@@ -87,11 +87,14 @@ user_pref("browser.sessionstore.interval", 60000);
 user_pref("privacy.history.custom", true);
 
 /** SEARCH / URL BAR ***/
+user_pref("browser.urlbar.trimHttps", true);
 user_pref("browser.search.separatePrivateDefault.ui.enabled", true);
 user_pref("browser.urlbar.update2.engineAliasRefresh", true);
 user_pref("browser.search.suggest.enabled", false);
+user_pref("browser.urlbar.quicksuggest.enabled", false);
 user_pref("browser.urlbar.suggest.quicksuggest.sponsored", false);
 user_pref("browser.urlbar.suggest.quicksuggest.nonsponsored", false);
+user_pref("browser.urlbar.groupLabels.enabled", false);
 user_pref("browser.formfill.enable", false);
 user_pref("security.insecure_connection_text.enabled", true);
 user_pref("security.insecure_connection_text.pbmode.enabled", true);
@@ -109,8 +112,6 @@ user_pref("editor.truncate_user_pastes", false);
 
 /** MIXED CONTENT + CROSS-SITE ***/
 user_pref("security.mixed_content.block_display_content", true);
-user_pref("security.mixed_content.upgrade_display_content", true);
-user_pref("security.mixed_content.upgrade_display_content.image", true);
 user_pref("pdfjs.enableScripting", false);
 user_pref("extensions.postDownloadThirdPartyPrompt", false);
 
@@ -130,7 +131,6 @@ user_pref("browser.safebrowsing.downloads.remote.enabled", false);
 /** MOZILLA ***/
 user_pref("permissions.default.desktop-notification", 2);
 user_pref("permissions.default.geo", 2);
-user_pref("geo.provider.network.url", "https://location.services.mozilla.com/v1/geolocate?key=%MOZILLA_API_KEY%");
 user_pref("permissions.manager.defaultsUrl", "");
 user_pref("webchannel.allowObject.urlWhitelist", "");
 
@@ -166,6 +166,7 @@ user_pref("browser.crashReports.unsubmittedCheck.autoSubmit2", false);
 user_pref("captivedetect.canonicalURL", "");
 user_pref("network.captive-portal-service.enabled", false);
 user_pref("network.connectivity-service.enabled", false);
+user_pref("dom.private-attribution.submission.enabled", false);
 
 /****************************************************************************
  * SECTION: PESKYFOX                                                        *