102 lines
5.7 KiB
Nix
102 lines
5.7 KiB
Nix
{
|
|
/*** [SECTION 4600]: RFP ALTERNATIVES
|
|
[WARNING] DO NOT USE prefs in this section with RFP as they can interfere
|
|
***/
|
|
/* [SETUP-non-RFP] Non-RFP users replace the * with a slash on this line to enable these
|
|
// FF55+
|
|
// 4601: [2514] spoof number of CPU cores [FF48+]
|
|
// [1] https://bugzilla.mozilla.org/1008453
|
|
// [2] https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/21675
|
|
// [3] https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/22127
|
|
// [4] https://html.spec.whatwg.org/multipage/workers.html#navigator.hardwareconcurrency
|
|
user_pref("dom.maxHardwareConcurrency", 2);
|
|
// FF56+
|
|
// 4602: [2411] disable resource/navigation timing
|
|
user_pref("dom.enable_resource_timing", false);
|
|
// 4603: [2412] disable timing attacks
|
|
// [1] https://wiki.mozilla.org/Security/Reviews/Firefox/NavigationTimingAPI
|
|
// user_pref("dom.enable_performance", false);
|
|
// 4604: [2512] disable device sensor API
|
|
// Optional protection depending on your device
|
|
// [1] https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/15758
|
|
// [2] https://blog.lukaszolejnik.com/stealing-sensitive-browser-data-with-the-w3c-ambient-light-sensor-api/
|
|
// [3] https://bugzilla.mozilla.org/buglist.cgi?bug_id=1357733,1292751
|
|
// user_pref("device.sensors.enabled", false);
|
|
// 4605: [2515] disable site specific zoom
|
|
// Zoom levels affect screen res and are highly fingerprintable. This does not stop you using
|
|
// zoom, it will just not use/remember any site specific settings. Zoom levels on new tabs
|
|
// and new windows are reset to default and only the current tab retains the current zoom
|
|
user_pref("browser.zoom.siteSpecific", false);
|
|
// 4606: [2501] disable gamepad API - USB device ID enumeration
|
|
// Optional protection depending on your connected devices
|
|
// [1] https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/13023
|
|
// user_pref("dom.gamepad.enabled", false);
|
|
// 4607: [2503] disable giving away network info [FF31+]
|
|
// e.g. bluetooth, cellular, ethernet, wifi, wimax, other, mixed, unknown, none
|
|
// [1] https://developer.mozilla.org/docs/Web/API/Network_Information_API
|
|
// [2] https://wicg.github.io/netinfo/
|
|
// [3] https://bugzilla.mozilla.org/960426
|
|
user_pref("dom.netinfo.enabled", false); // [DEFAULT: true on Android]
|
|
// 4608: [2021] disable the SpeechSynthesis (Text-to-Speech) part of the Web Speech API
|
|
// [1] https://developer.mozilla.org/docs/Web/API/Web_Speech_API
|
|
// [2] https://developer.mozilla.org/docs/Web/API/SpeechSynthesis
|
|
// [3] https://wiki.mozilla.org/HTML5_Speech_API
|
|
user_pref("media.webspeech.synth.enabled", false);
|
|
// FF57+
|
|
// 4610: [2506] disable video statistics - JS performance fingerprinting [FF25+]
|
|
// [1] https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/15757
|
|
// [2] https://bugzilla.mozilla.org/654550
|
|
user_pref("media.video_stats.enabled", false);
|
|
// 4611: [2509] disable touch events
|
|
// fingerprinting attack vector - leaks screen res & actual screen coordinates
|
|
// 0=disabled, 1=enabled, 2=autodetect
|
|
// Optional protection depending on your device
|
|
// [1] https://developer.mozilla.org/docs/Web/API/Touch_events
|
|
// [2] https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/10286
|
|
// user_pref("dom.w3c_touch_events.enabled", 0);
|
|
// FF59+
|
|
// 4612: [2505] disable media device enumeration [FF29+]
|
|
// [1] https://wiki.mozilla.org/Media/getUserMedia
|
|
// [2] https://developer.mozilla.org/docs/Web/API/MediaDevices/enumerateDevices
|
|
user_pref("media.navigator.enabled", false);
|
|
// 4613: [2511] disable MediaDevices change detection [FF51+]
|
|
// [1] https://developer.mozilla.org/docs/Web/Events/devicechange
|
|
// [2] https://developer.mozilla.org/docs/Web/API/MediaDevices/ondevicechange
|
|
user_pref("media.ondevicechange.enabled", false);
|
|
// FF60+
|
|
// 4614: [2522] disable WebGL debug info being available to websites
|
|
// [1] https://bugzilla.mozilla.org/1171228
|
|
// [2] https://developer.mozilla.org/docs/Web/API/WEBGL_debug_renderer_info
|
|
user_pref("webgl.enable-debug-renderer-info", false);
|
|
// FF63+
|
|
// 4615: enforce prefers-reduced-motion as no-preference [FF63+] [RESTART]
|
|
// 0=no-preference, 1=reduce
|
|
user_pref("ui.prefersReducedMotion", 0); // [HIDDEN PREF]
|
|
// FF64+
|
|
// 4616: [2516] disable PointerEvents [FF86 or lower]
|
|
// [1] https://developer.mozilla.org/docs/Web/API/PointerEvent
|
|
// [-] https://bugzilla.mozilla.org/1688105
|
|
user_pref("dom.w3c_pointer_events.enabled", false);
|
|
// FF67+
|
|
// 4617: [2618] disable exposure of system colors to CSS or canvas [FF44+]
|
|
// [NOTE] See second listed bug: may cause black on black for elements with undefined colors
|
|
// [SETUP-CHROME] Might affect CSS in themes and extensions
|
|
// [1] https://bugzilla.mozilla.org/buglist.cgi?bug_id=232227,1330876
|
|
user_pref("ui.use_standins_for_native_colors", true);
|
|
// 4618: enforce prefers-color-scheme as light [FF67+]
|
|
// 0=light, 1=dark : This overrides your OS value
|
|
user_pref("ui.systemUsesDarkTheme", 0); // [HIDDEN PREF]
|
|
// FF72+
|
|
// 4619: [2510] disable Web Audio API [FF51+]
|
|
// [1] https://bugzilla.mozilla.org/1288359
|
|
// user_pref("dom.webaudio.enabled", false);
|
|
// FF80+
|
|
// 4620: limit font visibility (Windows, Mac, some Linux) [FF79+]
|
|
// Uses hardcoded lists with two parts: kBaseFonts + kLangPackFonts [1]
|
|
// 1=only base system fonts, 2=also fonts from optional language packs, 3=also user-installed fonts
|
|
// [NOTE] Bundled fonts are auto-allowed
|
|
// [1] https://searchfox.org/mozilla-central/search?path=StandardFonts*.inc
|
|
user_pref("layout.css.font-visibility.level", 1);
|
|
// ***/
|
|
}
|