From 48f95f2ac7f1975b5e1d2b925f71811ca0446f40 Mon Sep 17 00:00:00 2001 From: Thorin-Oakenpants Date: Wed, 17 Jan 2018 17:21:06 +1300 Subject: [PATCH] 2706: set 3rd party HTTP cookies as session-only --- user.js | 3 +++ 1 file changed, 3 insertions(+) diff --git a/user.js b/user.js index ce2e2f2..36693da 100644 --- a/user.js +++ b/user.js @@ -1429,6 +1429,9 @@ user_pref("network.cookie.thirdparty.sessionOnly", true); /* 2705: disable HTTP sites setting cookies with the "secure" directive (default: true) (FF52+) * [1] https://developer.mozilla.org/Firefox/Releases/52#HTTP ***/ user_pref("network.cookie.leave-secure-alone", true); +/* 2706: set third party non-secure (i.e HTTP) cookies as session only (FF58+) + * [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1160368 ***/ +user_pref("network.cookie.thirdparty.nonsecureSessionOnly", true); /* 2710: disable DOM (Document Object Model) Storage * [WARNING] This will break a LOT of sites' functionality. * You are better off using an extension for more granular control ***/