Commit Graph

1050 Commits

Author SHA1 Message Date
Thorin-Oakenpants
a1cdbc8324
1408 graphite, closes #1408 and 2619 puncyode 2019-12-18 07:46:44 +00:00
earthlng
cd07641a9d 2701: make sure cookieBehavior is always honored (#866)
see #862
2019-12-18 05:02:25 +00:00
earthlng
9c02949e04
0000: config.xhtml in FF73+ (#865) 2019-12-17 15:00:34 +00:00
Thorin-Oakenpants
5672bc8cc8
2032 removed, 4002 inactive, closes #840 2019-12-12 01:21:17 +00:00
Thorin-Oakenpants
df1732745d
0308: seach engine updates: better info #840 2019-12-10 22:07:23 +00:00
Thorin-Oakenpants
30daf8640c
FPI stuff 2019-12-09 20:18:42 +00:00
earthlng
4074a37e1d 1201 + 1270 update (#859)
trim by a line, remove extra space, fixup on red, indicate it only applies if 1201 is false
2019-12-07 18:26:39 +00:00
Thorin-Oakenpants
97043b0ce1
71-beta 2019-12-06 12:19:21 +00:00
Thorin-Oakenpants
42ea484017
71 deprecated (#856) 2019-12-04 14:13:49 +13:00
Thorin-Oakenpants
3f6340b69c
OMG!! 2019-12-03 14:51:44 +00:00
earthlng
884e84a4cb about:config warning back to the top + active (#855) 2019-12-04 03:44:59 +13:00
Thorin-Oakenpants
560acfc94f
70 final 2019-12-03 07:31:47 +00:00
Thorin-Oakenpants
fb263f5624
favicons: 1031 better info, 1032 inactive #840 (#851) 2019-12-02 23:04:09 +13:00
Thorin-Oakenpants
19b392b83d
70-beta 2019-11-24 05:23:10 +00:00
Thorin-Oakenpants
2db76c95c3
1603: breaks icloud, closes #850 2019-11-23 16:19:09 +00:00
Thorin-Oakenpants
8f76d9439f
2002: add FF70 bugzilla link 2019-11-22 15:26:38 +00:00
earthlng
f0980b5cb8
2002: add proxy_only_if_behind_proxy 2019-11-22 15:19:37 +00:00
Thorin-Oakenpants
450c9a9e0f
simplify ciphers, closes #839 (#844)
* simplify ciphers

- let's not encourage (remove options 1, 2) changing your cipher suite FP
- remove "it's quite technical ..." (everything is technical to someone), trim to one line
- add test link so users can just see that it's FP'able
- reinforce not to fuck with the cipher suite in the cipher's sub-section
2019-11-23 03:23:08 +13:00
Thorin-Oakenpants
6acfdaccbd
RFP stuff 2019-11-20 04:48:15 +00:00
Thorin-Oakenpants
a0e0a2a6c9
2680 tweak #840 2019-11-19 16:26:14 +00:00
Thorin-Oakenpants
f67e729197
whatsNewPanel correct version 2019-11-19 06:39:08 +00:00
rusty-snake
19526b573c 2805 note, FPI change (#842) 2019-11-19 16:31:48 +13:00
Thorin-Oakenpants
b0221ec838
1576254 version fixup 2019-11-17 10:33:02 +00:00
Thorin-Oakenpants
a3611b7cf8
changes to prefs affecting extensions
also first word on pdfjs.disabled, to be consistent
2019-11-14 02:39:48 +00:00
Thorin-Oakenpants
0cfb2fb06d
1703: remove
default true since FF61, and ESR60 is now EOL
2019-11-09 23:23:34 +00:00
Thorin-Oakenpants
d5f297ed42
5000s: disable what's new 2019-11-08 18:06:35 +00:00
earthlng
c13dbdf40d 1201 update (#838)
https://wiki.mozilla.org/Security:Renegotiation describes

> **the new default behaviour** that was introduced in experimental mozilla-central nightly versions on 2010-02-08

where the last step is

> - should the server (or a MITM) request **renegotiation**, Mozilla will terminate the connection with an error message

and then after talking about breakage ...

> The above defaults may break some client/server environments where a Server is still using old software and requires renegotiation.

mentions workarounds to reduce said breakage:

> In order to give such environments a way to keep using Firefox (et.al.) to connect to their vulnerable server infrastructure, the following preferences are available:

specifically talking about the first 2 prefs listed there, one allowing to specify a list of hosts "where renegotiation may be performed" and the 2nd one "completely disables the new protection mechanisms".
But both those prefs were removed in FF38, meaning that since then it's no longer possible to disable the default behaviour that is "should the server (or a MITM) request **renegotiation**, Mozilla will terminate the connection with an error message".

But all of this is about the **re**-negotiation part and not negotiation. And nowhere does it say "insecure" renegotiation, which, as I read it, means that FF will terminate the connection for any kind of **renegotiation**, safe or unsafe.

1201 controls the negotiation part:

> This pref controls the behaviour during the initial negotiation between client and server.
> If set to true, a Mozilla client will reject all connection attempts to servers that are still using the old SSL/TLS protocol and which might be vulnerable to the attack.
> Setting this preference to “true” is the only way to guarantee full protection against the attack.

I think "servers that are still using the old SSL/TLS protocol" actually means servers that **only** support the old protocols.
Servers still supporting those old protocols in addition to some new protocol versions should not be affected by this pref because FF will be able to negotiate to use one of the newer protocol versions.

Ergo lets fix the title and remove the line about renegotiation support because I think that's irrelevant.


ps. the sslpulse link is nice and I'd like to keep it somewhere but it doesn't really fit in 1201 IMO so I moved it to 1202.
2019-11-09 05:42:21 +13:00
earthlng
6173104a9e re-add relevant deprecated items for ESR users (#837)
makes the prefsCleaner scripts useful again for users updating from ESR60 to ESR68
2019-11-09 05:30:03 +13:00
earthlng
895f8d01d5 FF70+: shield studies no longer tied to FHR (#836)
https://bugzilla.mozilla.org/1569330
2019-11-09 02:01:33 +13:00
Thorin-Oakenpants
65dfad5c76
2701: UI changes 2019-11-06 11:37:24 +00:00
Thorin-Oakenpants
16756646bb
remove DoH, closes #790 2019-10-31 09:49:12 +00:00
Thorin-Oakenpants
e4f80225d8
FF72: FPI & IPv6 2019-10-28 12:12:52 +00:00
Thorin-Oakenpants
539750d2f2
FF70 hidden/default changes 2019-10-27 04:41:27 +00:00
Thorin-Oakenpants
d91226ed55
tweakin' 2019-10-20 23:59:16 +00:00
Thorin-Oakenpants
301fcd059d
1003: capacity no longer hidden 2019-10-20 23:36:48 +00:00
Thorin-Oakenpants
1cc9a08a18
remove ESR60.x deprecated
These are archived in #123
2019-10-20 22:40:53 +00:00
Thorin-Oakenpants
5d1857ddd8
start 70 commits 2019-10-20 22:32:37 +00:00
Thorin-Oakenpants
226af6f679
69 final 2019-10-20 22:20:50 +00:00
Thorin-Oakenpants
5b82afd5bd
webgl.dxgl.enabled, closes #814 2019-10-15 09:27:44 +00:00
Thorin-Oakenpants
1b6239eab8
remove 0804, closes #808
if anyone can show me how this stops history leaks, then I'll put it back with a note saying it's been broken since FF61
2019-10-14 01:13:27 +00:00
Thorin-Oakenpants
624e50faac
replace ` with ' 2019-10-05 17:51:34 +00:00
Thorin-Oakenpants
a9e9392172
add some SB back, see #803 2019-10-05 17:47:25 +00:00
Thorin-Oakenpants
201210111e
char fix 2019-10-05 15:12:21 +00:00
Thorin-Oakenpants
dc4d9e4dae
revamp 0200s (#807), closes #0806
- split geo related vs language/locale related
- rip out intl.locale.requested
- rip out intl.regional_prefs.use_os_locales
- add intl.charset.fallback.override
2019-10-06 04:04:41 +13:00
Thorin-Oakenpants
e1b0eae740 goodbye http and other stuff (#801)
* goodbye http and other stuff

* dead link

* put back asmjs [1] ref

* 0805 test

* typo

* 1222 refs

* 1222 FF version

FYI: https://bugzilla.mozilla.org/show_bug.cgi?id=629558

* 2684: security delay ref

* ESR stuff

* ping ref

* 2684 ref

* 0606: give the standard it's correct name

https://html.spec.whatwg.org/multipage/links.html#hyperlink-auditing

* 0805 test instructions

* tweakin'
2019-09-21 16:20:10 +00:00
Thorin-Oakenpants
be0ccf6460
2300: service workers, closes #786 2019-09-17 12:43:50 +12:00
Thorin-Oakenpants
7c0a327b06
cache, closes #778 2019-09-16 15:25:30 +00:00
Thorin-Oakenpants
a35cba3914
2651: android UI breakage, closes #795 2019-09-12 16:22:09 +00:00
Thorin-Oakenpants
d503d96db0
0320+0321: redundant prefs, closes #793 2019-09-12 15:50:54 +00:00
Thorin-Oakenpants
7311cfdf84
remove 1002, closes #792 2019-09-09 21:43:50 +00:00
rusty-snake
3a9440aeea 0707: Add mode 5 (#789) 2019-09-08 11:38:37 +00:00
Thorin-Oakenpants
3210ab0ca8
370: pocket -> 5000s, closes #787 2019-09-07 07:22:32 +00:00
Thorin-Oakenpants
2c734612f6
ummm .. beta
OK, did that all back to front... alpha is when we're working on the diffs .. beta is when we finished it
2019-09-04 21:40:04 +00:00
Thorin-Oakenpants
a12dd83b1f
69-alpha, fixes #766 2019-09-04 21:36:50 +00:00
earthlng
44d9ceaf05 various tidyups 2019-09-04 01:40:33 +12:00
Thorin-Oakenpants
be9d9ac9ca
2701: tidyup 2019-09-03 03:34:16 +00:00
Thorin-Oakenpants
66cdb72927
FF69: deprecated 2019-09-02 07:07:50 +00:00
Thorin-Oakenpants
953b96431e
4000: RFP info re 1330467
it rode the train in 69... after a bumpy ride in 68 where it was backed out. Note: it still has some issues. Suggest users wipe the site permissions once upgraded to 69
2019-09-02 06:45:30 +00:00
Thorin-Oakenpants
4d72ad90b0
2701: cookies default FF69+ 2019-09-02 18:33:00 +12:00
Thorin-Oakenpants
810045eb39
1802: remove intervalInMinues
with `plugins.click_to_play` deprecated in FF69, no-one here is sure if `intervalInMinutes` still applies to Flash or even works, and no-one here cares about Flash. Happy to let Mozilla just keep restricting it more and more until it's deprecated in early 2020. Note: we already disable flash anyway in pref 1803.
2019-09-01 21:03:53 +00:00
Thorin-Oakenpants
b47982bb9a
2030: again 2019-09-01 20:32:53 +00:00
Thorin-Oakenpants
0691b8babe
2032: fix description
from earthlng 
> it blocks **all media** autoplay "until in foreground", not just audio.
> Source: https://dxr.mozilla.org/mozilla-central/source/toolkit/content/widgets/browser-custom-element.js#1141
2019-09-01 19:22:28 +00:00
Thorin-Oakenpants
8d1c95c650
2030: autoplay changes
When ESR60 hits end of life, we should remove that value 2
2019-09-01 19:16:36 +00:00
Thorin-Oakenpants
19484e1a56
2805: see #774 2019-09-01 14:47:17 +00:00
Thorin-Oakenpants
755ebf88fb
start 69 commits 2019-09-01 06:27:24 +00:00
Thorin-Oakenpants
d26ea4f39e
68 final 2019-08-31 14:51:08 +00:00
Thorin-Oakenpants
a0f3da208f
0390: better reference
- EFF has pretty pictures and stuff and explains the issues (replaces wikipedia which people can still search for)
- tor issue doesn't hold anything important (out it goes)
- moz wiki page I'll leave in for the bugzilla links if someone wants to research how it's all meant to work
2019-08-28 16:33:06 +00:00
Thorin-Oakenpants
5166811bd5
1003: closes #772 2019-08-21 13:01:12 +00:00
Thorin-Oakenpants
86bfdd1470
tweak: middlemouse.paste for Linux 2019-08-21 04:08:40 +00:00
Thorin-Oakenpants
90ef9e63eb
oophs I meant 68-beta 2019-08-19 04:54:30 +00:00
Thorin-Oakenpants
f2200fd442
68-alpha (for earthlng diffs) 2019-08-19 04:52:53 +00:00
Thorin-Oakenpants
aff595b6ea
1704: remove the obvious 2019-08-04 19:17:38 +00:00
Thorin-Oakenpants
6618bf5f76
media.autoplay.allow-muted, closes #756 2019-07-23 14:02:26 +00:00
Thorin-Oakenpants
9aa8e27ef4
68 deprecated 2019-07-17 10:09:39 +00:00
Thorin-Oakenpants
9c782fbf57
2032: add default 2019-07-15 17:07:35 +00:00
Thorin-Oakenpants
931462b30b
RFP stuff
https://hg.mozilla.org/mozilla-central/rev/c96e81ba64f3#l1.14
2019-07-15 16:16:39 +00:00
Aeriem
469bbc1ab3 remove 0864 (#760)
https://bugzilla.mozilla.org/show_bug.cgi?id=1492587
2019-07-16 03:49:14 +12:00
Thorin-Oakenpants
11dcc54b61
0321 tweak
`url` and `discover` prefs stop the recommendations, the `enabled` pref hides the leftover recommended section and "Find more add-ons" button
2019-07-09 03:16:40 +00:00
claustromaniac
d40d7dbabd
0805 test info 2019-06-30 10:32:38 -03:00
Thorin-Oakenpants
b80c515e88
2010: WebGL setup tag #605 2019-06-29 02:52:41 +00:00
Thorin-Oakenpants
ed735f875c
2001: WebRTC setup tag #605 2019-06-29 02:44:37 +00:00
Thorin-Oakenpants
55b720faec
letterboxing, add setup tag see #728 2019-06-28 05:30:43 +00:00
Thorin-Oakenpants
31567c7938
0321: recommendations discovery in about:addons 2019-06-28 05:00:19 +00:00
Thorin-Oakenpants
8f939c91fe
0320: UI change : get add-ons->recommendations 2019-06-28 04:47:55 +00:00
Thorin-Oakenpants
27bd07d496
5000s: userChrome / userContent 2019-06-28 04:22:50 +00:00
Thorin-Oakenpants
42281a9e52
2212: popup events 2019-06-28 04:15:54 +00:00
Thorin-Oakenpants
8f40c97fd1
the return of the jedi
https://bugzilla.mozilla.org/show_bug.cgi?id=1444133
2019-06-28 04:11:46 +00:00
Thorin-Oakenpants
23c884a5f8
prefs no longer hidden 2019-06-26 10:14:24 +00:00
Thorin-Oakenpants
51089fbad9
start 68-alpha 2019-06-26 10:12:48 +00:00
Thorin-Oakenpants
83b4ada670
67 archive 2019-06-26 09:05:08 +00:00
Thorin-Oakenpants
e338186953
4500 fix alignment 2019-06-15 16:47:25 +00:00
Thorin-Oakenpants
fa61a7c25b
1202: cleanup
I don't think we need a 4 yr old article to explain the concept of `.min` (or `.max`), it's pretty self explanatory (and SSL 3 is obsolete). Three lines of text culled, and one of the remaining http links eliminated as a bonus. Enjoy the saved bytes and mouse-scrolling.
2019-06-15 16:34:29 +00:00
Thorin-Oakenpants
fc545b4d27
remove 1406 css font loading api #744, #731 2019-06-12 13:33:58 +00:00
Thorin-Oakenpants
9e7f9de56f
remove 1402, see #744 2019-06-11 15:47:34 +00:00
Thorin-Oakenpants
690a93b71d
remove: 1407, see #744 2019-06-11 15:09:24 +00:00
Thorin-Oakenpants
a92c4086bb
2622: middlemouse.paste, closes #735 2019-06-10 00:38:20 +00:00
Thorin-Oakenpants
9b7771fe76
1401: document fonts => active, see #731
- https://github.com/ghacksuserjs/ghacks-user.js/issues/731#issuecomment-500255686
- reverting my change from last release
2019-06-10 00:06:15 +00:00
Thorin-Oakenpants
2265b73521
1406: css.font-loading-api=> inactive, closes #731 2019-06-09 23:56:40 +00:00
Thorin-Oakenpants
01aae1b346
2426: IntersectionObserver=> inactive, closes #737 2019-06-09 23:29:58 +00:00
Thorin-Oakenpants
f53b996cfa
toolkit.telemetry.cachedClientID, closes #739
Read the linked issue
2019-06-07 17:49:42 +00:00