Commit Graph

1400 Commits

Author SHA1 Message Date
Thorin-Oakenpants
9aae0a62b0
tidy deprecated, misc RFP changes 2022-04-08 21:30:22 +00:00
fxbrit
81561840a1 deprecate security.csp.enable 2022-04-08 11:43:39 +02:00
Thorin-Oakenpants
d9af90d05f
v98 (#1372) 2022-03-10 00:44:10 +00:00
Thorin-Oakenpants
a98b73c64e
v97 (#1346) 2022-02-13 11:15:00 +00:00
fabrizio
10044fcaf7
typos #1342 (#1343) 2022-01-22 01:49:48 +00:00
Thorin-Oakenpants
ac0820a5dc
add last bits about ETP Strict/dFPI, closes #1337 2022-01-21 03:48:06 +00:00
Thorin-Oakenpants
b5bf2ee017
oophs, add removed item from last commit to 6050 2022-01-16 02:34:21 +00:00
Thorin-Oakenpants
09d62d2302
remove 1273: "not Secure" text on insecure sites
AF has been using HTTPS-Only mode since v84, the interstitial is more than ample, padlock is still marked as insecure
2022-01-16 02:31:57 +00:00
Thorin-Oakenpants
7a4676fe2d
make 1601 setup tag more explicit, closes #1326 2022-01-15 05:25:11 +00:00
Thorin-Oakenpants
bc2aba3829
move last update pref to personal 2022-01-12 05:25:31 +00:00
Thorin-Oakenpants
926a2d4ac8
v96 deprecated, #1325
also tidy the description to reflect that the setting is hidden
2022-01-12 05:09:17 +00:00
Thorin-Oakenpants
ab7380c93b
HoM: tweak background request info 2022-01-11 09:21:37 +00:00
Thorin-Oakenpants
06b8d8bfa3
move 0362 to don't touch 2022-01-07 17:29:26 +00:00
Thorin-Oakenpants
7016c2050d
move TLS 1.0/1.1 downgrades to don't bother
https://bugzilla.mozilla.org/show_bug.cgi?id=1745678
2021-12-30 03:15:56 +00:00
Thorin-Oakenpants
7e18f8b473
tweak 2011
- FF85+ switched to using application regional locale
   - go to about:support > Internationalization & Localization (almost at the very end)
   - look at Application > Regional Preferences
- add test
2021-12-24 06:01:41 +00:00
Thorin-Oakenpants
d2510b014d
move updates to personal
updating (app, extensions, ext cache) is not a privacy issue
- if you're willing to use Firefox but not trust updating, then I have two bricks to sell you: users who wish to disable it (to check changes first etc) and update in a timely manner, then that is on them - including any prompt fatigue
- same goes for extensions: the end-user installed them (and arkenfox only recommends a very select few) - the onus is on the end-user

The remaining ones I will deal with later
2021-12-23 23:42:28 +00:00
Thorin-Oakenpants
87bd8683fa
2022: add browser.eme.ui.enabled
for those who want to remove DRM prompts and have no intention of enabling it
2021-12-23 21:22:41 +00:00
Thorin-Oakenpants
6675225ec4
make 0301 inactive
auto-updating is not a security nor a privacy risk, by default it should be enabled and it's on end-users if they want to disable it - does not affect windows users
2021-12-23 06:36:39 +00:00
Thorin-Oakenpants
bb56056a68
explain 0-RTT 2021-12-15 19:23:03 +00:00
Thorin-Oakenpants
93f0ff89c8
move web notifcations to don't bother 2021-12-15 00:05:03 +00:00
Thorin-Oakenpants
7811e912f4
make push notifications inactive
- they require SWers which are already blocked by virtue of permissions being session only
- also remove "dom.push.userAgentID" as this means prefsCleaner resets it and would wipe user's subscriptions
   - not adding "dom.push.userAgentID" to the cleanup script for the same reason
2021-12-14 13:25:46 +00:00
Thorin-Oakenpants
238f1545f4
fixup thanks #fxbrit have a 🍥 fish cake 2021-12-13 14:15:25 +00:00
Thorin-Oakenpants
78297132b4
fix syntax 2021-12-12 15:44:39 +00:00
Thorin-Oakenpants
8de87de050
update 0704: GIO, closes #1050 (#1300)
https://bugzilla.mozilla.org/show_bug.cgi?id=1666725
2021-12-12 15:41:55 +00:00
Thorin-Oakenpants
8bc25b552d
expand 0650 to include any removed item
this should reduce any dependency on the scratchpad script
2021-12-12 15:30:53 +00:00
Thorin-Oakenpants
c8c86262d7
enforce SmartBlock shims 2021-12-12 13:51:25 +00:00
Thorin-Oakenpants
f836e55363
tidy ETP stuff 2021-12-12 13:31:01 +00:00
Thorin-Oakenpants
8cdb30cc08
make cookie pref active
@SkewedZeppelin ... https://github.com/arkenfox/user.js/issues/1051#issuecomment-991806497
2021-12-12 00:26:12 +00:00
Thorin-Oakenpants
54810e333f
typo 2021-12-11 19:17:43 +00:00
Thorin-Oakenpants
7ec13c0323
sharedWorkers tweak
tested in FF91+. Seems as if sharedWorkers no longer requires an explicit `Allow`
2021-12-11 12:22:00 +00:00
Thorin-Oakenpants
af109d4696
tweak 7016 2021-12-11 11:15:34 +00:00
Thorin-Oakenpants
ec7cb6a491
2702: partition service workers 2021-12-09 17:17:52 +00:00
Thorin-Oakenpants
d9f49bdf1f
make 7017 clearer 2021-12-09 16:17:53 +00:00
Thorin-Oakenpants
d5bc6715cd
remove web workers section
farewell parrot
2021-12-09 16:14:36 +00:00
Thorin-Oakenpants
8860c90abf
make service workers inactive
currently 3rd party service workers are blocked in FF95 when dFPI is enabled (which this version has should anyone update to 96-alpha)
   - but I get an error even on first party - https://arkenfox.github.io/TZP/tzp.html#storage
   - I get : service worker | test : enabled | failed: SecurityError
in FF96+ service workers they are covered by dFPI
  - see https://bugzilla.mozilla.org/show_bug.cgi?id=1731999
2021-12-09 14:31:41 +00:00
Thorin-Oakenpants
4d5abd6cc3
tweak 8000 title
lets not encourage non-RFP users to see this as a sign to use them
2021-12-09 14:18:25 +00:00
Thorin-Oakenpants
de28689e76
flip from FPI to dFPI
I will tidy and expand 2700 entries later
2021-12-09 14:13:39 +00:00
Thorin-Oakenpants
5d508e4242
move LSNG to don't touch 2021-12-09 14:05:47 +00:00
Thorin-Oakenpants
1fc43574d6
move "cookie" permission info into 2801 2021-12-09 14:00:21 +00:00
Thorin-Oakenpants
0634a568ef
remove redundant site data prefs
we've never used these
- service workers are disabled (or soon to be covered by dFPI when enabled) and sanitizing is already done (or will be done via enhanced cookie cleaning)
- storage API, storage access API: we sanitize on close, and sites are isolated by eTLD+1
2021-12-09 13:45:46 +00:00
Thorin-Oakenpants
f7bba92c71
cleanout FPI section
farewell parrot
2021-12-09 12:28:45 +00:00
Thorin-Oakenpants
fe75baa79f
move DNT to DON'T BOTHER 2021-12-09 11:44:51 +00:00
Thorin-Oakenpants
72cc4d176e
0706: network.proxy.allow_bypass, closes #1292 2021-12-09 11:41:18 +00:00
Thorin-Oakenpants
7e1b92567c
95 final 2021-12-08 12:13:47 +00:00
Thorin-Oakenpants
fec5168203
95 deprecated 2021-12-08 04:28:47 +00:00
Thorin-Oakenpants
b60a888da3
update WebRTC, closes #1282 2021-12-06 14:45:47 +00:00
Thorin-Oakenpants
ec595c3b95
fixup duplicate line 2021-12-05 19:59:33 +00:00
Thorin-Oakenpants
9d61992c8c
don't clear offlineApps on shutdown, #1291
- in v94 we switched to cookies lifetime as session, so users could use site exceptions to retain selected cookies (to stay logged in one assumes)
- that mean not deleting all cookies on shutdown
- but some login methods/types require more than cookies and also need the "site data" part of "cookies + site data" - that's the offlineApps part
- note: all site data (and cookies) is still cleared on close except site exceptions
2021-12-05 19:49:32 +00:00
Thorin-Oakenpants
fd860e6c69
flip RFP newwin max values, closes #1286 2021-12-04 10:23:59 +00:00
Thorin-Oakenpants
cf0102f71e
fixup: from being flogged to death by overseers
thanks @dngray, also save some precious bytes .. polar bears know about scarce resources
2021-12-02 09:34:34 +00:00