Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-04-14 19:32:56 -04:00
Code Issues Packages Projects Releases Wiki Activity

Update 40_security-misc.js

Browse Source 
Javascript hardening, Disable WebGL, WebM, WAV, Ogg, and PeerConnection.
This commit is contained in:
cypherpunks 2025-03-04 05:27:47 +00:00 committed by GitHub
parent db8a896f9a
commit 56e278119f
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 19 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
etc/thunderbird/pref/40_security-misc.js
View File

@ -42,11 +42,30 @@ pref("network.prefetch-next", false);
pref("network.dns.disablePrefetch", true);
pref("network.predictor.enabled", false);
//### Security
// No need to explain the problems with javascript
// If you want javascript, use your browser
// Thunderbird needs no javascript
// pref("javascript.enabled", false); // Will break setting up services that require redirecting to their javascripted webpage for login, like gmail etc. So commented out for now.
// JavaScript hardening. Source https://gitlab.torproject.org/tpo/applications/tor-browser/-/blob/tor-browser-115.10.0esr-13.5-1/browser/components/securitylevel/content/securityLevel.js?ref_type=heads
// (we are applying the "high" profile)
pref("javascript.options.ion", false);
pref("javascript.options.baselinejit", false);
pref("javascript.options.native_regexp", false);
pref("media.webaudio.enabled", false);
pref("mathml.disabled", true);
pref("gfx.font_rendering.opentype_svg.enabled", false);
pref("svg.disabled", true);
// Disable WebGL.
pref("webgl.disabled", true);
// Disable WebM, WAV, Ogg, PeerConnection.
pref("media.navigator.enabled", false);
pref("media.peerconnection.enabled", false);
pref("media.cache_size", 0);
// Disable scripting when viewing pdf files
user_pref("pdfjs.enableScripting", false);