From e9015dd44e56f6252146b1877c33409f1ad2f476 Mon Sep 17 00:00:00 2001
From: cypherpunks <201630983+cypherpunks2@users.noreply.github.com>
Date: Tue, 4 Mar 2025 05:34:10 +0000
Subject: [PATCH] Update 40_security-misc.js

Privacy related prefs
---
 etc/thunderbird/pref/40_security-misc.js | 43 ++++++++++++++++++++++++
 1 file changed, 43 insertions(+)

diff --git a/etc/thunderbird/pref/40_security-misc.js b/etc/thunderbird/pref/40_security-misc.js
index 76e64f4..18d8124 100644
--- a/etc/thunderbird/pref/40_security-misc.js
+++ b/etc/thunderbird/pref/40_security-misc.js
@@ -79,6 +79,7 @@ pref("network.cookie.cookieBehavior", 2);
 // But we want it gone for good for no information leak at all
 // https://hg.mozilla.org/comm-central/rev/cbbbc8d93cd7
 pref("mailnews.headers.sendUserAgent", false);
+pref("general.useragent.override", "");
 
 // Normally we send emails after marking them with a time stamp
 // That includes our local time zone
@@ -92,3 +93,45 @@ pref("mail.sanitize_date_header", true);
 // Compact when it will save over 100 KB
 pref("mail.folder.compact_on_exit", true);
 pref("mail.folder.compact_threshold", 100);
+
+//### Privacy
+// Geolocation
+pref("geo.enabled", false);
+pref("geo.provider.use_geoclue", false)
+pref("geo.provider.network.url", "")
+
+// Disable Google Safe Browsing (#22567).
+pref("browser.safebrowsing.enabled", false);
+pref("browser.safebrowsing.malware.enabled", false);
+
+// Disable Microsoft Family Safety (From TBB: #21686).
+pref("security.family_safety.mode", 0);
+
+// Likely privacy violations
+// https://blog.torproject.org/blog/experimental-defense-website-traffic-fingerprinting
+// https://bugs.torproject.org/3914
+pref("network.http.pipelining", true);
+pref("network.http.pipelining.aggressive", true);
+pref("network.http.pipelining.maxrequests", 12);
+pref("network.http.connection-retry-timeout", 0);
+pref("network.http.max-persistent-connections-per-proxy", 256);
+pref("network.http.pipelining.reschedule-timeout", 15000);
+pref("network.http.pipelining.read-timeout", 60000);
+
+// We do not fully understand the privacy issues of the SPDY protocol
+pref("network.http.spdy.enabled", false);
+
+// Don't save email addresses from sent emails
+// Do not automatically add outgoing sent emails to address book "Collected Addresses" for privacy
+pref("mail.collect_email_address_outgoing", false);
+
+// Clean mailbox server-side
+// Delete messages from server regardless if POP3 or IMAP is set as protocol for accounts
+// Delete POP3 messages from server when moved for example when moved to trash in Thunderbird
+// Delete IMAP messages from server when deleted or marked for deletion in Thunderbird
+pref("mail.pop3.deleteFromServerOnMove", true);
+pref("mail.imap.expunge_after_delete", true);
+
+// Don't leak the locale "Date & Time" via reply quote header
+pref("mailnews.reply_header_type", 1);
+pref("mailnews.reply_header_authorwrotesingle", "#1 wrote:");