1
0

0400s: tidy up sub-section SB

This commit is contained in:
Thorin-Oakenpants 2017-05-13 14:04:14 +12:00 committed by GitHub
parent 64351a0c19
commit 903ba2d2b4

45
user.js
View File

@ -94,7 +94,7 @@ user_pref("javascript.use_us_english_locale", true); // (hidden pref)
* [2] https://www.ghacks.net/2017/03/14/firefox-55-geolocation-requires-secure-origin/ ***/ * [2] https://www.ghacks.net/2017/03/14/firefox-55-geolocation-requires-secure-origin/ ***/
user_pref("geo.security.allowinsecure", false); user_pref("geo.security.allowinsecure", false);
/*** 0300: QUIET FOX [PART 1] /*** 0300: QUIET FOX
No auto-phoning home for anything. You can still do manual updates. It is still important No auto-phoning home for anything. You can still do manual updates. It is still important
to do updates for security reasons. [WARNING] [SETUP] If you don't auto update, make sure you to do updates for security reasons. [WARNING] [SETUP] If you don't auto update, make sure you
do manually. There are many legitimate reasons to turn off AUTO updates, including hijacked do manually. There are many legitimate reasons to turn off AUTO updates, including hijacked
@ -239,40 +239,37 @@ user_pref("services.blocklist.signing.enforced", true);
// user_pref("services.blocklist.addons.collection", ""); // user_pref("services.blocklist.addons.collection", "");
// user_pref("services.blocklist.plugins.collection", ""); // user_pref("services.blocklist.plugins.collection", "");
// user_pref("services.blocklist.gfx.collection", ""); // user_pref("services.blocklist.gfx.collection", "");
/* 0410: disable Safe Browsing (SB) /* SAFE BROWSING (SN)
* This sub-section has been redesigned to differentiate between "real-time"/"user initiated" This sub-section has been redesigned to differentiate between "real-time"/"user initiated"
* data being sent to Google from all other settings such as using local blocklists/whitelists and data being sent to Google from all other settings such as using local blocklists/whitelists and
* updating those lists. There are NO privacy issues here. *IF* required, a full url is never sent updating those lists. There are NO privacy issues here. *IF* required, a full url is never sent
* to Google, only a PART-hash of the prefix, and this is hidden with noise of other real PART-hashes. to Google, only a PART-hash of the prefix, and this is hidden with noise of other real PART-hashes.
* Google also swear it is anonymized and only used to flag malicious sites/activity. Firefox Google also swear it is anonymized and only used to flag malicious sites/activity. Firefox
* also takes measures such as striping out identifying parameters and storing safe browsing also takes measures such as striping out identifying parameters and storing safe browsing
* cookies in a separate jar. (#Turn on browser.safebrowsing.debug to monitor this activity) cookies in a separate jar. (#Turn on browser.safebrowsing.debug to monitor this activity)
* To use safebrowsing but not "leak" binary download info to Google, only use 0410e and 0410f #Required reading [#] https://feeding.cloud.geek.nz/posts/how-safe-browsing-works-in-firefox/
* #Required reading [#] https://feeding.cloud.geek.nz/posts/how-safe-browsing-works-in-firefox/ [1] https://wiki.mozilla.org/Security/Safe_Browsing ***/
* [1] https://wiki.mozilla.org/Security/Safe_Browsing ***/ /* 0410: disable "Block dangerous and deceptive content" (under Options>Security)
/* 0410a: disable "Block dangerous and deceptive content" (under Options>Security) * This covers deceptive sites such as phishing and social engineering ***/
* Until FF48 this was titled "Block reported web forgeries"
* It covers deceptive sites such as phishing and social engineering ***/
// user_pref("browser.safebrowsing.malware.enabled", false); // user_pref("browser.safebrowsing.malware.enabled", false);
// user_pref("browser.safebrowsing.phishing.enabled", false); // (FF50+) // user_pref("browser.safebrowsing.phishing.enabled", false); // (FF50+)
/* 0410b: disable "Block dangerous downloads" (under Options>Security) /* 0411: disable "Block dangerous downloads" (under Options>Security)
* Until FF48 this was titled "Block reported attack sites" * This covers malware and PUPs (potentially unwanted programs) ***/
* It covers malware and PUPs (potentially unwanted programs) ***/
// user_pref("browser.safebrowsing.downloads.enabled", false); // user_pref("browser.safebrowsing.downloads.enabled", false);
/* 0410b: disable "Warn me about unwanted and uncommon software" (under Options>Security) (FF48+) ***/ /* 0412: disable "Warn me about unwanted and uncommon software" (under Options>Security) (FF48+) ***/
// user_pref("browser.safebrowsing.downloads.remote.block_potentially_unwanted", false); // user_pref("browser.safebrowsing.downloads.remote.block_potentially_unwanted", false);
// user_pref("browser.safebrowsing.downloads.remote.block_uncommon", false); // user_pref("browser.safebrowsing.downloads.remote.block_uncommon", false);
// user_pref("browser.safebrowsing.downloads.remote.block_dangerous", false); // (FF49+) // user_pref("browser.safebrowsing.downloads.remote.block_dangerous", false); // (FF49+)
// user_pref("browser.safebrowsing.downloads.remote.block_dangerous_host", false); // (FF49+) // user_pref("browser.safebrowsing.downloads.remote.block_dangerous_host", false); // (FF49+)
/* 0410c: disable Google safebrowsing downloads, updates ***/ /* 0413: disable Google safebrowsing updates ***/
// user_pref("browser.safebrowsing.provider.google.updateURL", ""); // user_pref("browser.safebrowsing.provider.google.updateURL", "");
// user_pref("browser.safebrowsing.provider.google.gethashURL", ""); // user_pref("browser.safebrowsing.provider.google.gethashURL", "");
// user_pref("browser.safebrowsing.provider.google4.updateURL", ""); // (FF50+) // user_pref("browser.safebrowsing.provider.google4.updateURL", ""); // (FF50+)
// user_pref("browser.safebrowsing.provider.google4.gethashURL", ""); // (FF50+) // user_pref("browser.safebrowsing.provider.google4.gethashURL", ""); // (FF50+)
/* 0410e: disable binaries NOT in local lists being checked by Google (real-time checking) ***/ /* 0414: disable binaries NOT in local lists being checked by Google (real-time checking) ***/
user_pref("browser.safebrowsing.downloads.remote.enabled", false); user_pref("browser.safebrowsing.downloads.remote.enabled", false);
user_pref("browser.safebrowsing.downloads.remote.url", ""); user_pref("browser.safebrowsing.downloads.remote.url", "");
/* 0410f: disable reporting URLs ***/ /* 0415: disable reporting URLs ***/
user_pref("browser.safebrowsing.provider.google.reportURL", ""); user_pref("browser.safebrowsing.provider.google.reportURL", "");
user_pref("browser.safebrowsing.reportMalwareMistakeURL", ""); user_pref("browser.safebrowsing.reportMalwareMistakeURL", "");
user_pref("browser.safebrowsing.reportPhishMistakeURL", ""); user_pref("browser.safebrowsing.reportPhishMistakeURL", "");
@ -282,8 +279,8 @@ user_pref("browser.safebrowsing.provider.google.reportMalwareMistakeURL", ""); /
user_pref("browser.safebrowsing.provider.google.reportPhishMistakeURL", ""); // (FF54+) user_pref("browser.safebrowsing.provider.google.reportPhishMistakeURL", ""); // (FF54+)
user_pref("browser.safebrowsing.provider.google4.reportMalwareMistakeURL", ""); // (FF54+) user_pref("browser.safebrowsing.provider.google4.reportMalwareMistakeURL", ""); // (FF54+)
user_pref("browser.safebrowsing.provider.google4.reportPhishMistakeURL", ""); // (FF54+) user_pref("browser.safebrowsing.provider.google4.reportPhishMistakeURL", ""); // (FF54+)
/* 0410g: show=true or hide=false the 'ignore this warning' on Safe Browsing warnings which /* 0416: disable 'ignore this warning' on Safe Browsing warnings which when clicked
* when clicked bypasses the block for that session. This is a means for admins to enforce SB * bypasses the block for that session. This is a means for admins to enforce SB
* [TEST] see github wiki APPENDIX C: Test Sites: Section 5 * [TEST] see github wiki APPENDIX C: Test Sites: Section 5
* [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1226490 ***/ * [1] https://bugzilla.mozilla.org/show_bug.cgi?id=1226490 ***/
// user_pref("browser.safebrowsing.allowOverride", true); // user_pref("browser.safebrowsing.allowOverride", true);