michel_ouba/FF_arkenfox_user.js
michel_ouba/FF_arkenfox_user.js
1
0
Fork 0
Code Releases Activity

HTTP2 -> inactive

Browse Source
This commit is contained in:
Thorin-Oakenpants 2019-04-22 11:41:34 +00:00 committed by GitHub
parent 408d1d0e26
commit f62f781645
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 11 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

22
user.js
View File

@ -473,20 +473,20 @@ user_pref("_user.js.parrot", "0700 syntax error: the parrot's given up the ghost
* [1] https://github.com/ghacksuserjs/ghacks-user.js/issues/437#issuecomment-403740626 * [1] https://github.com/ghacksuserjs/ghacks-user.js/issues/437#issuecomment-403740626
* [2] https://www.internetsociety.org/tag/ipv6-security/ (see Myths 2,4,5,6) ***/ * [2] https://www.internetsociety.org/tag/ipv6-security/ (see Myths 2,4,5,6) ***/
user_pref("network.dns.disableIPv6", true); user_pref("network.dns.disableIPv6", true);
/* 0702: disable HTTP2 (which was based on SPDY which is now deprecated) /* 0702: disable HTTP2
* HTTP2 raises concerns with "multiplexing" and "server push", does nothing to enhance * HTTP2 raises some concerns with "multiplexing" and "server push", does nothing to
* privacy, and in fact opens up a number of server-side fingerprinting opportunities * enhance privacy, and may open up a number of server-side fingerprinting opportunities.
* [SETUP-PERF] Relax this if you have FPI enabled (see 4000) *AND* you understand the * [WARNING] Disabling this made sense in the past, and doesn't break anything, but HTTP2 is
* consequences. FPI isolates these, but it was designed with the Tor protocol in mind, * now at 35% and growing, see [5] - don't be that one person using HTTP1.1 on HTTP2 sites
* and the Tor Browser has extra protection, including enhanced sanitizing per Identity.
* [1] https://http2.github.io/faq/ * [1] https://http2.github.io/faq/
* [2] https://blog.scottlogic.com/2014/11/07/http-2-a-quick-look.html * [2] https://blog.scottlogic.com/2014/11/07/http-2-a-quick-look.html
* [3] https://queue.acm.org/detail.cfm?id=2716278 * [3] https://queue.acm.org/detail.cfm?id=2716278
* [4] https://github.com/ghacksuserjs/ghacks-user.js/issues/107 ***/ * [4] https://github.com/ghacksuserjs/ghacks-user.js/issues/107
user_pref("network.http.spdy.enabled", false); * [5] https://w3techs.com/technologies/details/ce-http2/all/all ***/
user_pref("network.http.spdy.enabled.deps", false); // user_pref("network.http.spdy.enabled", false);
user_pref("network.http.spdy.enabled.http2", false); // user_pref("network.http.spdy.enabled.deps", false);
user_pref("network.http.spdy.websockets", false); // [FF65+] // user_pref("network.http.spdy.enabled.http2", false);
// user_pref("network.http.spdy.websockets", false); // [FF65+]
/* 0703: disable HTTP Alternative Services [FF37+] /* 0703: disable HTTP Alternative Services [FF37+]
* [SETUP-PERF] Relax this if you have FPI enabled (see 4000) *AND* you understand the * [SETUP-PERF] Relax this if you have FPI enabled (see 4000) *AND* you understand the
* consequences. FPI isolates these, but it was designed with the Tor protocol in mind, * consequences. FPI isolates these, but it was designed with the Tor protocol in mind,