1
0
Commit Graph

1116 Commits

Author SHA1 Message Date
Thorin-Oakenpants
5f3e3b2691
VR default prompt, RFP info, start 73-alpha 2020-02-14 01:00:02 +00:00
earthlng
1ce1f74494
Update user.js 2020-02-12 12:03:29 +00:00
earthlng
03f558b09c
nit: 0517 SETTING
we don't include `Options>` in [SETTING] lines
2020-02-10 17:12:08 +00:00
Thorin-Oakenpants
7619e312de
72 final 2020-01-24 16:48:16 +00:00
Thorin-Oakenpants
5d2c5de11c
fixup deprecated ESR-cycle version 2020-01-15 02:53:07 +00:00
Thorin-Oakenpants
e1022c2e72
72-beta 2020-01-14 17:38:22 +00:00
Thorin-Oakenpants
e431b324c8
FF72 deprecated 2020-01-08 02:53:25 +00:00
Thorin-Oakenpants
18ad40a5c6
systemUsesDarkTheme -> RFP Alts 2019-12-25 02:14:49 +00:00
rusty-snake
315de066ec typo (#870) 2019-12-24 11:49:19 +00:00
Thorin-Oakenpants
85273d0f19
0517: setting tag 2019-12-22 07:13:48 +00:00
Thorin-Oakenpants
ef293b57a7
5000s: add ui.systemUsesDarkTheme 2019-12-22 06:14:25 +00:00
Thorin-Oakenpants
79d316fd22
remove old deprecations 2019-12-19 16:37:19 +00:00
Thorin-Oakenpants
ed60588473
72-alpha start 2019-12-19 16:34:44 +00:00
Thorin-Oakenpants
07c128a190
71 final 2019-12-19 16:31:51 +00:00
Thorin-Oakenpants
34cfcedc1b
2402+2403, finally closes #735 2019-12-19 16:19:39 +00:00
Thorin-Oakenpants
f9146fdf24
update setting tags, minor tweaks 2019-12-18 09:46:21 +00:00
Thorin-Oakenpants
a1cdbc8324
1408 graphite, closes #1408 and 2619 puncyode 2019-12-18 07:46:44 +00:00
earthlng
cd07641a9d 2701: make sure cookieBehavior is always honored (#866)
see #862
2019-12-18 05:02:25 +00:00
earthlng
9c02949e04
0000: config.xhtml in FF73+ (#865) 2019-12-17 15:00:34 +00:00
Thorin-Oakenpants
5672bc8cc8
2032 removed, 4002 inactive, closes #840 2019-12-12 01:21:17 +00:00
Thorin-Oakenpants
df1732745d
0308: seach engine updates: better info #840 2019-12-10 22:07:23 +00:00
Thorin-Oakenpants
30daf8640c
FPI stuff 2019-12-09 20:18:42 +00:00
earthlng
4074a37e1d 1201 + 1270 update (#859)
trim by a line, remove extra space, fixup on red, indicate it only applies if 1201 is false
2019-12-07 18:26:39 +00:00
Thorin-Oakenpants
97043b0ce1
71-beta 2019-12-06 12:19:21 +00:00
Thorin-Oakenpants
42ea484017
71 deprecated (#856) 2019-12-04 14:13:49 +13:00
Thorin-Oakenpants
3f6340b69c
OMG!! 2019-12-03 14:51:44 +00:00
earthlng
884e84a4cb about:config warning back to the top + active (#855) 2019-12-04 03:44:59 +13:00
Thorin-Oakenpants
560acfc94f
70 final 2019-12-03 07:31:47 +00:00
Thorin-Oakenpants
fb263f5624
favicons: 1031 better info, 1032 inactive #840 (#851) 2019-12-02 23:04:09 +13:00
Thorin-Oakenpants
19b392b83d
70-beta 2019-11-24 05:23:10 +00:00
Thorin-Oakenpants
2db76c95c3
1603: breaks icloud, closes #850 2019-11-23 16:19:09 +00:00
Thorin-Oakenpants
8f76d9439f
2002: add FF70 bugzilla link 2019-11-22 15:26:38 +00:00
earthlng
f0980b5cb8
2002: add proxy_only_if_behind_proxy 2019-11-22 15:19:37 +00:00
Thorin-Oakenpants
450c9a9e0f
simplify ciphers, closes #839 (#844)
* simplify ciphers

- let's not encourage (remove options 1, 2) changing your cipher suite FP
- remove "it's quite technical ..." (everything is technical to someone), trim to one line
- add test link so users can just see that it's FP'able
- reinforce not to fuck with the cipher suite in the cipher's sub-section
2019-11-23 03:23:08 +13:00
Thorin-Oakenpants
6acfdaccbd
RFP stuff 2019-11-20 04:48:15 +00:00
Thorin-Oakenpants
a0e0a2a6c9
2680 tweak #840 2019-11-19 16:26:14 +00:00
Thorin-Oakenpants
f67e729197
whatsNewPanel correct version 2019-11-19 06:39:08 +00:00
rusty-snake
19526b573c 2805 note, FPI change (#842) 2019-11-19 16:31:48 +13:00
Thorin-Oakenpants
b0221ec838
1576254 version fixup 2019-11-17 10:33:02 +00:00
Thorin-Oakenpants
a3611b7cf8
changes to prefs affecting extensions
also first word on pdfjs.disabled, to be consistent
2019-11-14 02:39:48 +00:00
Thorin-Oakenpants
0cfb2fb06d
1703: remove
default true since FF61, and ESR60 is now EOL
2019-11-09 23:23:34 +00:00
Thorin-Oakenpants
d5f297ed42
5000s: disable what's new 2019-11-08 18:06:35 +00:00
earthlng
c13dbdf40d 1201 update (#838)
https://wiki.mozilla.org/Security:Renegotiation describes

> **the new default behaviour** that was introduced in experimental mozilla-central nightly versions on 2010-02-08

where the last step is

> - should the server (or a MITM) request **renegotiation**, Mozilla will terminate the connection with an error message

and then after talking about breakage ...

> The above defaults may break some client/server environments where a Server is still using old software and requires renegotiation.

mentions workarounds to reduce said breakage:

> In order to give such environments a way to keep using Firefox (et.al.) to connect to their vulnerable server infrastructure, the following preferences are available:

specifically talking about the first 2 prefs listed there, one allowing to specify a list of hosts "where renegotiation may be performed" and the 2nd one "completely disables the new protection mechanisms".
But both those prefs were removed in FF38, meaning that since then it's no longer possible to disable the default behaviour that is "should the server (or a MITM) request **renegotiation**, Mozilla will terminate the connection with an error message".

But all of this is about the **re**-negotiation part and not negotiation. And nowhere does it say "insecure" renegotiation, which, as I read it, means that FF will terminate the connection for any kind of **renegotiation**, safe or unsafe.

1201 controls the negotiation part:

> This pref controls the behaviour during the initial negotiation between client and server.
> If set to true, a Mozilla client will reject all connection attempts to servers that are still using the old SSL/TLS protocol and which might be vulnerable to the attack.
> Setting this preference to “true” is the only way to guarantee full protection against the attack.

I think "servers that are still using the old SSL/TLS protocol" actually means servers that **only** support the old protocols.
Servers still supporting those old protocols in addition to some new protocol versions should not be affected by this pref because FF will be able to negotiate to use one of the newer protocol versions.

Ergo lets fix the title and remove the line about renegotiation support because I think that's irrelevant.


ps. the sslpulse link is nice and I'd like to keep it somewhere but it doesn't really fit in 1201 IMO so I moved it to 1202.
2019-11-09 05:42:21 +13:00
earthlng
6173104a9e re-add relevant deprecated items for ESR users (#837)
makes the prefsCleaner scripts useful again for users updating from ESR60 to ESR68
2019-11-09 05:30:03 +13:00
earthlng
895f8d01d5 FF70+: shield studies no longer tied to FHR (#836)
https://bugzilla.mozilla.org/1569330
2019-11-09 02:01:33 +13:00
Thorin-Oakenpants
65dfad5c76
2701: UI changes 2019-11-06 11:37:24 +00:00
Thorin-Oakenpants
16756646bb
remove DoH, closes #790 2019-10-31 09:49:12 +00:00
Thorin-Oakenpants
e4f80225d8
FF72: FPI & IPv6 2019-10-28 12:12:52 +00:00
Thorin-Oakenpants
539750d2f2
FF70 hidden/default changes 2019-10-27 04:41:27 +00:00
Thorin-Oakenpants
d91226ed55
tweakin' 2019-10-20 23:59:16 +00:00
Thorin-Oakenpants
301fcd059d
1003: capacity no longer hidden 2019-10-20 23:36:48 +00:00
Thorin-Oakenpants
1cc9a08a18
remove ESR60.x deprecated
These are archived in #123
2019-10-20 22:40:53 +00:00
Thorin-Oakenpants
5d1857ddd8
start 70 commits 2019-10-20 22:32:37 +00:00
Thorin-Oakenpants
226af6f679
69 final 2019-10-20 22:20:50 +00:00
Thorin-Oakenpants
5b82afd5bd
webgl.dxgl.enabled, closes #814 2019-10-15 09:27:44 +00:00
Thorin-Oakenpants
1b6239eab8
remove 0804, closes #808
if anyone can show me how this stops history leaks, then I'll put it back with a note saying it's been broken since FF61
2019-10-14 01:13:27 +00:00
Thorin-Oakenpants
624e50faac
replace ` with ' 2019-10-05 17:51:34 +00:00
Thorin-Oakenpants
a9e9392172
add some SB back, see #803 2019-10-05 17:47:25 +00:00
Thorin-Oakenpants
201210111e
char fix 2019-10-05 15:12:21 +00:00
Thorin-Oakenpants
dc4d9e4dae
revamp 0200s (#807), closes #0806
- split geo related vs language/locale related
- rip out intl.locale.requested
- rip out intl.regional_prefs.use_os_locales
- add intl.charset.fallback.override
2019-10-06 04:04:41 +13:00
Thorin-Oakenpants
e1b0eae740 goodbye http and other stuff (#801)
* goodbye http and other stuff

* dead link

* put back asmjs [1] ref

* 0805 test

* typo

* 1222 refs

* 1222 FF version

FYI: https://bugzilla.mozilla.org/show_bug.cgi?id=629558

* 2684: security delay ref

* ESR stuff

* ping ref

* 2684 ref

* 0606: give the standard it's correct name

https://html.spec.whatwg.org/multipage/links.html#hyperlink-auditing

* 0805 test instructions

* tweakin'
2019-09-21 16:20:10 +00:00
Thorin-Oakenpants
be0ccf6460
2300: service workers, closes #786 2019-09-17 12:43:50 +12:00
Thorin-Oakenpants
7c0a327b06
cache, closes #778 2019-09-16 15:25:30 +00:00
Thorin-Oakenpants
a35cba3914
2651: android UI breakage, closes #795 2019-09-12 16:22:09 +00:00
Thorin-Oakenpants
d503d96db0
0320+0321: redundant prefs, closes #793 2019-09-12 15:50:54 +00:00
Thorin-Oakenpants
7311cfdf84
remove 1002, closes #792 2019-09-09 21:43:50 +00:00
rusty-snake
3a9440aeea 0707: Add mode 5 (#789) 2019-09-08 11:38:37 +00:00
Thorin-Oakenpants
3210ab0ca8
370: pocket -> 5000s, closes #787 2019-09-07 07:22:32 +00:00
Thorin-Oakenpants
2c734612f6
ummm .. beta
OK, did that all back to front... alpha is when we're working on the diffs .. beta is when we finished it
2019-09-04 21:40:04 +00:00
Thorin-Oakenpants
a12dd83b1f
69-alpha, fixes #766 2019-09-04 21:36:50 +00:00
earthlng
44d9ceaf05 various tidyups 2019-09-04 01:40:33 +12:00
Thorin-Oakenpants
be9d9ac9ca
2701: tidyup 2019-09-03 03:34:16 +00:00
Thorin-Oakenpants
66cdb72927
FF69: deprecated 2019-09-02 07:07:50 +00:00
Thorin-Oakenpants
953b96431e
4000: RFP info re 1330467
it rode the train in 69... after a bumpy ride in 68 where it was backed out. Note: it still has some issues. Suggest users wipe the site permissions once upgraded to 69
2019-09-02 06:45:30 +00:00
Thorin-Oakenpants
4d72ad90b0
2701: cookies default FF69+ 2019-09-02 18:33:00 +12:00
Thorin-Oakenpants
810045eb39
1802: remove intervalInMinues
with `plugins.click_to_play` deprecated in FF69, no-one here is sure if `intervalInMinutes` still applies to Flash or even works, and no-one here cares about Flash. Happy to let Mozilla just keep restricting it more and more until it's deprecated in early 2020. Note: we already disable flash anyway in pref 1803.
2019-09-01 21:03:53 +00:00
Thorin-Oakenpants
b47982bb9a
2030: again 2019-09-01 20:32:53 +00:00
Thorin-Oakenpants
0691b8babe
2032: fix description
from earthlng 
> it blocks **all media** autoplay "until in foreground", not just audio.
> Source: https://dxr.mozilla.org/mozilla-central/source/toolkit/content/widgets/browser-custom-element.js#1141
2019-09-01 19:22:28 +00:00
Thorin-Oakenpants
8d1c95c650
2030: autoplay changes
When ESR60 hits end of life, we should remove that value 2
2019-09-01 19:16:36 +00:00
Thorin-Oakenpants
19484e1a56
2805: see #774 2019-09-01 14:47:17 +00:00
Thorin-Oakenpants
755ebf88fb
start 69 commits 2019-09-01 06:27:24 +00:00
Thorin-Oakenpants
d26ea4f39e
68 final 2019-08-31 14:51:08 +00:00
Thorin-Oakenpants
a0f3da208f
0390: better reference
- EFF has pretty pictures and stuff and explains the issues (replaces wikipedia which people can still search for)
- tor issue doesn't hold anything important (out it goes)
- moz wiki page I'll leave in for the bugzilla links if someone wants to research how it's all meant to work
2019-08-28 16:33:06 +00:00
Thorin-Oakenpants
5166811bd5
1003: closes #772 2019-08-21 13:01:12 +00:00
Thorin-Oakenpants
86bfdd1470
tweak: middlemouse.paste for Linux 2019-08-21 04:08:40 +00:00
Thorin-Oakenpants
90ef9e63eb
oophs I meant 68-beta 2019-08-19 04:54:30 +00:00
Thorin-Oakenpants
f2200fd442
68-alpha (for earthlng diffs) 2019-08-19 04:52:53 +00:00
Thorin-Oakenpants
aff595b6ea
1704: remove the obvious 2019-08-04 19:17:38 +00:00
Thorin-Oakenpants
6618bf5f76
media.autoplay.allow-muted, closes #756 2019-07-23 14:02:26 +00:00
Thorin-Oakenpants
9aa8e27ef4
68 deprecated 2019-07-17 10:09:39 +00:00
Thorin-Oakenpants
9c782fbf57
2032: add default 2019-07-15 17:07:35 +00:00
Thorin-Oakenpants
931462b30b
RFP stuff
https://hg.mozilla.org/mozilla-central/rev/c96e81ba64f3#l1.14
2019-07-15 16:16:39 +00:00
Aeriem
469bbc1ab3 remove 0864 (#760)
https://bugzilla.mozilla.org/show_bug.cgi?id=1492587
2019-07-16 03:49:14 +12:00
Thorin-Oakenpants
11dcc54b61
0321 tweak
`url` and `discover` prefs stop the recommendations, the `enabled` pref hides the leftover recommended section and "Find more add-ons" button
2019-07-09 03:16:40 +00:00
claustromaniac
d40d7dbabd
0805 test info 2019-06-30 10:32:38 -03:00
Thorin-Oakenpants
b80c515e88
2010: WebGL setup tag #605 2019-06-29 02:52:41 +00:00
Thorin-Oakenpants
ed735f875c
2001: WebRTC setup tag #605 2019-06-29 02:44:37 +00:00
Thorin-Oakenpants
55b720faec
letterboxing, add setup tag see #728 2019-06-28 05:30:43 +00:00
Thorin-Oakenpants
31567c7938
0321: recommendations discovery in about:addons 2019-06-28 05:00:19 +00:00
Thorin-Oakenpants
8f939c91fe
0320: UI change : get add-ons->recommendations 2019-06-28 04:47:55 +00:00
Thorin-Oakenpants
27bd07d496
5000s: userChrome / userContent 2019-06-28 04:22:50 +00:00
Thorin-Oakenpants
42281a9e52
2212: popup events 2019-06-28 04:15:54 +00:00
Thorin-Oakenpants
8f40c97fd1
the return of the jedi
https://bugzilla.mozilla.org/show_bug.cgi?id=1444133
2019-06-28 04:11:46 +00:00
Thorin-Oakenpants
23c884a5f8
prefs no longer hidden 2019-06-26 10:14:24 +00:00
Thorin-Oakenpants
51089fbad9
start 68-alpha 2019-06-26 10:12:48 +00:00
Thorin-Oakenpants
83b4ada670
67 archive 2019-06-26 09:05:08 +00:00
Thorin-Oakenpants
e338186953
4500 fix alignment 2019-06-15 16:47:25 +00:00
Thorin-Oakenpants
fa61a7c25b
1202: cleanup
I don't think we need a 4 yr old article to explain the concept of `.min` (or `.max`), it's pretty self explanatory (and SSL 3 is obsolete). Three lines of text culled, and one of the remaining http links eliminated as a bonus. Enjoy the saved bytes and mouse-scrolling.
2019-06-15 16:34:29 +00:00
Thorin-Oakenpants
fc545b4d27
remove 1406 css font loading api #744, #731 2019-06-12 13:33:58 +00:00
Thorin-Oakenpants
9e7f9de56f
remove 1402, see #744 2019-06-11 15:47:34 +00:00
Thorin-Oakenpants
690a93b71d
remove: 1407, see #744 2019-06-11 15:09:24 +00:00
Thorin-Oakenpants
a92c4086bb
2622: middlemouse.paste, closes #735 2019-06-10 00:38:20 +00:00
Thorin-Oakenpants
9b7771fe76
1401: document fonts => active, see #731
- https://github.com/ghacksuserjs/ghacks-user.js/issues/731#issuecomment-500255686
- reverting my change from last release
2019-06-10 00:06:15 +00:00
Thorin-Oakenpants
2265b73521
1406: css.font-loading-api=> inactive, closes #731 2019-06-09 23:56:40 +00:00
Thorin-Oakenpants
01aae1b346
2426: IntersectionObserver=> inactive, closes #737 2019-06-09 23:29:58 +00:00
Thorin-Oakenpants
f53b996cfa
toolkit.telemetry.cachedClientID, closes #739
Read the linked issue
2019-06-07 17:49:42 +00:00
Thorin-Oakenpants
a633622d11
67-beta 2019-05-28 14:45:07 +00:00
Thorin-Oakenpants
caaf76e3fb
remove 2705 2019-05-28 14:42:44 +00:00
Thorin-Oakenpants
8811a28c56
2705: document.cookie max lifetime
https://bugzilla.mozilla.org/show_bug.cgi?id=1529836
2019-05-28 14:04:09 +00:00
Thorin-Oakenpants
fdc9db9a08
1600s revamp
- no need to enforce defaults (except the second cross-origin) = less items in prefs and about:support
- simplify header info
- add in that you need an extension for real control: i.e for most people, e.g I use uMatrix and have never can to whitelist anything. Kolanich has been on settings of 2 for years and only found one broken site: these are anecdotal and don;t reflect the real world: which is why the settings are pretty relaxed
- move the broken info out of header and onto the pref in a setup tag
- reference: https://github.com/ghacksuserjs/ghacks-user.js/issues/716#issuecomment-488527274
- thanks Kolanich and 🐈
2019-05-26 08:43:12 +00:00
Thorin-Oakenpants
c079c3c632
0110: clean up 2019-05-26 06:07:41 +00:00
Thorin-Oakenpants
6f76a9bfd2
2030 new default 2019-05-26 05:51:13 +00:00
Thorin-Oakenpants
dfab1516ef
FF67+ deprecated 2019-05-26 05:33:57 +00:00
Thorin-Oakenpants
57339d09b1
2618 -> RFP ALTs 2019-05-26 05:16:17 +00:00
Thorin-Oakenpants
ed23a88c08
save 87bytes 2019-05-24 22:50:24 +00:00
Thorin-Oakenpants
dae1087082
2660 enabledScopes, closes #729 2019-05-23 21:11:45 +00:00
Thorin-Oakenpants
7a103b0c23
FPI: 1330467 backed out
now that stable has landed.. I'll leave the text in place
2019-05-21 22:23:23 +00:00
Thorin-Oakenpants
5d5a9acaa4
FPI: 69+ isolate pdfjs range-based requests 2019-05-14 06:48:49 +00:00
Thorin-Oakenpants
76c476ee3c
2204: replace [test]
old test: https://developer.mozilla.org/samples/domref/fullscreen.html
- for me the video comes up as "no video with supported format and mime type", so may not be practical for all users
2019-05-12 13:52:53 +00:00
Thorin-Oakenpants
b3c6561ba8
2203: change [test]
It's the same test (thanks gk)
2019-05-12 13:44:12 +00:00
Thorin-Oakenpants
a4c2bb80aa
2429 remove default tag 2019-05-12 02:48:06 +00:00
Thorin-Oakenpants
a173d30d4e
RFP 68+ isolate site permissions 2019-05-10 22:34:24 +00:00
Thorin-Oakenpants
fc801db06a
RFP stuff 2019-05-08 15:43:41 +00:00
Thorin-Oakenpants
540f5ce868
FF68+ letterboxing changes 2019-05-08 05:18:16 +00:00
Thorin-Oakenpants
473e88c784
spring cleaning, part 3: see #716 2019-05-05 17:28:47 +00:00
Thorin-Oakenpants
da4cfce10f
RFP: OS spoof changes FF68+ 2019-05-03 13:19:55 +00:00
Thorin-Oakenpants
7394f2f553
2027: remove, #716
default false since forever
2019-05-03 07:36:04 +00:00
Thorin-Oakenpants
329719fe25
0400s: more cleanup, see #710 2019-05-03 02:03:56 +00:00
Thorin-Oakenpants
59a85bcdda
spring cleaning, part 2: see #716
- 0910 same as default for desktop. Android is the opposite, must be for a reason. Android is not really my concern.
- 1005: always been inactive: one less warning to deal with
- 1008: always been inactive. defaults are 60, 60
2019-05-03 00:35:04 +00:00
Thorin-Oakenpants
dab27cd143
spring cleaning, part 1: see #716
All of these are the same as default, checked back to ESR60 and Ff60. Except 2211 which is not considered an issue by TB for example, and it doesn't enhance anything IMO
2019-05-03 00:09:05 +00:00
Thorin-Oakenpants
1ff14e31c0
1201: TLS max -> inactive
Lets be consistent, we don't make min active as it alters your FP, and the risk is super low (updated the telemetry stat: down from 2% to 0.5%). Default max is now 4 anyway (don't care about ESR - they should be using the v60 archive).
2019-05-02 00:47:14 +00:00
Thorin-Oakenpants
c55ecbd8b2
0701: IPv6, MOAR info 2019-05-02 00:30:27 +00:00
Thorin-Oakenpants
99eb835e7a
merge 0603 + 0608
- also remove reference which is pretty much useless
2019-04-30 14:26:48 +00:00
Thorin-Oakenpants
7bb0bfefe1
combine search suggestions, add tag, see #609
also remove `browser.urlbar.userMadeSearchSuggestionsChoice`
2019-04-30 13:46:41 +00:00
Thorin-Oakenpants
600f9677e9
1820+1825+1830 changes, closes #709 2019-04-30 09:10:42 +00:00
Thorin-Oakenpants
11f40f8a84
1800s remove: gmp/cdm update prefs, see #709 2019-04-30 08:25:06 +00:00
Thorin-Oakenpants
c3a74a7c6e
2615: remove obsolete note
1445942 was resolved in FF66
2019-04-30 07:21:08 +00:00
Thorin-Oakenpants
9da3cf4be8
1840: openh264: remove, see #709
Instead of being inactive, remove this. WebRTC is already blocked. And it can also be controlled by 1820. Redundant and does nothing extra for privacy, security etc
2019-04-29 18:21:01 +00:00
Thorin-Oakenpants
50869a734f
[setup-*] always goes after [notes] 2019-04-29 18:13:47 +00:00
Thorin-Oakenpants
bb788682c9
fixup: remove duplicate pref 2019-04-29 17:44:53 +00:00