mikaela.github.io/pages/browser-extensions.markdown

315 lines
14 KiB
Markdown
Raw Normal View History

---
layout: page
title: Browser extensions I often end up installing
permalink: /browser-extensions.html
sitemap: false
robots: noindex, noai
excerpt: "Browser advanced configuration that tends to not sync"
redirect_from:
- /firefox.html
- /firefox-extensions.html
- /firefox-addons.html
- /chrome.html
- /chromium.html
2024-05-30 08:05:52 +02:00
lang: en
---
Browser extensions are living in my browser policies.
- [Firefox](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/etc/firefox/policies)
- [Chromium](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/etc/opt/chromium/policies/managed)
2024-05-29 10:18:10 +02:00
<!-- editorconfig-checker-disable -->
<!-- prettier-ignore-start -->
2023-03-24 12:30:03 +01:00
<!-- START doctoc generated TOC please keep comment here to allow auto update -->
<!-- DON'T EDIT THIS SECTION, INSTEAD RE-RUN doctoc TO UPDATE -->
2024-05-30 08:05:52 +02:00
<em lang="fi">Automaattinen sisällysluettelo</em> / <em lang="en">Automatically generated Table of Contents</em>
2023-03-24 12:30:03 +01:00
- [Chromium flags](#chromium-flags)
- [Vendor-prefixed](#vendor-prefixed)
- [Firefox about:config](#firefox-aboutconfig)
- [Advertising](#advertising)
- [Cookie banner blocking](#cookie-banner-blocking)
2023-03-24 12:30:03 +01:00
- [DNS over HTTPS](#dns-over-https)
- [SSDs](#ssds)
<!-- END doctoc generated TOC please keep comment here to allow auto update -->
2024-05-29 10:18:10 +02:00
<!-- prettier-ignore-end -->
<!-- editorconfig-checker-enable -->
<!--
2019-12-05 15:33:18 +01:00
https://addons.mozilla.org/firefox/addon/text-link/ - doubleclick plaintext link to use
* [Ecosia search engine at Mycroft Project](https://mycroftproject.com/search-engines.html?name=ecosia.org)
## Firefox containers
2019-09-12 13:31:14 +02:00
<table>
<tr>
<th>Name</th>
<th>Link</th>
<th>Source</th>
<th>Comment</th>
</tr>
<tr>
<td>Firefox Multi Account Containers</td>
<td><a href="https://addons.mozilla.org/firefox/addon/multi-account-containers">Firefox Add-ons</a></td>
2019-09-12 13:31:14 +02:00
<td>TBD</td>
<td></td>
</tr>
</table>
## Firefox language packs
* [Czech](https://addons.mozilla.org/firefox/addon/czech-cz-language-pack/)
* [English-US](https://addons.mozilla.org/firefox/addon/english-us-language-pack/)
* [Esperanto](https://addons.mozilla.org/firefox/addon/esperanto-language-pack/)
* Estonian?
* [Finnish](https://addons.mozilla.org/firefox/addon/finnish-language-pack/)
* Spanish?
* Swedish?
## Instant Messaging
* [Radical](https://github.com/stoically/radical) - Element, Matrix.org client as webextensions
* [Firefox](https://addons.mozilla.org/firefox/addon/radical-web)
## Passwords
2019-09-12 13:51:50 +02:00
<table>
<tr>
<th>Name</th>
<th>Firefox</th>
<th>Chromium</th>
<th>Source</th>
</tr>
<tr>
<td>Bitwarden</td>
<td><a href="https://addons.mozilla.org/firefox/addon/bitwarden-password-manager/">Firefox Add-ons</a></td>
2019-09-12 13:51:50 +02:00
<td><a href="https://chrome.google.com/webstore/detail/bitwarden-free-password-m/nngceckbapebfimnlniiiahkandclblb">Chrome Web Store</a></td>
<td>TBD</td>
</tr>
</table>
## Privacy
* [Behave!](https://github.com/mindedsecurity/behave) - reveals portscanning performed by websites (detects IPFS).
* [Firefox](https://addons.mozilla.org/en-US/firefox/addon/behave/)
* [Chrome](https://chrome.google.com/webstore/detail/mppjbkhgconmemoeagfbgilblohhcica/)
* [HTTPS Everywhere], [source code]
* <s>[Firefox](https://addons.mozilla.org/firefox/addon/https-everywhere/)</s> `dom.security.https_only_mode` `true`
* [Chrome](https://chrome.google.com/webstore/detail/https-everywhere/gcbommkclmclpchllfjekcdonpmejbdp)
* NoScript (which I use more for anti-annoyance than privacy)
* [Chrome](https://chrome.google.com/webstore/detail/noscript/doojmbjmlfjjnbmnoijecmcbfeoakpjm/)
* [Firefox](https://addons.mozilla.org/firefox/addon/noscript/)
* [Source/GitHub](https://github.com/hackademix/noscript/)
* Snowflake to help censored users (won't increase user privacy), requires WebRTC
* https://addons.mozilla.org/firefox/addon/torproject-snowflake/
* https://chrome.google.com/webstore/detail/snowflake/mafpmfcccpbjnhfhjnllmmalhifmlcie
## Productivity
* [Firefox: Mind The Time](https://addons.mozilla.org/firefox/addon/mind-the-time/)
* [Chrome equivalent: Webtime tracker](https://chrome.google.com/webstore/detail/webtime-tracker/ppaojnbmmaigjmlpjaldnkgnklhicppk)
## Misc
* [Firefox: IPvFoo](https://addons.mozilla.org/firefox/addon/ipvfoo-pmarks/)
* [Chrome](https://chrome.google.com/webstore/detail/ipvfoo/ecanpcehffngcegjmadlcijfolapggal)
* [Firefox: RSS feed preview](https://addons.mozilla.org/firefox/addon/feed-preview/)
* [Chrome: RSS](https://chrome.google.com/webstore/detail/rss-subscription-extensio/nlbjncdgjeocebhnmkbbbdekmmmcbfjd)
* [Firefox: IPFS Companion](https://addons.mozilla.org/firefox/addon/ipfs-companion/)
* [Firefox: beta channel of IPFS Companion](https://bafybeibjozlsoxzrxsoklis775aglnwpal2hjl42ippo57jdwiv6zoij7m.ipfs.dweb.link/)
* doesn't sync automatically with Firefox Sync.
2018-09-22 11:37:17 +02:00
* [Chrome](https://chrome.google.com/webstore/detail/ipfs-companion/nibjojkomfdiaoajekhjakgkdhaomnch)
* At the time of writing, 2019-07-13, I consider IPFS as
2018-09-22 11:37:17 +02:00
**incompatible with Tor Browser** as Tor browser would use the local
IPFS daemon, which **is not using Tor** and thus the IPFS network
**could see your real IP** especially if not many nodes are
requesting the fetched content.
* [Firefox: Foxy Proxy](https://addons.mozilla.org/firefox/addon/foxyproxy-standard/)
* [Chrome?](https://chrome.google.com/webstore/detail/foxyproxy-standard/gcknhkkoolaabfmlnjonogaaifnjlfnp)
* Onions to Tor, I2P to I2P. [My rules](https://bafybeia7yeie5a6arstytabl6bfhacmidcy4yhht3e6dfrrq4gi2gry4pu.{{site.ipfsSubdomainGateway}}/foxyproxy.json)
* [Firefox: Foxy Tab](https://addons.mozilla.org/firefox/addon/foxytab/)
* Verify-Me for rel=me verifications (Indieweb)
* https://addons.mozilla.org/firefox/addon/verify-me/
* https://chrome.google.com/webstore/detail/verify-me/nnefkajddpfponfnmaflddipljfdlcjb
2019-03-05 18:07:51 +01:00
## Usability
* [Firefox: Tree Style Tab](https://addons.mozilla.org/firefox/addon/tree-style-tab/)
* Tab Suspender
* https://addons.mozilla.org/firefox/addon/ff-tab-suspender/
* [Dark Background and light text (GitHub)](https://github.com/m-khvoinitsky/dark-background-light-text-extension)
* [Firefox](https://addons.mozilla.org/firefox/addon/dark-background-light-text/)
2019-03-05 18:07:51 +01:00
## Videos
* Invdition - YouTube to Invidious and Twitter to Nitter
* https://addons.mozilla.org/firefox/addon/invidition/
2018-09-22 11:37:17 +02:00
## Firefox Dictionaries
TODO: Sort this list.
* Estonian?
* Spanish?
* Swedish?
* [Esperanto](https://addons.mozilla.org/firefox/addon/esperanta-vortaro/)
* [UK English](https://addons.mozilla.org/firefox/addon/british-english-dictionary-2/)
* [Czech](https://addons.mozilla.org/firefox/addon/czech-spell-checking-dictionar/)
* [Swedish](https://addons.mozilla.org/firefox/addon/g%C3%B6rans-hemmasnickrade-ordli/)
* * * * *
-->
# Chromium flags
2024-06-19 07:19:44 +02:00
These can generally be found from `about:flags` on Chromium based browsers, for
Vivaldi explicit `vivaldi://flags` is required and it also has
`chrome://settings` for the usual Chromium settings.
2023-02-22 19:28:38 +01:00
- `#enable-quic` - enabled
- `#enable-force-dark` - enabled with increased text constract
- `#force-color-profile` - sRGB
- `#trust-tokens` - enabled
## Vendor-prefixed
These likely also exist, but just without the `vendor-` part when searhcing.
2023-02-22 19:28:38 +01:00
- `#edge-automatic-https` - enabled
- `#edge-autoplay-user-setting-block-option`
- `#edge-tab-groups` - enabled
- `#edge-tab-groups-auto-create` - enabled
- `#edge-tab-groups-collapse-freezing` - enabled
# Firefox about:config
2024-06-19 07:19:44 +02:00
_On LibreAwoo or autoconfig, refer to my
[conf/librewolf.overrides.cfg in my shell-things repo](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/conf/librewolf.overrides.cfg)
which has kind of replaced this section?._
- `security.certerrors.mitm.auto_enable_enterprise_roots` to `false` in order to
not trust system CA store in case of enterprise MITM
- `security.OCSP.require` to `true` in order to not allow
[OCSP](https://en.wikipedia.org/wiki/OCSP_stapling) soft fail. This may be a
bit paranoid, but _only the paranoid survive._
- `privacy.resistFingerprinting.letterboxing` = `true` so letterboxing is used
to hide real browser size.
[Tor Browser support](https://support.torproject.org/tbb/maximized-torbrowser-window/)
2023-02-22 19:28:38 +01:00
- [Bug 70315: text in menus and boxes unreadable if using dark GTK theme](https://bugzilla.mozilla.org/show_bug.cgi?id=70315))
2024-06-19 07:19:44 +02:00
- `image.animation_mode` to `once` in order to have gifs play once and then stop
everywhere (`none` to never have them play).
- `geo.provider.network.url` to
`https://location.services.mozilla.com/v1/geolocate?key=%MOZILLA_API_KEY%` in
order to send nearby WiFi networks to Mozilla instead of Google. See also
[MLS Software](https://wiki.mozilla.org/CloudServices/Location/Software).
- `network.IDN_show_punycode` to `true` in order to see punycode instead of
UTF-8 in case of spoofing attempt. However makes reading non-ASCII domains
painful. E.g. Cyrillic alphabet
- `reader.parse-on-load.force-enabled` to `true` in order to allow reader use to
be used on ~all websites and devices (regardless of low RAM?)
Future note:
[`network.dns.blockDotOnion;false`](https://bugzilla.mozilla.org/show_bug.cgi?id=1497263)
?
## Advertising
2024-06-19 07:19:44 +02:00
Firefox seems to contain a lot of advertising or sponsoring nowadays, whether to
other Mozilla products or whoever pays them. See also
[Bug 1773860: Provide global long-term "disable all promos" flag](https://bugzilla.mozilla.org/show_bug.cgi?id=1773860).
2024-06-19 07:19:44 +02:00
- `browser.newtabpage.activity-stream.showSponsored` &
`browser.newtabpage.activity-stream.showSponsored` to `false` to stop
sponsored links.
- `browser.vpn_promo.enabled` to `false` to hopefully stop Mozilla VPN
advertisements
2023-02-22 19:28:38 +01:00
- `browser.promo.focus.enabled` to `false` to stop Firefox Focus advertisements?
2024-06-19 07:19:44 +02:00
- `browser.preferences.moreFromMozilla` to `false` to not hear from other
Mozilla products?
## [Cookie banner blocking](https://www.ghacks.net/2022/12/24/configure-firefox-to-reject-cookie-banners-automatically/)
TODO: clean write this.
```js
defaultPref("cookiebanners.service.mode", 2);
defaultPref("cookiebanners.service.mode.privateBrowsing", 2);
defaultPref("cookiebanners.bannerClicking.enabled", true);
```
## DNS over HTTPS
2024-06-19 07:19:44 +02:00
- `network.trr.mode` depends, `3` to enforce DoH (required for ECH) or `5` to
explicitly disable. `2` to prefer DoH, but fallback to system also exists.
- [DoH is required by Firefox ESNI/ECH support](https://bugzilla.mozilla.org/show_bug.cgi?id=1500289)
which encrypts SNI/ClientHello which would still leak which sites you visit.
[Another bug about ESNI/ECH + Android DoT](https://bugzilla.mozilla.org/show_bug.cgi?id=1542754#c3)
- Are you using a VPN? Do they provide a DoH server? If yes, maybe the answer
is 3 for ESNI/ECH?
2023-02-22 19:28:38 +01:00
- `network.trr.early-AAAA` `true` to hopefully prefer IPv6
- `network.trr.uri` for the actual resolver address, e.g.
`https://doh.mullvad.net/dns-query`
2024-06-19 07:19:44 +02:00
- and if they provide as SOCKS proxy as a killswitch,
`network.proxy.socks_remote_dns` must be `false`
- `network.trr.disable-ECS` to `false` if preferring speed over privacy or using
NextDNS private ECS.
2023-02-22 19:28:38 +01:00
- [Wikipedia: EDNS Client Subnet](https://en.wikipedia.org/wiki/EDNS_Client_Subnet)
Some notes:
2023-02-22 19:28:38 +01:00
2024-06-19 07:19:44 +02:00
- There is also `network.trr.exclude-etc-hosts` for those using `/etc/hosts` for
blocking.
- You can confirm TRR working by visiting `about:networking#dns` where you
should be seeing DNS cache of Firefox and a lot of `TRR: true`.
- ECH requires `network.dns.echconfig.enabled` and
`network.dns.use_https_rr_as_altsvc` to be `true`, but they seem to default to
true at least in Firefox Nightly so maybe no action is needed.
- [While investingating how Android 9 Private DNS works, I also wrote a DNS
provider comparsion here on 2019-07-11]({% post_url blog/2019-07-11-android-private-dns-in-practice %})
## SSDs
2024-06-19 07:19:44 +02:00
This information is from
[Arch Wiki on Firefox tweaks](https://wiki.archlinux.org/index.php/Firefox/Tweaks)
<!-- - `browser.cache.disk.enable` to `false` to only cache to RAM.
- (`browser.cache.memory.enable` to `true` which should be default) -->
2024-06-19 07:19:44 +02:00
- `browser.sessionstore.interval` to `600000` in order to only store open
session every ten minutes (instead of 15 seconds) in case of crashes.
- alternatively `browser.sessionstore.resume_from_crash` to `false` to not
store the session data for crash recovery at all. I think this may be the
more healthy option with all the information flood and dozens of tabs.
Why?
2024-06-19 07:19:44 +02:00
> Every object loaded (html page, jpeg image, css stylesheet, gif banner) is
> saved in the Firefox cache for future use without the need to download it
> again. It is estimated that only a fraction of these objects will be reused,
> usually about 30%. This because of very short object expiration time, updates
> or simply user behavior (loading new pages instead of returning to the ones
> already visited). The Firefox cache is divided into memory and disk cache and
> the latter results in frequent disk writes: newly loaded objects are written
> to memory and older objects are removed.
2024-06-19 07:19:44 +02:00
> Firefox stores the current session status (opened urls, cookies, history and
> form data) to the disk on a regular basis. It is used to recover a previous
> session in case of crash. The default setting is to save the session every 15
> seconds, resulting in frequent disk access.
and this is the reason why Firefox is at times accused of killing SSDs.
2023-02-22 19:28:38 +01:00
---
2024-06-19 07:19:44 +02:00
Changelog:
[GitHub.com commits](https://github.com/Mikaela/mikaela.github.io/commits/master/pages/browser-extensions.markdown)
|
[gitea.blesmrt.net commits](https://gitea.blesmrt.net/mikaela/mikaela-info/commits/branch/master/pages/browser-extensions.markdown)