shell-things/conf/firefox-forbidden-policies.js

//
// Remember to start writing at line 2. This is my second attempt at Firefox
// autoconfig after being taught by LibreAwoo, but this time I am trying to
// avoid duplicating my browser policy, which you can find from the same
// repository, etc/firefox/policies/policies.json

// If autoconfig is not found, fallback. Also means this file.
lockPref("autoadmin.failover_to_cached", true);
lockPref(
	"autoadmin.global_config_url",
	"https://gitea.blesmrt.net/mikaela/shell-things/raw/branch/master/conf/firefox-forbidden-policies.js",
);
lockPref("autoadmin.offline_failover", true);
lockPref("autoadmin.refresh_interval", 120);

// Automatically click cookiebanners although uBlock Origin might block them
lockPref("cookiebanners.bannerClicking.enabled", true);
lockPref("cookiebanners.service.mode", 2);
lockPref("cookiebanners.service.mode.privateBrowsing", 2);

// I can set my preferred fonts in an order! :O
// but obviously this is forbidden in policies.json!
lockPref("font.default.el", "serif");
lockPref("font.default.x-cyrillic", "serif");
lockPref("font.default.x-western", "serif");
// lockPref(
// 	"font.name-list.monospace.x-cyrillic",
// 	"Noto Shanns Mono, monospace",
// );
// lockPref("font.name-list.monospace.x-western", "Noto Shanns Mono, monospace");
// lockPref("font.name-list.sans-serif.x-cyrillic", "Noto Sans, sans-serif");
// lockPref("font.name-list.sans-serif.x-western", "Noto Sans, sans-serif");
// lockPref("font.name-list.serif.x-cyrillic", "Noto Serif, serif");
// lockPref("font.name-list.serif.x-western", "Noto Serif, serif");
clearPref("font.name-list.monospace.x-cyrillic");
clearPref("font.name-list.monospace.x-western");
clearPref("font.name-list.sans-serif.x-cyrillic");
clearPref("font.name-list.sans-serif.x-western");
clearPref("font.name-list.serif.x-cyrillic");
clearPref("font.name-list.serif.x-western");
//
lockPref("font.name.monospace.el", "Liberation Mono");
lockPref("font.name.monospace.x-cyrillic", "Liberation Mono");
lockPref("font.name.monospace.x-western", "Liberation Mono");
//
lockPref("font.name.sans-serif.el", "Liberation Sans");
lockPref("font.name.sans-serif.x-cyrillic", "Liberation Sans");
lockPref("font.name.sans-serif.x-western", "Liberation Sans");
//
lockPref("font.name.serif.el", "Liberation Serif");
lockPref("font.name.serif.x-cyrillic", "Liberation Serif");
lockPref("font.name.serif.x-western", "Liberation Serif");

// Play animated images only once, accessibility.
lockPref("image.animation.mode", "once");

// Spoof en-US as language to scripts
lockPref("javascript.use_us_english_locale", true);

// DNT although PrivacyBadger from policy handles this
lockPref("privacy.donottrackheader.enabled", true);
lockPref("privacy.donottrackheader.value", 1);

// More tunable privacy.resistfingerprinting. I have lost the privacy game
// many times before this point, so this is nothing.  For the options,
// refer to https://searchfox.org/mozilla-central/source/toolkit/components/resistfingerprinting/RFPTargets.inc
lockPref("privacy.fingerprintingProtection", true);
// Somehow I cannot clearPref this, so...
//clearPref("privacy.fingerprintingProtection");
//lockPref("privacy.fingerprintingProtection", false);
pref(
	"privacy.fingerprintingProtection.overrides",
	"+AllTargets,-KeyboardEvents,-SpeechSynthesis,-CSSPrefersColorScheme,-CSSPrefersReducedMotion,-NavigatorUserAgent,-JSDateTimeUTC",
);
//clearPref("privacy.fingerprintingProtection.overrides");
lockPref("privacy.fingerprintingProtection.pbmode", true);
//clearPref("privacy.fingerprintingProtection.pbmode");
// (Incompatible with the above)
lockPref("privacy.resistFingerprinting", false);
//clearPref("privacy.resistFingerprinting");
lockPref("privacy.resistFingerprinting.block_mozAddonManage", true);
//clearPref("privacy.resistFingerprinting.block_mozAddonManage");
// Letterboxing from Tor Browser, I like it in general.
lockPref("privacy.resistFingerprinting.letterboxing", true);
// Still Incompatible with the above
//lockPref("privacy.resistFingerprinting.pbmode", false);
clearPref("privacy.resistFingerprinting.pbmode");

// Enables reading mode for all pages (at least in theory)
lockPref("reader.parse-on-load.force-enabled", true);

// Ensure OCSP stapling is enabled, especially if the server has it
lockPref("security.ssl.enable_ocsp_must_staple", true);

// TODO: Consider removing this when ESR updates as only it needs this for
// ECH, which is otherwise the default=
lockPref("security.tls.ech.grease_http3", true);

// New sidebar
lockPref("sidebar.revamp", true);

// No making configuration on the last line of the file!
//
firefox: comment fingerprinting protections for now 2024-05-19 17:46:25 +02:00			`//`
initial commit of firefox-forbidden-policies.js (autoconfig take#2) 2024-05-19 13:05:04 +02:00			`// Remember to start writing at line 2. This is my second attempt at Firefox`
			`// autoconfig after being taught by LibreAwoo, but this time I am trying to`
			`// avoid duplicating my browser policy, which you can find from the same`
			`// repository, etc/firefox/policies/policies.json`

			`// If autoconfig is not found, fallback. Also means this file.`
firefox-forbidden-policies.js: use lockPref so it's clear what cannot be changed within the browser 2024-05-19 19:38:32 +02:00			`lockPref("autoadmin.failover_to_cached", true);`
			`lockPref(`
initial commit of firefox-forbidden-policies.js (autoconfig take#2) 2024-05-19 13:05:04 +02:00			`"autoadmin.global_config_url",`
			`"https://gitea.blesmrt.net/mikaela/shell-things/raw/branch/master/conf/firefox-forbidden-policies.js",`
			`);`
firefox-forbidden-policies.js: use lockPref so it's clear what cannot be changed within the browser 2024-05-19 19:38:32 +02:00			`lockPref("autoadmin.offline_failover", true);`
			`lockPref("autoadmin.refresh_interval", 120);`
initial commit of firefox-forbidden-policies.js (autoconfig take#2) 2024-05-19 13:05:04 +02:00
			`// Automatically click cookiebanners although uBlock Origin might block them`
firefox-forbidden-policies.js: use lockPref so it's clear what cannot be changed within the browser 2024-05-19 19:38:32 +02:00			`lockPref("cookiebanners.bannerClicking.enabled", true);`
			`lockPref("cookiebanners.service.mode", 2);`
			`lockPref("cookiebanners.service.mode.privateBrowsing", 2);`
initial commit of firefox-forbidden-policies.js (autoconfig take#2) 2024-05-19 13:05:04 +02:00
Does Mozilla have a point in not allowing me to customize fonts through policy? No comment. 2024-05-19 19:19:35 +02:00			`// I can set my preferred fonts in an order! :O`
			`// but obviously this is forbidden in policies.json!`
firefox: explicitly specify serif as default font 2024-05-25 10:53:01 +02:00			`lockPref("font.default.el", "serif");`
			`lockPref("font.default.x-cyrillic", "serif");`
			`lockPref("font.default.x-western", "serif");`
firefox: clear prior font mess 2024-05-25 10:26:46 +02:00			`// lockPref(`
			`// "font.name-list.monospace.x-cyrillic",`
			`// "Noto Shanns Mono, monospace",`
			`// );`
			`// lockPref("font.name-list.monospace.x-western", "Noto Shanns Mono, monospace");`
			`// lockPref("font.name-list.sans-serif.x-cyrillic", "Noto Sans, sans-serif");`
			`// lockPref("font.name-list.sans-serif.x-western", "Noto Sans, sans-serif");`
			`// lockPref("font.name-list.serif.x-cyrillic", "Noto Serif, serif");`
			`// lockPref("font.name-list.serif.x-western", "Noto Serif, serif");`
			`clearPref("font.name-list.monospace.x-cyrillic");`
			`clearPref("font.name-list.monospace.x-western");`
			`clearPref("font.name-list.sans-serif.x-cyrillic");`
			`clearPref("font.name-list.sans-serif.x-western");`
			`clearPref("font.name-list.serif.x-cyrillic");`
			`clearPref("font.name-list.serif.x-western");`
firefox: specify Liberation Fonts 2024-05-25 10:47:29 +02:00			`//`
			`lockPref("font.name.monospace.el", "Liberation Mono");`
			`lockPref("font.name.monospace.x-cyrillic", "Liberation Mono");`
			`lockPref("font.name.monospace.x-western", "Liberation Mono");`
			`//`
			`lockPref("font.name.sans-serif.el", "Liberation Sans");`
			`lockPref("font.name.sans-serif.x-cyrillic", "Liberation Sans");`
			`lockPref("font.name.sans-serif.x-western", "Liberation Sans");`
			`//`
			`lockPref("font.name.serif.el", "Liberation Serif");`
			`lockPref("font.name.serif.x-cyrillic", "Liberation Serif");`
			`lockPref("font.name.serif.x-western", "Liberation Serif");`
Does Mozilla have a point in not allowing me to customize fonts through policy? No comment. 2024-05-19 19:19:35 +02:00
initial commit of firefox-forbidden-policies.js (autoconfig take#2) 2024-05-19 13:05:04 +02:00			`// Play animated images only once, accessibility.`
firefox-forbidden-policies.js: use lockPref so it's clear what cannot be changed within the browser 2024-05-19 19:38:32 +02:00			`lockPref("image.animation.mode", "once");`
initial commit of firefox-forbidden-policies.js (autoconfig take#2) 2024-05-19 13:05:04 +02:00
			`// Spoof en-US as language to scripts`
firefox-forbidden-policies.js: use lockPref so it's clear what cannot be changed within the browser 2024-05-19 19:38:32 +02:00			`lockPref("javascript.use_us_english_locale", true);`
initial commit of firefox-forbidden-policies.js (autoconfig take#2) 2024-05-19 13:05:04 +02:00
			`// DNT although PrivacyBadger from policy handles this`
firefox-forbidden-policies.js: use lockPref so it's clear what cannot be changed within the browser 2024-05-19 19:38:32 +02:00			`lockPref("privacy.donottrackheader.enabled", true);`
			`lockPref("privacy.donottrackheader.value", 1);`
initial commit of firefox-forbidden-policies.js (autoconfig take#2) 2024-05-19 13:05:04 +02:00
			`// More tunable privacy.resistfingerprinting. I have lost the privacy game`
firefox: give fingerprintingprotection another chance 2024-05-21 16:42:56 +02:00			`// many times before this point, so this is nothing. For the options,`
			`// refer to https://searchfox.org/mozilla-central/source/toolkit/components/resistfingerprinting/RFPTargets.inc`
			`lockPref("privacy.fingerprintingProtection", true);`
forbidden policies: if I cannot clear it, I will lock it 2024-05-19 19:00:31 +02:00			`// Somehow I cannot clearPref this, so...`
			`//clearPref("privacy.fingerprintingProtection");`
firefox: give fingerprintingprotection another chance 2024-05-21 16:42:56 +02:00			`//lockPref("privacy.fingerprintingProtection", false);`
			`pref(`
			`"privacy.fingerprintingProtection.overrides",`
firefox: remove deprecated navigator.platform as well 2024-05-21 17:59:51 +02:00			`"+AllTargets,-KeyboardEvents,-SpeechSynthesis,-CSSPrefersColorScheme,-CSSPrefersReducedMotion,-NavigatorUserAgent,-JSDateTimeUTC",`
firefox: give fingerprintingprotection another chance 2024-05-21 16:42:56 +02:00			`);`
			`//clearPref("privacy.fingerprintingProtection.overrides");`
			`lockPref("privacy.fingerprintingProtection.pbmode", true);`
			`//clearPref("privacy.fingerprintingProtection.pbmode");`
initial commit of firefox-forbidden-policies.js (autoconfig take#2) 2024-05-19 13:05:04 +02:00			`// (Incompatible with the above)`
firefox: give fingerprintingprotection another chance 2024-05-21 16:42:56 +02:00			`lockPref("privacy.resistFingerprinting", false);`
			`//clearPref("privacy.resistFingerprinting");`
			`lockPref("privacy.resistFingerprinting.block_mozAddonManage", true);`
			`//clearPref("privacy.resistFingerprinting.block_mozAddonManage");`
initial commit of firefox-forbidden-policies.js (autoconfig take#2) 2024-05-19 13:05:04 +02:00			`// Letterboxing from Tor Browser, I like it in general.`
firefox: comment fingerprinting protections for now 2024-05-19 17:46:25 +02:00			`lockPref("privacy.resistFingerprinting.letterboxing", true);`
initial commit of firefox-forbidden-policies.js (autoconfig take#2) 2024-05-19 13:05:04 +02:00			`// Still Incompatible with the above`
firefox-forbidden-policies.js: use lockPref so it's clear what cannot be changed within the browser 2024-05-19 19:38:32 +02:00			`//lockPref("privacy.resistFingerprinting.pbmode", false);`
firefox: comment fingerprinting protections for now 2024-05-19 17:46:25 +02:00			`clearPref("privacy.resistFingerprinting.pbmode");`
initial commit of firefox-forbidden-policies.js (autoconfig take#2) 2024-05-19 13:05:04 +02:00
			`// Enables reading mode for all pages (at least in theory)`
firefox-forbidden-policies.js: use lockPref so it's clear what cannot be changed within the browser 2024-05-19 19:38:32 +02:00			`lockPref("reader.parse-on-load.force-enabled", true);`
initial commit of firefox-forbidden-policies.js (autoconfig take#2) 2024-05-19 13:05:04 +02:00
			`// Ensure OCSP stapling is enabled, especially if the server has it`
firefox-forbidden-policies.js: use lockPref so it's clear what cannot be changed within the browser 2024-05-19 19:38:32 +02:00			`lockPref("security.ssl.enable_ocsp_must_staple", true);`
initial commit of firefox-forbidden-policies.js (autoconfig take#2) 2024-05-19 13:05:04 +02:00
			`// TODO: Consider removing this when ESR updates as only it needs this for`
			`// ECH, which is otherwise the default=`
firefox-forbidden-policies.js: use lockPref so it's clear what cannot be changed within the browser 2024-05-19 19:38:32 +02:00			`lockPref("security.tls.ech.grease_http3", true);`
initial commit of firefox-forbidden-policies.js (autoconfig take#2) 2024-05-19 13:05:04 +02:00
firefox: add sidebar.revamp and allow unloading Sidebery 2024-05-23 05:57:13 +02:00			`// New sidebar`
			`lockPref("sidebar.revamp", true);`

initial commit of firefox-forbidden-policies.js (autoconfig take#2) 2024-05-19 13:05:04 +02:00			`// No making configuration on the last line of the file!`
			`//`