2024-05-19 17:46:25 +02:00
|
|
|
//
|
2024-05-19 13:05:04 +02:00
|
|
|
// Remember to start writing at line 2. This is my second attempt at Firefox
|
|
|
|
// autoconfig after being taught by LibreAwoo, but this time I am trying to
|
|
|
|
// avoid duplicating my browser policy, which you can find from the same
|
|
|
|
// repository, etc/firefox/policies/policies.json
|
|
|
|
|
|
|
|
// If autoconfig is not found, fallback. Also means this file.
|
2024-05-19 19:38:32 +02:00
|
|
|
lockPref("autoadmin.failover_to_cached", true);
|
|
|
|
lockPref(
|
2024-05-19 13:05:04 +02:00
|
|
|
"autoadmin.global_config_url",
|
|
|
|
"https://gitea.blesmrt.net/mikaela/shell-things/raw/branch/master/conf/firefox-forbidden-policies.js",
|
|
|
|
);
|
2024-05-19 19:38:32 +02:00
|
|
|
lockPref("autoadmin.offline_failover", true);
|
|
|
|
lockPref("autoadmin.refresh_interval", 120);
|
2024-05-19 13:05:04 +02:00
|
|
|
|
|
|
|
// Automatically click cookiebanners although uBlock Origin might block them
|
2024-05-19 19:38:32 +02:00
|
|
|
lockPref("cookiebanners.bannerClicking.enabled", true);
|
|
|
|
lockPref("cookiebanners.service.mode", 2);
|
|
|
|
lockPref("cookiebanners.service.mode.privateBrowsing", 2);
|
2024-05-19 13:05:04 +02:00
|
|
|
|
2024-05-19 19:19:35 +02:00
|
|
|
// I can set my preferred fonts in an order! :O
|
|
|
|
// but obviously this is forbidden in policies.json!
|
2024-05-19 19:38:32 +02:00
|
|
|
lockPref(
|
|
|
|
"font.name-list.monospace.x-cyrillic",
|
|
|
|
"Noto Shanns Mono, monospace",
|
|
|
|
);
|
|
|
|
lockPref("font.name-list.monospace.x-western", "Noto Shanns Mono, monospace");
|
|
|
|
lockPref("font.name-list.sans-serif.x-cyrillic", "Noto Sans, sans-serif");
|
|
|
|
lockPref("font.name-list.sans-serif.x-western", "Noto Sans, sans-serif");
|
|
|
|
lockPref("font.name-list.serif.x-cyrillic", "Noto Serif, serif");
|
|
|
|
lockPref("font.name-list.serif.x-western", "Noto Serif, serif");
|
2024-05-19 19:19:35 +02:00
|
|
|
|
2024-05-19 13:05:04 +02:00
|
|
|
// Play animated images only once, accessibility.
|
2024-05-19 19:38:32 +02:00
|
|
|
lockPref("image.animation.mode", "once");
|
2024-05-19 13:05:04 +02:00
|
|
|
|
|
|
|
// Spoof en-US as language to scripts
|
2024-05-19 19:38:32 +02:00
|
|
|
lockPref("javascript.use_us_english_locale", true);
|
2024-05-19 13:05:04 +02:00
|
|
|
|
|
|
|
// DNT although PrivacyBadger from policy handles this
|
2024-05-19 19:38:32 +02:00
|
|
|
lockPref("privacy.donottrackheader.enabled", true);
|
|
|
|
lockPref("privacy.donottrackheader.value", 1);
|
2024-05-19 13:05:04 +02:00
|
|
|
|
|
|
|
// More tunable privacy.resistfingerprinting. I have lost the privacy game
|
|
|
|
// many times before this point, so this is nothing.
|
2024-05-19 19:38:32 +02:00
|
|
|
//lockPref("privacy.fingerprintingProtection", true);
|
2024-05-19 19:00:31 +02:00
|
|
|
|
|
|
|
// Somehow I cannot clearPref this, so...
|
|
|
|
//clearPref("privacy.fingerprintingProtection");
|
|
|
|
lockPref("privacy.fingerprintingProtection", false);
|
|
|
|
|
2024-05-19 17:46:25 +02:00
|
|
|
//pref(
|
|
|
|
// "privacy.fingerprintingProtection.overrides",
|
|
|
|
// "+AllTargets,-KeyboardEvents,-SpeechSynthesis,-CSSPrefersColorScheme,-CSSPrefersReducedMotion,-NavigatorPlatform,-NavigatorUserAgent,-JSDateTimeUTC,-HttpUserAgent,-FontVisibilityRestrictGenerics,-FontVisibilityBaseSystem,-FontVisibilityLangPack",
|
|
|
|
//);
|
|
|
|
clearPref("privacy.fingerprintingProtection.overrides");
|
2024-05-19 19:38:32 +02:00
|
|
|
//lockPref("privacy.fingerprintingProtection.pbmode", true);
|
2024-05-19 17:46:25 +02:00
|
|
|
clearPref("privacy.fingerprintingProtection.pbmode");
|
2024-05-19 13:05:04 +02:00
|
|
|
// (Incompatible with the above)
|
2024-05-19 19:38:32 +02:00
|
|
|
//lockPref("privacy.resistFingerprinting", false);
|
2024-05-19 17:46:25 +02:00
|
|
|
clearPref("privacy.resistFingerprinting");
|
2024-05-19 19:38:32 +02:00
|
|
|
//lockPref("privacy.resistFingerprinting.block_mozAddonManage", true);
|
2024-05-19 17:46:25 +02:00
|
|
|
clearPref("privacy.resistFingerprinting.block_mozAddonManage");
|
2024-05-19 13:05:04 +02:00
|
|
|
// Letterboxing from Tor Browser, I like it in general.
|
2024-05-19 17:46:25 +02:00
|
|
|
lockPref("privacy.resistFingerprinting.letterboxing", true);
|
2024-05-19 13:05:04 +02:00
|
|
|
// Still Incompatible with the above
|
2024-05-19 19:38:32 +02:00
|
|
|
//lockPref("privacy.resistFingerprinting.pbmode", false);
|
2024-05-19 17:46:25 +02:00
|
|
|
clearPref("privacy.resistFingerprinting.pbmode");
|
2024-05-19 13:05:04 +02:00
|
|
|
|
2024-05-19 19:32:14 +02:00
|
|
|
// Which extension requires container tabs? My policy and this file. This
|
|
|
|
// particular option is so forbidden, it cannot be set either in the policy
|
|
|
|
// or autoconfig.js
|
|
|
|
lockPref("privacy.userContext.extension", "");
|
2024-05-19 13:05:04 +02:00
|
|
|
// Enable containers without extensions (although those are forced by the
|
|
|
|
// policy. TODO: Remove these as they are in the policy, but disallowed by
|
|
|
|
// current ESR
|
2024-05-19 19:38:32 +02:00
|
|
|
lockPref("privacy.userContext.enabled", true);
|
|
|
|
lockPref("privacy.userContext.ui.enabled", true);
|
2024-05-19 13:05:04 +02:00
|
|
|
|
|
|
|
// Enables reading mode for all pages (at least in theory)
|
2024-05-19 19:38:32 +02:00
|
|
|
lockPref("reader.parse-on-load.force-enabled", true);
|
2024-05-19 13:05:04 +02:00
|
|
|
|
|
|
|
// Ensure OCSP stapling is enabled, especially if the server has it
|
2024-05-19 19:38:32 +02:00
|
|
|
lockPref("security.ssl.enable_ocsp_must_staple", true);
|
2024-05-19 13:05:04 +02:00
|
|
|
|
|
|
|
// TODO: Consider removing this when ESR updates as only it needs this for
|
|
|
|
// ECH, which is otherwise the default=
|
2024-05-19 19:38:32 +02:00
|
|
|
lockPref("security.tls.ech.grease_http3", true);
|
2024-05-19 13:05:04 +02:00
|
|
|
|
|
|
|
// No making configuration on the last line of the file!
|
|
|
|
//
|