Commit Graph

189 Commits

Author SHA1 Message Date
6293ce0a14
run prettier on json files (4) 2024-05-19 13:10:20 +03:00
79411a0932
{firefox,brave}: add forgotten integrated protection excemptions 2024-05-19 11:59:50 +03:00
162912dd82
{firefox,chromium}#PrivacyBadger: just trust cloudflare.com directly
I remembered that the analytics domain is cloudflareinsigts.com and I use cloudflare's esni testing etc. too often
2024-05-19 11:54:58 +03:00
79a7e38d93
{firefox,chromium}: actually cut PrivacyBadger's list a lot 2024-05-19 11:41:20 +03:00
1f0ac5a0e9
{firefox,chromium}: simplify allowlist configuration
PrivacyBadger continues having stricter rules and I am trusting it to catch what I let through
2024-05-19 11:38:18 +03:00
b4e1f7fd0e
{firefox,chromium}: allow challenges.cloudflare.com just in case 2024-05-19 11:04:09 +03:00
77e2e37362
{firefox,chromium}: add cookie lists to uBlock Origin
I was staring at them too much while testing policies
2024-05-19 09:53:16 +03:00
a4f3943073
{firefox,chromium}: add small hints of possibly being connected to Russia
https://krebsonsecurity.com/2021/05/try-this-one-weird-trick-russian-hackers-hate/
2024-05-19 08:32:00 +03:00
9b348b16cc
{firefox,chromium}: switch from AdNauseam to uBlock Origin
I love AdNauseam, but it's a tool for protests and it shows constantly, while uBlock Origin is more sysadmin-friendly deploying silently and not complaining about browser protection or PrivacyBadger etc.
2024-05-19 07:37:33 +03:00
b4a1da8423
chromium: move manifestv2 from disable-floc to aminda-extensions 2024-05-19 06:45:40 +03:00
2351d43020
chromium: enable prefetching and profilemanager 2024-05-18 18:24:45 +03:00
bf85d162d1
chromium policy & documentation: cleanup 2024-05-18 18:22:54 +03:00
95671fb32d
chromium: doh-private-ecs.json was supposed to be automatic 2024-05-18 16:55:38 +03:00
0a4179df0c
Revert "chromium/recommended/{duckduckgo,ecosia}.json: trick Brave & Edge into complying by NewTabPageLocation"
This reverts commit 7bab72fb3c.
2024-05-18 16:36:46 +03:00
a7ef548dab
{chromium,unbound}: experimental dot-private-ecs.conf 2024-05-18 16:08:17 +03:00
5b4f78f5f4
chromium/doh-google{,64}.json: use get requests
more as a note that it can be done
2024-05-18 15:35:36 +03:00
2ff416d880
{firefox,chromium}: also enable curben-phishing 2024-05-18 14:04:43 +03:00
20679e705d
{firefox,chromium}: enable AdNauseam ublock-annoyances & adguard-mobile-app-banners 2024-05-18 13:55:18 +03:00
c05eedbb78
chromium README: note Bitwarden management options for self-hosters 2024-05-18 08:03:29 +03:00
38c331494c
chromium/managed: merge enable-ech-ocsp.json into https-everywhere.json
This will not appear on my blog post. ECH is enough offtopic and OCSP would only bring argument on whether it's useful and is that usefulness more important than privacy leakage to non-ocsp-stapling websites.
2024-05-17 16:15:34 +03:00
fb57ae0ea5
firefox & chromium: accidentally silence DuckDuckGo post-install 2024-05-17 14:28:33 +03:00
c92ded3ad3
firefox & chromium: add Ruffle.rs 2024-05-17 11:05:31 +03:00
38710540f2
firefox & chromium: add missing favicons for DDG & Brave 2024-05-16 19:12:10 +03:00
6a916ed3b9
chromium/recommended/{duckduckgo,ecosia}.json: also restore forgotten HomepageIsNewTabPage 2024-05-16 18:51:51 +03:00
7bab72fb3c
chromium/recommended/{duckduckgo,ecosia}.json: trick Brave & Edge into complying by NewTabPageLocation 2024-05-16 18:47:22 +03:00
006ed65597
Re-integrate Edge policies into Chromium by removing apps-as-homepage.json 2024-05-16 18:35:48 +03:00
859f2a9f1d
chromium/duckduckgo.json: fill in DefaultSearchProviderNewTabURL 2024-05-16 18:29:54 +03:00
9b4cc804e5
browsers: expose to Ecosia that we are using gpo (or policies), remove extraneous PostData from Firefox
The logic here is hope that it will stop offering the addon if I am following their instructions and sending them the information. Oh and I added icons
2024-05-13 17:56:41 +03:00
f6e8c3fb45
chromium/managed: remember I have a README.md and update it 2024-05-12 18:42:50 +03:00
bb84a4ed65
chromium/managed: add generative-ai.json 2024-05-12 18:40:48 +03:00
4a642d3dea
chromium/managed: add amber-theme-colour.json.sample
It looks fancy, while not exactly for me.
2024-05-12 18:34:10 +03:00
87f5c78298
chromium: move safe browsings from managed to recommended
I just don't feel right with them being in managed
2024-05-12 18:27:18 +03:00
e5fc9bfbaf
{firefox,chromium}: add Plasma Integration mainly for family 2024-05-12 15:49:12 +03:00
c9a4a1c7cc
chromium: add doh-adguard policies 2024-05-12 15:30:52 +03:00
dceb88b272
Revert "chromium/recommended/ecosia: trick Brave into using it as well"
This reverts commit 4835a8c89d.

It's too annoying and impractical compared to my apps page.
2024-05-12 09:26:05 +03:00
4835a8c89d
chromium/recommended/ecosia: trick Brave into using it as well 2024-05-11 22:31:26 +03:00
ef00ae4d90
chromium: set Ecosia's DefaultSearchProviderNewTabURL 2024-05-11 22:24:56 +03:00
a4c35994e8
chromium: rename black-theme-colour.json -> black-theme-colour.json.sample to stop me accidentally applying it 2024-05-11 20:36:08 +03:00
4743efb556
chromium: add enable-google-safebrowsing-less-private.json.sample 2024-05-11 20:34:36 +03:00
e2dd25113a
chromium: ExtensionManifestV2Availability expects 2, not true 2024-05-11 19:49:04 +03:00
0ad28afe47
chromium: allow manifestv2, enable chromecast, safebrowsing, passwordleakdetection, efficiencymode, suggest disabling bookmarks bar and document previously forgotten policies 2024-05-11 19:44:16 +03:00
d6aae8fb9a
browsers: add OISD (big) to AdNauseam 2024-05-11 18:01:05 +03:00
7430dd9e99
{firefox,chromium}: add HTTP Indicator 2024-05-11 17:35:37 +03:00
ec40dd0250
chromium: initial commit of AdNauseam managed configuration 2024-05-11 17:22:26 +03:00
972c866541
chromium/aminda-extensions cleanup 2024-05-11 16:46:20 +03:00
9a974e7bca
{firefox,chromium,edge}: add Ecosia 2024-05-11 16:16:12 +03:00
93e2ab81dd
chromium policy: fix doh-cloudflare-secure.json name inconsistency 2024-05-09 17:11:17 +03:00
e7b26cd343
chromium/policies/managed: add non-functional Edge policies 2024-05-07 11:23:30 +03:00
18a04b1351
{firefox,chromium}: disable protections for one.one.one.one
For some reason they make connection to 1.1.1.1 appear as no or unreachable.
2024-04-28 09:21:29 +03:00
d3773468fa
chromium/policies: add doh-{disabled,google}.json 2024-04-27 16:18:40 +03:00
8fe7ff55e6
chromium: add managed black-theme-colour & recommended apps-as-homepage, disable-default-browser-check 2024-04-27 10:08:43 +03:00
2113b593e7
Chromium & Firefox: force Bitwarden (for passkeys) 2024-04-27 08:32:39 +03:00
da85d0d9c7
firefox & chromium: allow PrivacyPass attestor & Keyoxide.org 2024-04-27 08:31:05 +03:00
b0ec7cffde
chromium/README: EnableOnlineRevocationChecks does also enable CRL 2024-04-26 11:27:11 +03:00
1ea9fff29a
chromium: declare more things as .badidea 2024-04-25 14:01:54 +03:00
f87c4899b6
chromium: add dns-over-https.json.badidea and declare it as a bad idea 2024-04-25 13:57:01 +03:00
45cf5ecf61
opt/chromium/policies/managed: update documentation about working preferred over ECH enforced 2024-04-25 11:00:40 +03:00
32883d5c73
chromium: allow DoH downgrade to at least work. Breaks ECH :( 2024-04-25 08:15:28 +03:00
dc6fc85174
chromium: exclude bittimittari.fi 2024-04-22 10:09:28 +03:00
fe1970cfd9
chromium: add brave IPFS disabling policy
IPFS is known for killing routers and having it on two machines while trying to VoIP with a lot of people, it gets a bit too heavy
2024-04-22 10:03:53 +03:00
c90b551ac4
chromium: merge doh-forced to the doh files due to it being required anyway, update documentation, rename doh-allowed → doh-unlocked-unset 2024-04-21 14:00:39 +03:00
7379241a20
chromium: add the rest of Quad9 & update README.md 2024-04-21 11:35:28 +03:00
3540f2442e
chromium/doh-quad9*: add alternative port as Chromium allows multiple 2024-04-21 11:28:07 +03:00
069da00a38
Chromium: add IPvFoo* and note that users should go through extensions 2024-04-21 09:58:30 +03:00
41c65344f1
chromium: add dot-dns0-{kids,open,zero}.json 2024-04-20 17:53:33 +03:00
437ec3b49c
chromium/doh-dns0.json: add trailing / as Chromium requires it (or fails every DNS request) 2024-04-20 17:50:57 +03:00
dda5f2c110
chromium/enable-ech-ocsp.json: remove not strictly releated policies 2024-04-20 07:47:31 +03:00
39f2eb4f0f
chromium: add doh-cloudflare-secure.json, ECH notes 2024-04-19 08:24:29 +03:00
419805bc91
chromium/README: add forgotten files, fix description for those moved from recommended 2024-04-16 07:15:30 +03:00
a0456269a1
chromium: move brave feature disabling from recommended to managed for actual effect 2024-04-16 07:11:55 +03:00
36f433f35b
chromium/managed: add enable-labs.json
I have decided that I want it anyway and unlike before, now it has its own file so I can decide to leave it alone on shared devices
2024-04-15 21:08:56 +03:00
ac922aea86
{firefox,chromium}: add Floccus bookmarks sync so I will remember its existence 2024-04-14 14:10:39 +03:00
44c3168a39
chromium policy: strip DnsOverHttpsMode to two different files, rename automatic to allowed for clarity & update README.md on these 2024-04-13 18:38:26 +03:00
ab74e45a9f
chromium policy/brave-shields-disabled.json: add glowing-bear 2024-04-12 14:29:49 +03:00
b9d8da4df4
chromium policy. add brave-shields-disabled.json based on Privacy Badger 2024-04-12 14:26:31 +03:00
bf1fdc4cff
{firefox,chromium} policy: PB exclude Disroot Mvim, Microsoft {Teams,Learn} 2024-04-12 14:24:31 +03:00
0bac3a8ab0
chromium: add doh-quad9.json 2024-04-12 10:42:51 +03:00
f885dcd73a
chromium/recommended: disable Tor in Brave 2024-04-10 11:21:52 +03:00
4cfd7ab75f
chromium: add recommendation of disabling Brave rewards & wallet 2024-04-10 11:18:42 +03:00
2282429f94
brave: use boolean for disabling vpn 2024-04-10 11:16:55 +03:00
149cadfa41
firefox & chromium: add IPFS Companion 2024-04-10 11:03:19 +03:00
d7879eeb6b
chromium: update README with the two new files 2024-04-10 10:53:37 +03:00
450aac4c32
chromium: add disable-brave-vpn.json 2024-04-10 10:51:38 +03:00
35e1faaabc
chromium: add doh-quad9-ecs.json 2024-04-10 10:51:15 +03:00
99c63d25fe
{firefox,chromium} policy: add OpenDyslexic 2024-04-04 14:27:43 +03:00
323dde1545
{firefox, chromium}: force install privacy pass
This is in hopes of reducing family member frustation with captchas should they happen
2024-03-29 08:32:44 +02:00
9fb90d4b30
chromium/README: mention fix-edge-search.json 2024-03-28 18:57:29 +02:00
80df53aa6a
chromium: move edge policy from recommended searches to managed/fix-edge-search.json 2024-03-28 18:53:15 +02:00
c5dd75077d
chromium: throw home enabling & search engines into recommended policy instead 2024-03-27 16:51:29 +02:00
7b80c2bbc2
chromium/aminda-extensions.json: remove DuckDuckGo Privacy Essentials 2024-03-23 12:46:49 +02:00
d241993c0a
chromium/aminda-extensions.json: remove blank new tab 2024-03-23 12:40:23 +02:00
4a2fc137db
chromium: handle Microsoft Edge new tab page Bing search 2024-03-23 12:36:30 +02:00
3d038bf826
chromium policy README.md: add missing/renamed files 2024-03-23 12:15:21 +02:00
b7acf2daaa
chromium policy: add brave-search.json 2024-03-23 12:08:07 +02:00
c8ece6032a
chromium/duckduckgo.json: policy for using start.duckduckgo.com for searching 2024-03-23 11:55:06 +02:00
cc6dbceaff
{firefox,chromium} policy: add UpdateSWH 2024-03-14 20:25:06 +02:00
39b0f1d19a
{firefox,chromium} policy: disable PrivacyBadger on Element Web instances 2024-03-13 11:45:19 +02:00
0729b8b681
chromium policy: add Chrome Remote Desktop 2024-03-13 08:46:10 +02:00
be8e2d655e
aminda-extensions.json: fix allowed_url paths (paths unsupported, must not contain /* 2024-03-13 08:45:30 +02:00
5c1dce8d36
{firefox,chromium} policy: explicitly configure PrivacyBadger
I think all of these default to true anyway, but explicit is better than implicit is what they say
2024-03-12 10:15:15 +02:00