Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Browsers
Firefox
Hardening Firefox
Message
<blockquote data-quote="Zorro" data-source="post: 862303" data-attributes="member: 80312"><p>1) <span style="color: rgb(209, 72, 65)">privacy.firstparty.isolate = true</span></p><p>The result of the Tor Uplift project. The included setting isolates browser identifiers (for example, cookies) in the current domain, preventing tracking on other domains. Do not use AutoDelete at the same time with the Cookie extension!</p><p>2) <span style="color: rgb(209, 72, 65)">privacy.resistFingerprinting = true</span></p><p>The result of the Tor Uplift project. The included setting complicates your identification by browser fingerprint.</p><p>3) <span style="color: rgb(209, 72, 65)">privacy.trackingprotection.enabled = true</span></p><p>Built-in tracking protection. Uses Disconnect.me filters, therefore it is useless when used simultaneously with uBlock Origin.</p><p>4) <span style="color: rgb(209, 72, 65)">browser.cache.offline.enable = false</span></p><p>Disabling the local cache.</p><p>5) <span style="color: rgb(209, 72, 65)">browser.safebrowsing.malware.enabled = false</span></p><p>Disabling the Google Safe Browsing malware scan engine. Reduces security, but increases privacy.</p><p>6) <span style="color: rgb(209, 72, 65)">browser.safebrowsing.phishing.enabled = false</span></p><p>Disabling the Google Safe Browsing phishing check engine. Reduces security, but increases privacy.</p><p>7) <span style="color: rgb(209, 72, 65)">browser.send_pings = false</span></p><p>The ban on tracking user clicks.</p><p>8) <span style="color: rgb(209, 72, 65)">browser.sessionstore.max_tabs_undo = 0</span></p><p>Preventing temporary storage of recently closed tabs available in the "Log -> Recently Closed Tabs" menu.</p><p>8) <span style="color: rgb(209, 72, 65)">browser.urlbar.speculativeConnect.enabled = false</span></p><p>Disabling URL autocomplete preload. Avoids leakage through third-party services when typing in the address bar</p><p>10) <span style="color: rgb(209, 72, 65)">dom.battery.enabled = false</span></p><p>Disabling the ability to receive battery data on the device</p><p>11) <span style="color: rgb(209, 72, 65)">dom.event.clipboardevents.enabled = false</span></p><p>Disabling page notifications about user actions (copy, cut and paste), as well as selected elements.</p><p>12) <span style="color: rgb(209, 72, 65)">geo.enabled = false</span></p><p>Disabling location services.</p><p>13) <span style="color: rgb(209, 72, 65)">media.navigator.enabled = false</span></p><p>Prohibition of tracking the status of the microphone / camera on the device.</p><p>14)<span style="color: rgb(209, 72, 65)"> network.cookie.cookieBehavior = 1</span></p><p>Cookie management</p><p>0 = By default, save all cookies</p><p>1 = Save cookies only from the current site (block cookies from third-party sites)</p><p>2 = By default, block all cookies</p><p>15) <span style="color: rgb(209, 72, 65)">network.cookie.lifetimePolicy = 2</span></p><p>Cook Shelf Life</p><p>0 = Retention period set by server</p><p>1 = User manually sets retention period</p><p>2 = The storage period is limited by the session (until the browser closes)</p><p>3 = Shelf life is limited by the days from the setting</p><p>16) <span style="color: rgb(209, 72, 65)">network.cookie.lifetime.days</span></p><p><span style="color: rgb(209, 72, 65)">network.http.referer.trimmingPolicy = 2</span></p><p>Configuring the sent data in the Referer header</p><p>0 = full URL</p><p>1 = URL without parameters</p><p>2 = Only protocol, host and port</p><p>17) <span style="color: rgb(209, 72, 65)">network.http.referer.XOriginPolicy = 2</span></p><p>A setting to determine the conditions under which the Referer header will be sent to other domains. In case of problems with this setting, you can select a less stringent value of 1 along with the XOriginTrimmingPolicy setting specified below</p><p>0 = Always send</p><p>1 = Send to the same eTLD domains</p><p>2 = Only send when domains match completely</p><p>18) <span style="color: rgb(209, 72, 65)">network.http.referer.XOriginTrimmingPolicy = 2</span></p><p>Configure sending data to other domains in the Referer header</p><p>0 = full URL</p><p>1 = URL without parameters</p><p>2 = Only protocol, host and port</p><p>19) <span style="color: rgb(209, 72, 65)">webgl.disabled = true</span></p><p>Disabling WebGL as a potential security risk.</p><p></p><p>Next, set the value to <strong><span style="color: rgb(184, 49, 47)">false</span></strong> in all of these parameters:</p><p><span style="color: rgb(209, 72, 65)">browser.newtabpage.activity-stream.feeds.telemetry</span></p><p><span style="color: rgb(209, 72, 65)">browser.newtabpage.activity-stream.telemetry</span></p><p><span style="color: rgb(209, 72, 65)">browser.ping-center.telemetry</span></p><p><span style="color: rgb(209, 72, 65)">toolkit.telemetry.archive.enabled</span></p><p><span style="color: rgb(209, 72, 65)">toolkit.telemetry.bhrPing.enabled</span></p><p><span style="color: rgb(209, 72, 65)">toolkit.telemetry.enabled</span></p><p><span style="color: rgb(209, 72, 65)">toolkit.telemetry.firstShutdownPing.enabled</span></p><p><span style="color: rgb(209, 72, 65)">toolkit.telemetry.newProfilePing.enabled</span></p><p><span style="color: rgb(209, 72, 65)">toolkit.telemetry.reportingpolicy.firstRun</span></p><p><span style="color: rgb(209, 72, 65)">toolkit.telemetry.server</span></p><p><span style="color: rgb(209, 72, 65)">toolkit.telemetry.shutdownPingSender.enabled</span></p><p><span style="color: rgb(209, 72, 65)">toolkit.telemetry.unified</span></p><p><span style="color: rgb(209, 72, 65)">toolkit.telemetry.updatePing.enabled</span></p><p><span style="color: rgb(209, 72, 65)">Here you write “toolkit.telemetry.server” false manually.</span></p><p></p><p><span style="color: rgb(65, 168, 95)">Change the number of content processes</span></p><p>Do you prefer to work with a large number of tabs at the same time or keep no more than five tabs open? The more content processes in the browser, the more resources are allocated for each tab (RAM consumption will also increase).</p><p>If you own a powerful computer, you can set a fairly high value - the stability and performance of each open tab should improve. On the about: config page, the number of content processes is controlled by the dom.ipc.processCount parameter.</p><p>Default value: 8</p><p>Set value: 7-12 (depends on the number of open tabs)</p><p></p><p><span style="color: rgb(65, 168, 95)">Disabling unnecessary animations</span></p><p>Animations in Firefox Browser look beautiful, but for older computers, every megabyte of memory counts. To turn off unnecessary animations, set the toolkit.cosmeticAnimations.enabled parameter to false.</p><p>Default value: true</p><p>Set value: false</p><p></p><p><span style="color: rgb(65, 168, 95)">Minimum tab width</span></p><p>Changing this setting will be noticed only by an attentive Firefox user. By default, tabs in Firefox are 76 pixels wide, although previously there were 100 pixels. To change this value, use the browser.tabs.tabMinWidth parameter.</p><p>Default value: 76. Set the value: 100 if you want to restore the width of the tabs, as in older versions of Firefox. You can set any other value that you like.</p><p></p><p><span style="color: rgb(65, 168, 95)">Reducing Session History Cache to Save Memory</span></p><p>If you are using an old computer, some of the standard Firefox settings may not be optimal. This applies to saving web pages in short-term memory (RAM), which you can access using the Back and Forward buttons. The browser.sessionhistory.max_total_viewers parameter allows you to change the number of pages that are saved for fast loading.</p><p>Default value: -1 (adaptable)</p><p>Set the value: any number, it will correspond to the number of pages that will be saved (recommended less than 4, if the PC has modest characteristics, if there is more than 4 GB of RAM, you can install 8 or higher).</p><p></p><p>The browser.sessionhistory.max_entries parameter allows you to change the number of pages that are saved in the session cache and are accessible by clicking the Back and Forward buttons.</p><p>Default value: 50</p><p>Set the value: on weak PCs, lower the value to 25. Check the operation and edit the value if necessary.</p><p></p><p><span style="color: rgb(65, 168, 95)">Disabling Extension Compatibility Checks</span></p><p>Compatibility checks help you determine which extensions work with your version of Firefox and which don’t. However, the results of Firefox are not always correct. If you want to make sure yourself that the extension that Firefox has declared incompatible does not start in your version, follow these steps:</p><p></p><p>Right-click on the about: config page and select New> Logical.</p><p>Enter the name extensions.checkCompatibility and click OK. Then set the value to false and click OK again.</p><p>A new parameter will be created and appear in the list. You can disable it at any time by right-clicking and selecting Reset.</p><p></p><p><span style="color: rgb(65, 168, 95)">Minimize memory usage when minimizing</span></p><p>This option is intended for Windows users. When you minimize Firefox, session data will be stored in virtual memory, freeing up physical memory for other programs. Firefox will reduce the consumption of physical memory to only about 10 megabytes, and when you open the window, it will again reserve the necessary amount of RAM.</p><p>By default, the parameter is not presented in the list; it must be created. Right-click and select New> Logical.</p><p>Type config.trim_on_minimize and set it to true.</p><p></p><p><span style="color: rgb(65, 168, 95)">Select all text when clicked in the address bar</span></p><p>On Windows and Mac, Firefox selects all text by clicking on the address bar. On Linux, all text is not highlighted - the cursor is placed at the selected position. This behavior on any platform can be changed using the browser.urlbar.clickSelectsAll parameter.</p><p>Set value:</p><p>false - the cursor is placed in the selected position.</p><p>true - select all text by click.</p><p>One scale for all sites</p><p>Firefox remembers the zoom for each site and the next time you open the site it uses the appropriate zoom level. If you want to use the same scale for all sites, you can achieve this using the browser.zoom.siteSpecific parameter.</p><p>Default value: true</p><p>Set the value: false (the same scale will be used for all sites)</p><p></p><p><span style="color: rgb(65, 168, 95)">Scale limitation</span></p><p>If the maximum and minimum zoom level does not suit you, you can change the limit values if necessary.</p><p>Parameter Name: zoom.maxPercent</p><p>Default value: 300 (percent)</p><p>Set value: any value above 300</p><p></p><p>Parameter Name: zoom.minPercent</p><p>Default value: 30 (percent)</p><p>Set value: any value</p><p></p><p><span style="color: rgb(65, 168, 95)">Backspace action</span></p><p>In Firefox, you can customize the behavior when you press the Backspace key, in particular, specify the transition to the previous page or scroll to the top of the page. When you press Shift + Backspace, Firefox will go to the next page (if set to 0) or scroll down the page (if set to 1)</p><p>Parameter Name: browser.backspace_action</p><p>Default value: 0 - go to the previous page</p><p>Set the value: 1 - scroll to the top of the page</p><p></p><p><span style="color: rgb(0, 0, 0)">In full screen mode, the toolbar is hidden and appears only when you hover over it</span><span style="color: rgb(65, 168, 95)">.</span> You can make it always visible by setting false for the browser.fullscreen.autohide parameter.</p><p>Default value: true (always hide)</p><p>Set value: false (the panel is always shown).</p><p></p><p><span style="color: rgb(65, 168, 95)"><strong>To configure DNS over HTTPS</strong></span>, you need to change three parameters of the new TRR (Trusted Recursive Resolver) resolver in the browser:</p><p></p><p>Type about: config in the address bar of Firefox.</p><p>Confirm that you accept all risk if a warning page opens.</p><p>Using the search bar, find the <span style="color: rgb(209, 72, 65)">network.trr.mode parameter</span> and double-click on it.</p><p>Set the value to 2 so that DNS over HTTPS is selected by default and your standard DNS server is used as the backup. This is the best option in terms of compatibility.</p><p>You can set the value to 1 so Firefox chooses the fastest option; 3 - to use only TRR; 4 - shadow mode: runs TRR in parallel with the standard DNS for synchronization and measurements, but uses only the results of a standard resolver; 0 - to disable TRR by default, 5 - to disable TRR by choice.</p><p>Use the search bar to find the <span style="color: rgb(209, 72, 65)">network.trr.uri parameter</span>. In Firefox, you will need to enter the DNS server address over HTTPS. Double click on the parameter name. At the moment, several public servers are available, among which two main ones can be distinguished: </p><p><a href="https://mozilla.cloudflare-dns.com/dns-query" target="_blank">https://mozilla.cloudflare-dns.com/dns-query</a> </p><p>[URL unfurl="true"]https://dns.google.com/experimental[/URL]</p><p>Find the <span style="color: rgb(209, 72, 65)">network.trr.bootstrapAddress parameter</span> and double-click on it</p><p>Set to 1.1.1.1 if you selected Cloudflare</p><p>Set to 8.8.8.8 if you selected Google DNS</p><p>Restart the Firefox browser.</p></blockquote><p></p>
[QUOTE="Zorro, post: 862303, member: 80312"] 1) [COLOR=rgb(209, 72, 65)]privacy.firstparty.isolate = true[/COLOR] The result of the Tor Uplift project. The included setting isolates browser identifiers (for example, cookies) in the current domain, preventing tracking on other domains. Do not use AutoDelete at the same time with the Cookie extension! 2) [COLOR=rgb(209, 72, 65)]privacy.resistFingerprinting = true[/COLOR] The result of the Tor Uplift project. The included setting complicates your identification by browser fingerprint. 3) [COLOR=rgb(209, 72, 65)]privacy.trackingprotection.enabled = true[/COLOR] Built-in tracking protection. Uses Disconnect.me filters, therefore it is useless when used simultaneously with uBlock Origin. 4) [COLOR=rgb(209, 72, 65)]browser.cache.offline.enable = false[/COLOR] Disabling the local cache. 5) [COLOR=rgb(209, 72, 65)]browser.safebrowsing.malware.enabled = false[/COLOR] Disabling the Google Safe Browsing malware scan engine. Reduces security, but increases privacy. 6) [COLOR=rgb(209, 72, 65)]browser.safebrowsing.phishing.enabled = false[/COLOR] Disabling the Google Safe Browsing phishing check engine. Reduces security, but increases privacy. 7) [COLOR=rgb(209, 72, 65)]browser.send_pings = false[/COLOR] The ban on tracking user clicks. 8) [COLOR=rgb(209, 72, 65)]browser.sessionstore.max_tabs_undo = 0[/COLOR] Preventing temporary storage of recently closed tabs available in the "Log -> Recently Closed Tabs" menu. 8) [COLOR=rgb(209, 72, 65)]browser.urlbar.speculativeConnect.enabled = false[/COLOR] Disabling URL autocomplete preload. Avoids leakage through third-party services when typing in the address bar 10) [COLOR=rgb(209, 72, 65)]dom.battery.enabled = false[/COLOR] Disabling the ability to receive battery data on the device 11) [COLOR=rgb(209, 72, 65)]dom.event.clipboardevents.enabled = false[/COLOR] Disabling page notifications about user actions (copy, cut and paste), as well as selected elements. 12) [COLOR=rgb(209, 72, 65)]geo.enabled = false[/COLOR] Disabling location services. 13) [COLOR=rgb(209, 72, 65)]media.navigator.enabled = false[/COLOR] Prohibition of tracking the status of the microphone / camera on the device. 14)[COLOR=rgb(209, 72, 65)] network.cookie.cookieBehavior = 1[/COLOR] Cookie management 0 = By default, save all cookies 1 = Save cookies only from the current site (block cookies from third-party sites) 2 = By default, block all cookies 15) [COLOR=rgb(209, 72, 65)]network.cookie.lifetimePolicy = 2[/COLOR] Cook Shelf Life 0 = Retention period set by server 1 = User manually sets retention period 2 = The storage period is limited by the session (until the browser closes) 3 = Shelf life is limited by the days from the setting 16) [COLOR=rgb(209, 72, 65)]network.cookie.lifetime.days network.http.referer.trimmingPolicy = 2[/COLOR] Configuring the sent data in the Referer header 0 = full URL 1 = URL without parameters 2 = Only protocol, host and port 17) [COLOR=rgb(209, 72, 65)]network.http.referer.XOriginPolicy = 2[/COLOR] A setting to determine the conditions under which the Referer header will be sent to other domains. In case of problems with this setting, you can select a less stringent value of 1 along with the XOriginTrimmingPolicy setting specified below 0 = Always send 1 = Send to the same eTLD domains 2 = Only send when domains match completely 18) [COLOR=rgb(209, 72, 65)]network.http.referer.XOriginTrimmingPolicy = 2[/COLOR] Configure sending data to other domains in the Referer header 0 = full URL 1 = URL without parameters 2 = Only protocol, host and port 19) [COLOR=rgb(209, 72, 65)]webgl.disabled = true[/COLOR] Disabling WebGL as a potential security risk. Next, set the value to [B][COLOR=rgb(184, 49, 47)]false[/COLOR][/B] in all of these parameters: [COLOR=rgb(209, 72, 65)]browser.newtabpage.activity-stream.feeds.telemetry browser.newtabpage.activity-stream.telemetry browser.ping-center.telemetry toolkit.telemetry.archive.enabled toolkit.telemetry.bhrPing.enabled toolkit.telemetry.enabled toolkit.telemetry.firstShutdownPing.enabled toolkit.telemetry.newProfilePing.enabled toolkit.telemetry.reportingpolicy.firstRun toolkit.telemetry.server toolkit.telemetry.shutdownPingSender.enabled toolkit.telemetry.unified toolkit.telemetry.updatePing.enabled Here you write “toolkit.telemetry.server” false manually.[/COLOR] [COLOR=rgb(65, 168, 95)]Change the number of content processes[/COLOR] Do you prefer to work with a large number of tabs at the same time or keep no more than five tabs open? The more content processes in the browser, the more resources are allocated for each tab (RAM consumption will also increase). If you own a powerful computer, you can set a fairly high value - the stability and performance of each open tab should improve. On the about: config page, the number of content processes is controlled by the dom.ipc.processCount parameter. Default value: 8 Set value: 7-12 (depends on the number of open tabs) [COLOR=rgb(65, 168, 95)]Disabling unnecessary animations[/COLOR] Animations in Firefox Browser look beautiful, but for older computers, every megabyte of memory counts. To turn off unnecessary animations, set the toolkit.cosmeticAnimations.enabled parameter to false. Default value: true Set value: false [COLOR=rgb(65, 168, 95)]Minimum tab width[/COLOR] Changing this setting will be noticed only by an attentive Firefox user. By default, tabs in Firefox are 76 pixels wide, although previously there were 100 pixels. To change this value, use the browser.tabs.tabMinWidth parameter. Default value: 76. Set the value: 100 if you want to restore the width of the tabs, as in older versions of Firefox. You can set any other value that you like. [COLOR=rgb(65, 168, 95)]Reducing Session History Cache to Save Memory[/COLOR] If you are using an old computer, some of the standard Firefox settings may not be optimal. This applies to saving web pages in short-term memory (RAM), which you can access using the Back and Forward buttons. The browser.sessionhistory.max_total_viewers parameter allows you to change the number of pages that are saved for fast loading. Default value: -1 (adaptable) Set the value: any number, it will correspond to the number of pages that will be saved (recommended less than 4, if the PC has modest characteristics, if there is more than 4 GB of RAM, you can install 8 or higher). The browser.sessionhistory.max_entries parameter allows you to change the number of pages that are saved in the session cache and are accessible by clicking the Back and Forward buttons. Default value: 50 Set the value: on weak PCs, lower the value to 25. Check the operation and edit the value if necessary. [COLOR=rgb(65, 168, 95)]Disabling Extension Compatibility Checks[/COLOR] Compatibility checks help you determine which extensions work with your version of Firefox and which don’t. However, the results of Firefox are not always correct. If you want to make sure yourself that the extension that Firefox has declared incompatible does not start in your version, follow these steps: Right-click on the about: config page and select New> Logical. Enter the name extensions.checkCompatibility and click OK. Then set the value to false and click OK again. A new parameter will be created and appear in the list. You can disable it at any time by right-clicking and selecting Reset. [COLOR=rgb(65, 168, 95)]Minimize memory usage when minimizing[/COLOR] This option is intended for Windows users. When you minimize Firefox, session data will be stored in virtual memory, freeing up physical memory for other programs. Firefox will reduce the consumption of physical memory to only about 10 megabytes, and when you open the window, it will again reserve the necessary amount of RAM. By default, the parameter is not presented in the list; it must be created. Right-click and select New> Logical. Type config.trim_on_minimize and set it to true. [COLOR=rgb(65, 168, 95)]Select all text when clicked in the address bar[/COLOR] On Windows and Mac, Firefox selects all text by clicking on the address bar. On Linux, all text is not highlighted - the cursor is placed at the selected position. This behavior on any platform can be changed using the browser.urlbar.clickSelectsAll parameter. Set value: false - the cursor is placed in the selected position. true - select all text by click. One scale for all sites Firefox remembers the zoom for each site and the next time you open the site it uses the appropriate zoom level. If you want to use the same scale for all sites, you can achieve this using the browser.zoom.siteSpecific parameter. Default value: true Set the value: false (the same scale will be used for all sites) [COLOR=rgb(65, 168, 95)]Scale limitation[/COLOR] If the maximum and minimum zoom level does not suit you, you can change the limit values if necessary. Parameter Name: zoom.maxPercent Default value: 300 (percent) Set value: any value above 300 Parameter Name: zoom.minPercent Default value: 30 (percent) Set value: any value [COLOR=rgb(65, 168, 95)]Backspace action[/COLOR] In Firefox, you can customize the behavior when you press the Backspace key, in particular, specify the transition to the previous page or scroll to the top of the page. When you press Shift + Backspace, Firefox will go to the next page (if set to 0) or scroll down the page (if set to 1) Parameter Name: browser.backspace_action Default value: 0 - go to the previous page Set the value: 1 - scroll to the top of the page [COLOR=rgb(0, 0, 0)]In full screen mode, the toolbar is hidden and appears only when you hover over it[/COLOR][COLOR=rgb(65, 168, 95)].[/COLOR] You can make it always visible by setting false for the browser.fullscreen.autohide parameter. Default value: true (always hide) Set value: false (the panel is always shown). [COLOR=rgb(65, 168, 95)][B]To configure DNS over HTTPS[/B][/COLOR], you need to change three parameters of the new TRR (Trusted Recursive Resolver) resolver in the browser: Type about: config in the address bar of Firefox. Confirm that you accept all risk if a warning page opens. Using the search bar, find the [COLOR=rgb(209, 72, 65)]network.trr.mode parameter[/COLOR] and double-click on it. Set the value to 2 so that DNS over HTTPS is selected by default and your standard DNS server is used as the backup. This is the best option in terms of compatibility. You can set the value to 1 so Firefox chooses the fastest option; 3 - to use only TRR; 4 - shadow mode: runs TRR in parallel with the standard DNS for synchronization and measurements, but uses only the results of a standard resolver; 0 - to disable TRR by default, 5 - to disable TRR by choice. Use the search bar to find the [COLOR=rgb(209, 72, 65)]network.trr.uri parameter[/COLOR]. In Firefox, you will need to enter the DNS server address over HTTPS. Double click on the parameter name. At the moment, several public servers are available, among which two main ones can be distinguished: [URL]https://mozilla.cloudflare-dns.com/dns-query[/URL] [URL unfurl="true"]https://dns.google.com/experimental[/URL] Find the [COLOR=rgb(209, 72, 65)]network.trr.bootstrapAddress parameter[/COLOR] and double-click on it Set to 1.1.1.1 if you selected Cloudflare Set to 8.8.8.8 if you selected Google DNS Restart the Firefox browser. [/QUOTE]
Insert quotes…
Verification
Post reply
Top