- Aug 1, 2021
- 14
It's my security config for 2022. In 2021 I used the similar one (without Avast AntiTrack and Simplewall).
Timothytimes' Security Config 2023
- Thread starter timothytimes
- Start date
- Feb 25, 2017
- 2,585
To me it seems like you are trying to set your focus mainly on privacy according to all the privacy extensions you are using. The problem is that more privacy extensions do not actually improve, but lower your privacy and security on the web.
Some articles about this topic:
1. How anti-fingerprinting extensions tend to make fingerprinting easier
2. Why you should be careful with browser extensions
- Feb 12, 2017
- 249
I do agree with @SecureKongo even though I - myself - have quite many extensions 
- Aug 1, 2021
- 14
What addons do you think I ought to remove?
- Feb 25, 2017
- 2,585
Thats up to you. I personally would remove all extensions that provide some kind of tracking protection (CleanURLs, PrivacyBadger, DuckDuckGo Privacy Essentials and LocalCDN if you have Strict tracking protection enabled in Firefox. Firefox has solid integrated tracking protections that cover quite a lot of tacking mechanisms and uBlock Origin would be a good and simple addition.
Consider setting up one of those modes for uBlock Origin for enhanced security: Blocking mode · gorhill/uBlock Wiki
- Aug 1, 2021
- 14
Thanks! I've removed Privacy Badger and DDG Privacy Essentials, and medium blocking mode has been enabled in uBo
Last edited:
- Feb 25, 2017
- 2,585
Great! I personally also used LocalCDN for a long time but found out that it is not really needed if you have First Party Isolation (FPI) or Total Cookie Protection / Dynamic First Party Isolation (dFPI) enabled.
Total Cookie Protection or dFPI will automatically be enabled when you choose to set Firefox's Enhanced Tracking Protection to Strict --> Firefox 86 Introduces Total Cookie Protection – Mozilla Security Blog
If you don't want to do that you can still enable FPI in about:config by setting the value of privacy.firstparty.isolate to true.
Here a Reddit thread about all this:
Hope it's not too confusing.
- Feb 12, 2017
- 249
I agree with @SecureKongo. What do AdGuard Extra do for you? Are you using it as a script built in Tampermonkey?
I'm using 'Legitimate URL Shortener' filter instead of ClearURLs.
I'm using 'Legitimate URL Shortener' filter instead of ClearURLs.
- Feb 12, 2017
- 249
If a filter can replace a extension, I would go for it any day.
- Aug 1, 2021
- 14
Great! I personally also used LocalCDN for a long time but found out that it is not really needed if you have First Party Isolation (FPI) or Total Cookie Protection / Dynamic First Party Isolation (dFPI) enabled.
Total Cookie Protection or dFPI will automatically be enabled when you choose to set Firefox's Enhanced Tracking Protection to Strict --> Firefox 86 Introduces Total Cookie Protection – Mozilla Security Blog
If you don't want to do that you can still enable FPI in about:config by setting the value of privacy.firstparty.isolate to true.
Here a Reddit thread about all this:
Hope it's not too confusing.
Great! I appreciate your kindness and efforts to make my config better. I've just deleted LocalCDN and set my tracking protection to scrict. Also, I've enabled FPI, but it might be unnecessarily
- Aug 1, 2021
- 14
I use Adguard Extra script which I added in Tampermonkey. In my opinion, Adguard Extra is a good decision to block YandexDirect (and not only this) advertisements where it won't delete by DNS and uBo filters.
- Feb 25, 2017
- 2,585
If you have set the tracking protection to "Strict" you should disable FPI as it can conflict with dFPI.
- Aug 1, 2021
- 14
Hehehe. Now it's doneIf you have set the tracking protection to "Strict" you should disable FPI as it can conflict with dFPI.
- Feb 25, 2017
- 2,585
Nice recommendation. The filters "Legitimate URL Shortener" and "AdGuard URL Tracking Protection" in uBlock Origin are basically doing the same as ClearURLs @timothytimes
- Aug 1, 2021
- 14
Thank you! I added Legitimate URL Shortener. Adguard URL Tracking Protection has been already enabled
I use the Custom setting in Firefox. This is what it looks like. So far, no problems--since about 4-5 months. I still get "breakthrough" cookie notices occasionally so the Element Picker comes in handy rather than scrounging around for more lists.
µBlock, a lean and fast blocker
Yes, I was dimly aware of this but I figured: if it works even once, then it's OK to keep it enabled--and if a mainsteam browser still offers this...
www.wilderssecurity.com
- Feb 25, 2017
- 2,585
I am not quite sure about that but I think that setting tracking protection to custom might not trigger the dFPI feature of Firefox. At least they are only stating that "Strict" will enable it on their site: Firefox 86 Introduces Total Cookie Protection – Mozilla Security BlogI use the Custom setting in Firefox. This is what it looks like. So far, no problems--since about 4-5 months. I still get "breakthrough" cookie notices occasionally so the Element Picker comes in handy rather than scrounging around for more lists.
µBlock, a lean and fast blocker
Yes, I was dimly aware of this but I figured: if it works even once, then it's OK to keep it enabled--and if a mainsteam browser still offers this...
- Jun 14, 2011
- 1,849
- Mar 29, 2018
- 7,598
I'm not either but I found this on Reddit Who knows what to believe on R when there are no references/documentation.
In the end I think it's 6 of one, 1/2 dozen of the other. FF strict is very good protection with recent developments.
Last edited:
- Mar 29, 2018
- 7,598
Now I'm less certain of my previous post. This appears to be the pertinent section from @SecureKongo referenced link above:
Note: Italics are mine.
Similar threads
