It's my security config for 2025.
Last edited:
timothytimes' Security Config 2025
- Thread starter timothytimes
- Start date
To me it seems like you are trying to set your focus mainly on privacy according to all the privacy extensions you are using. The problem is that more privacy extensions do not actually improve, but lower your privacy and security on the web.
Some articles about this topic:
1. How anti-fingerprinting extensions tend to make fingerprinting easier
2. Why you should be careful with browser extensions
I do agree with @SecureKongo even though I - myself - have quite many extensions 
What addons do you think I ought to remove?
Thats up to you. I personally would remove all extensions that provide some kind of tracking protection (CleanURLs, PrivacyBadger, DuckDuckGo Privacy Essentials and LocalCDN if you have Strict tracking protection enabled in Firefox. Firefox has solid integrated tracking protections that cover quite a lot of tacking mechanisms and uBlock Origin would be a good and simple addition.
Consider setting up one of those modes for uBlock Origin for enhanced security: Blocking mode · gorhill/uBlock Wiki
Thanks! I've removed Privacy Badger and DDG Privacy Essentials, and medium blocking mode has been enabled in uBo
Last edited:
Great! I personally also used LocalCDN for a long time but found out that it is not really needed if you have First Party Isolation (FPI) or Total Cookie Protection / Dynamic First Party Isolation (dFPI) enabled.
Total Cookie Protection or dFPI will automatically be enabled when you choose to set Firefox's Enhanced Tracking Protection to Strict --> Firefox 86 Introduces Total Cookie Protection – Mozilla Security Blog
If you don't want to do that you can still enable FPI in about:config by setting the value of privacy.firstparty.isolate to true.
Here a Reddit thread about all this:
Hope it's not too confusing.
I agree with @SecureKongo. What do AdGuard Extra do for you? Are you using it as a script built in Tampermonkey?
I'm using 'Legitimate URL Shortener' filter instead of ClearURLs.
I'm using 'Legitimate URL Shortener' filter instead of ClearURLs.
If a filter can replace a extension, I would go for it any day.
Great! I personally also used LocalCDN for a long time but found out that it is not really needed if you have First Party Isolation (FPI) or Total Cookie Protection / Dynamic First Party Isolation (dFPI) enabled.
Total Cookie Protection or dFPI will automatically be enabled when you choose to set Firefox's Enhanced Tracking Protection to Strict --> Firefox 86 Introduces Total Cookie Protection – Mozilla Security Blog
If you don't want to do that you can still enable FPI in about:config by setting the value of privacy.firstparty.isolate to true.
Here a Reddit thread about all this:
Hope it's not too confusing.
Great! I appreciate your kindness and efforts to make my config better. I've just deleted LocalCDN and set my tracking protection to scrict. Also, I've enabled FPI, but it might be unnecessarily
I use Adguard Extra script which I added in Tampermonkey. In my opinion, Adguard Extra is a good decision to block YandexDirect (and not only this) advertisements where it won't delete by DNS and uBo filters.
If you have set the tracking protection to "Strict" you should disable FPI as it can conflict with dFPI.
Hehehe. Now it's doneIf you have set the tracking protection to "Strict" you should disable FPI as it can conflict with dFPI.
Nice recommendation. The filters "Legitimate URL Shortener" and "AdGuard URL Tracking Protection" in uBlock Origin are basically doing the same as ClearURLs @timothytimes
Thank you! I added Legitimate URL Shortener. Adguard URL Tracking Protection has been already enabled
I use the Custom setting in Firefox. This is what it looks like. So far, no problems--since about 4-5 months. I still get "breakthrough" cookie notices occasionally so the Element Picker comes in handy rather than scrounging around for more lists.
µBlock, a lean and fast blocker
Yes, I was dimly aware of this but I figured: if it works even once, then it's OK to keep it enabled--and if a mainsteam browser still offers this...
www.wilderssecurity.com
I am not quite sure about that but I think that setting tracking protection to custom might not trigger the dFPI feature of Firefox. At least they are only stating that "Strict" will enable it on their site: Firefox 86 Introduces Total Cookie Protection – Mozilla Security BlogI use the Custom setting in Firefox. This is what it looks like. So far, no problems--since about 4-5 months. I still get "breakthrough" cookie notices occasionally so the Element Picker comes in handy rather than scrounging around for more lists.
µBlock, a lean and fast blocker
Yes, I was dimly aware of this but I figured: if it works even once, then it's OK to keep it enabled--and if a mainsteam browser still offers this...
I'm not either but I found this on Reddit Who knows what to believe on R when there are no references/documentation.
In the end I think it's 6 of one, 1/2 dozen of the other. FF strict is very good protection with recent developments.
Last edited:
Now I'm less certain of my previous post. This appears to be the pertinent section from @SecureKongo referenced link above:
Note: Italics are mine.
You may also like...
-
Advanced Threat Protection (ATP) Test 2025- Started by Minimalist
- Replies: 23
-
DJ Stylbator's Setup Configuration 2025- Started by DJ Stylbator
- Replies: 6
-
Devjit’s Gaming PC 2026- Started by devjitdutta2025
- Replies: 44
-
-
Business Security Test 2025 (August – November)
- Started by Minimalist
- Replies: 7