tracking: disable DNS-over-HTTPS and the "Normandy" service.
[firefox-user-prefs.git] / tracking
1 /* Tracking protection */
2
3
4 /* Don't notify servers when I leave a webpage.
5 *
6 * References:
7 *
8 * 1. https://bugzilla.mozilla.org/show_bug.cgi?id=1387745
9 *
10 */
11 user_pref("beacon.enabled", false);
12
13
14 /* Don't let websites query the battery status of my PC.
15 * This should now be disabled... but let's turn it off
16 * again, just in case.
17 *
18 * References:
19 *
20 * 1. https://bugzilla.mozilla.org/show_bug.cgi?id=1387745
21 * 2. https://bugzilla.mozilla.org/show_bug.cgi?id=1313580
22 * 3. https://wiki.mozilla.org/Privacy/Privacy_Task_Force/firefox_about_config_privacy_tweeks
23 */
24 user_pref("dom.battery.enabled", false);
25
26
27 /* Don't allow websites to spy on my copy/paste actions.
28 *
29 * References:
30 *
31 * 1. https://bugzilla.mozilla.org/show_bug.cgi?id=1387745
32 * 2. https://developer.mozilla.org/en-US/docs/Mozilla/Preferences/Preference_reference/dom.event.clipboardevents.enabled
33 * 3. https://wiki.mozilla.org/Privacy/Privacy_Task_Force/firefox_about_config_privacy_tweeks
34 */
35 user_pref("dom.event.clipboardevents.enabled", false);
36
37
38 /* Disable WebRTC. I don't need a web browser to chat, thanks.
39 *
40 * References:
41 *
42 * 1. https://restoreprivacy.com/webrtc-leaks/
43 * 2. https://wiki.mozilla.org/Media/WebRTC/Privacy
44 */
45 user_pref("media.peerconnection.enabled", false);
46
47
48 /* Don't allow websites to snoop on my webcam or microphone.
49 *
50 * References:
51 *
52 * 1. https://wiki.mozilla.org/Privacy/Privacy_Task_Force/firefox_about_config_privacy_tweeks
53 * 2. https://wiki.mozilla.org/Media/getUserMedia
54 */
55 user_pref("media.navigator.enabled", false);
56
57
58 /* Disable geolocation. Websites shouldn't know where I am,
59 * and neither should Google (whose API is used to track me).
60 *
61 * References:
62 *
63 * 1. http://www.mozilla.com/en-US/firefox/geolocation/
64 * 2. https://wiki.mozilla.org/Privacy/Privacy_Task_Force/firefox_about_config_privacy_tweeks
65 *
66 */
67 user_pref("geo.enabled", false);
68
69
70 /* Disable WebGL. I actually don't need websites to be able to
71 * directly access my video hardware.
72 *
73 * References:
74 *
75 * 1. https://www.contextis.com/en/blog/webgl-a-new-dimension-for-browser-exploitation
76 *
77 */
78 user_pref("webgl.disabled", true);
79
80
81 /* Disable DNS-over-HTTPS (DoH), which is a helpful service that sends
82 * all of your DNS requests to Cloudflare. DoH is presently disabled
83 * by default in Gentoo, but let's disable it again so that we're not
84 * subject to the whims of the Gentoo security/privacy zeitgeist.
85 *
86 * References:
87 *
88 * 1. https://wiki.mozilla.org/Trusted_Recursive_Resolver#network.trr.mode
89 *
90 */
91 user_pref("network.trr.mode", 5);
92
93
94 /* Disable the "Normandy" service, which allows Mozilla to force-push
95 * invasive (the irony of word-association is not lost here) preference
96 * updates to your browser. Normandy is presently disabled by default in
97 * Gentoo, but it's the sort of thing worth killing twice, just to be sure.
98 *
99 * References:
100 *
101 * 1. https://wiki.mozilla.org/Firefox/Normandy/PreferenceRollout
102 * 2. https://wiki.mozilla.org/Firefox/Shield/Heartbeat
103 *
104 */
105 user_pref("app.normandy.enabled", false);