tracking: disable DNS-over-HTTPS and the "Normandy" service. master
authorMichael Orlitzky <michael@orlitzky.com>
Thu, 2 Apr 2020 00:54:06 +0000 (20:54 -0400)
committerMichael Orlitzky <michael@orlitzky.com>
Thu, 2 Apr 2020 00:54:06 +0000 (20:54 -0400)
tracking

index c585cac863bee72415246e1d72745fdff31fd5a0..648c04ef0ed1ed3528bf1954689466ada8799036 100644 (file)
--- a/tracking
+++ b/tracking
@@ -77,3 +77,29 @@ user_pref("geo.enabled", false);
  */
 user_pref("webgl.disabled", true);
 
+
+/* Disable DNS-over-HTTPS (DoH), which is a helpful service that sends
+ * all of your DNS requests to Cloudflare. DoH is presently disabled
+ * by default in Gentoo, but let's disable it again so that we're not
+ * subject to the whims of the Gentoo security/privacy zeitgeist.
+ *
+ * References:
+ *
+ * 1. https://wiki.mozilla.org/Trusted_Recursive_Resolver#network.trr.mode
+ *
+ */
+user_pref("network.trr.mode", 5);
+
+
+/* Disable the "Normandy" service, which allows Mozilla to force-push
+ * invasive (the irony of word-association is not lost here) preference
+ * updates to your browser. Normandy is presently disabled by default in
+ * Gentoo, but it's the sort of thing worth killing twice, just to be sure.
+ *
+ * References:
+ *
+ * 1. https://wiki.mozilla.org/Firefox/Normandy/PreferenceRollout
+ * 2. https://wiki.mozilla.org/Firefox/Shield/Heartbeat
+ *
+ */
+user_pref("app.normandy.enabled", false);