Can someone post the definitive about:config tweaks on github for quantum?

Question

Can someone post the definitive about:config tweaks on github for quantum?

Adrian Ward

Attached: ff.png (578x582, 213K)

June 3, 2019 - 06:05

Other urls found in this thread:

github.com/pyllyukko/user.js
privateinternetaccess.com/blog/2018/09/firefox-hardening-guide/
spyware.neocities.org/guides/firefox.html
github.com/ghacksuserjs/ghacks-user.js
git.savannah.gnu.org/cgit/gnuzilla.git/tree/data/settings.js
twitter.com/SFWRedditVideos

Leo Fisher

You should look on spyware.neocities

June 3, 2019 - 06:37

Sebastian Long

there's no definitive. some are way too aggressive and make basic web browsing fucking annoying. some don't do enough.

it's all about finding a happy medium. here's mine:user_pref("app.normandy.enabled", false);
user_pref("beacon.enabled", false);
user_pref("browser.chrome.errorReporter.enabled", false);
user_pref("browser.crashReports.unsubmittedCheck.autoSubmit2", false);
user_pref("browser.crashReports.unsubmittedCheck.autoSubmit", false);
user_pref("browser.crashReports.unsubmittedCheck.enabled", false);
user_pref("browser.library.activity-stream.enabled", false);
user_pref("browser.ping-centre.telemetry", false);
user_pref("browser.polaris.enabled", true);
user_pref("browser.safebrowsing.downloads.enabled", false);
user_pref("browser.safebrowsing.downloads.remote.block_dangerous", false);
user_pref("browser.safebrowsing.downloads.remote.block_dangerous_host", false);
user_pref("browser.safebrowsing.downloads.remote.block_potentially_unwanted", false);
user_pref("browser.safebrowsing.downloads.remote.block_uncommon", false);
user_pref("browser.safebrowsing.downloads.remote.enabled", false);
user_pref("browser.safebrowsing.malware.enabled", false);
user_pref("browser.safebrowsing.phishing.enabled", false);
user_pref("browser.tabs.crashReporting.sendReport", false);
user_pref("dom.push.connection.enabled", false);
user_pref("dom.push.enabled", false);
user_pref("geo.enabled", false);
user_pref("network.http.spdy.allow-push", false);
user_pref("network.security.esni.enabled", false);
user_pref("network.trr.mode", 5);
user_pref("privacy.trackingprotection.enabled", true);
user_pref("social.remote-install.enabled", false);
user_pref("toolkit.telemetry.enabled", false);
user_pref("toolkit.telemetry.unified", false);
user_pref("xpinstall.signatures.required", false);
user_pref("xpinstall.whitelist.required", false);

of-course my user.js has a ton more shit in it, but these are all the security-related entries.

June 3, 2019 - 06:43

Colton Wood

>("network.trr.mode", 5)
What does this do?
Also, thanks.

June 3, 2019 - 06:50

Isaac Moore

until trusted recursive resolvers obey hosts files (including hosts allow and hosts deny on lignux), they're a clear security issue. so this explicitly disables the use of those resolvers. maybe 0.1% of FF users would ever use the feature anyway, so whatever. just wanted to be safe.

June 3, 2019 - 06:53

Asher Morris

Does it have any network performance impact?

June 3, 2019 - 07:03

Wyatt Bennett

zero. it only disables the use of trusted recursive resolvers. this is a feature that is not on by default. the value of 5 simply removes the option to enable it.

June 3, 2019 - 07:11

Dylan Rivera

dnssec, dns over https, encrypted sni

June 3, 2019 - 07:11

Ryder Garcia

>dnssec
not a firefox feature. jesus christ.

>dns over https, encrypted sni
great things in general, but firefox's implementation of esni is not mature and has security issues like the one i mentioned here (iESNI relies on TRRs if you were not aware): most people should just be using DoT or DNSCrypt on their routers anyway.

June 3, 2019 - 07:16

Robert Young

I see that's awesome I've applied your tweaks and a couple others like dom.enable_resource_timing and dom.battery.enabled to false. Do you use any tweaks that make firefox faster? Like disabled cosmetic and video fullscreen animations?

June 3, 2019 - 07:19

Blake Powell

no need to. router filters out 30% of the web's garbage. hosts file filters out like 50%, and ublock catches the rest. i haven't seen firefox get sluggish on either my windows or lignux installs in years.

June 3, 2019 - 07:22

Colton Thomas

Disabling prefetch needs to be a GUI option.
network.dns.disablePrefetch true
network.http.speculative-parallel-limit 0
network.predictor.cleaned-up true
network.predictor.enabled false
network.prefetch-next false

June 3, 2019 - 07:48

Angel Morris

thankfully for newbs ubo disables that shiz by default

June 3, 2019 - 08:20

Daniel Scott

someone posted once a website with a config guide for privacy on firefox, but i cant find it again. it wasnt spyware.neocities either, if anyone could help i would be glad :)

Attached: 1550517285141.jpg (499x430, 32K)

June 3, 2019 - 08:30

Justin Edwards

>i haven't seen firefox get sluggish on either my windows or lignux installs in years.
Looks like someone doesn't have to use altassian shit for work

June 3, 2019 - 10:28

Luke Morris

Geo.enabled
Media.peerconnection

There's more, but those are just off hand.

June 3, 2019 - 10:43

Gavin Turner

Privacytools.io

June 3, 2019 - 10:45

Colton Lewis

github.com/pyllyukko/user.js
Make a backup of your profile
Copy user.js
Go through it line by line and keep things you need
Start ff and see what breaks
Doable rules (and enable them in about: config)
Repeat until it works

June 3, 2019 - 11:11

Joshua Howard

>Privacytools.io
It was probably this.

June 3, 2019 - 12:02

Angel Bell

Not definitive, but a few good ones.
privateinternetaccess.com/blog/2018/09/firefox-hardening-guide/
security.ssl3.rsa_des_ede3_sha;false
security.ssl.require_safe_negotiation;true
security.tls.version.min;3
security.tls.enable_0rtt_data;false
security.ssl.enable_false_start;false
privacy.firstparty.isolate;true
browser.cache.disk.enable;false
browser.cache.disk_cache_ssl;false
network.dns.disablePrefetch;true
network.prefetch-next;false
webgl.disabled;true
media.peerconnection.enabled;false
geo.enabled;false
dom.event.contextmenu.enabled;false
dom.event.clipboardevents.enabled;false
dom.battery.enabled;false
security.dialog_enable_delay;0
browser.urlbar.trimURLs;false
browser.download.animateNotifications;false
extensions.pocket.enabled;false
gfx.webrender.enabled;true
gfx.webrender.all;true

June 3, 2019 - 12:15

Daniel Barnes

This one is solid.
spyware.neocities.org/guides/firefox.html
I used wireshark to confirm

June 3, 2019 - 12:56

Jaxson Murphy

github.com/ghacksuserjs/ghacks-user.js

June 3, 2019 - 13:12

Jose James

Was just curious but does anyone use the force hardware acceleration flag to drastically improve performance and stop fullscreen video tearing on Linux? Chromium's default "use where available" option seems to work great ootb with none of those issues otherwise but I'm just wondering. This also isn't an issue on Windows with defaults

June 3, 2019 - 13:48

Aiden Robinson

what flag it that? I have webrender force enabled and no tearing on fullscreen videos anyway, hardware video acceleration is not supported on linux tho

June 3, 2019 - 14:19

Angel Myers

indeed, it was. thank you

June 3, 2019 - 14:37

John Torres

Apps and features->uninstall Firefox

June 3, 2019 - 14:38

Logan Ortiz

github.com/pyllyukko/user.js
github.com/ghacksuserjs/ghacks-user.js
git.savannah.gnu.org/cgit/gnuzilla.git/tree/data/settings.js

Read github.com/ghacksuserjs/ghacks-user.js Wiki!
Read all comments in the source files so you don't get surprises.
Best is building your own config.

June 3, 2019 - 14:41

Tyler Anderson

Just install IceCat.

June 3, 2019 - 14:41

Luke Nelson

>Apps and features
Winfag

June 3, 2019 - 14:43

Charles Rodriguez

it's bloated with useless addons and a russian ublock clone

June 3, 2019 - 14:48

Dylan Gomez

thanks user

June 3, 2019 - 15:16

William Lopez

bumping for more

June 3, 2019 - 17:19

Blake Wood

layers.acceleration.force-enabled

What I meant by performance is scrolling webpages basically, they would jitter or lag to 30fps before I enabled this flag as well as tear on full screen videos (this doesn't happen if I use tear-free or a Wayland session). After enabling it it's even smoother than Chromium and more reminiscent of its Windows counterpart. The actual video itself isn't an issue too since I mostly open them in mpv anyway but 4k60 videos run fine even without hardware acceleration too.

June 3, 2019 - 18:16

Bentley Lee

Just curious but what version are you running? I'm on 62 (Lubuntu) and having layers.acceleration.force-enabled is a hit and miss because firefox tends to crash sporadically, marked improvement yes but I turned it off just for stability

June 3, 2019 - 18:31

Joshua Brooks

javascript.enabled;false

June 3, 2019 - 18:35

Chase Fisher

here user, you dropped this

Attached: 71GV79NPpZL._UX679_.jpg (679x583, 74K)

June 3, 2019 - 18:54

Isaiah Brooks

github.com/ghacksuserjs/ghacks-user.js

June 3, 2019 - 19:17

William Williams

For some reason I don't need to force hardware acceleration on lignux, but I do on windows (to avoid choppy scrolling and sometimes fonts looking messy). The flag works.

June 3, 2019 - 19:20

Andrew Roberts

67 on Fedora, but from the others I've asked I'm starting to gather that this might be a DE / wm dependant issue, and since I'm running an outdated Budgie I'm probably just lucky. Thanks for your input tho user I really appreciate it!

June 3, 2019 - 20:24

Lucas Brooks

lol that's a new one, I've even heard that on Windows it's form of hardware acceleration automatic detection was very hit or miss and forcing it for some machines regardless. Thanks user for your input as well, I'm trying to move over from Chromium following the scheduled adblock removal and this is pretty much one of the things that held me back, but who knows it might edge out even more in the future. As much as I don't like what Mozilla is doing, we don't really have much of a choice for original alternatives sadly.

June 3, 2019 - 20:28

1 2 ... 4 Next

Can someone post the definitive about:config tweaks on github for quantum?

Last threads