Can someone post the definitive about:config tweaks on github for quantum?
Can someone post the definitive about:config tweaks on github for quantum?
You should look on spyware.neocities
there's no definitive. some are way too aggressive and make basic web browsing fucking annoying. some don't do enough.
it's all about finding a happy medium. here's mine:user_pref("app.normandy.enabled", false);
user_pref("beacon.enabled", false);
user_pref("browser.chrome.errorReporter.enabled", false);
user_pref("browser.crashReports.unsubmittedCheck.autoSubmit2", false);
user_pref("browser.crashReports.unsubmittedCheck.autoSubmit", false);
user_pref("browser.crashReports.unsubmittedCheck.enabled", false);
user_pref("browser.library.activity-stream.enabled", false);
user_pref("browser.ping-centre.telemetry", false);
user_pref("browser.polaris.enabled", true);
user_pref("browser.safebrowsing.downloads.enabled", false);
user_pref("browser.safebrowsing.downloads.remote.block_dangerous", false);
user_pref("browser.safebrowsing.downloads.remote.block_dangerous_host", false);
user_pref("browser.safebrowsing.downloads.remote.block_potentially_unwanted", false);
user_pref("browser.safebrowsing.downloads.remote.block_uncommon", false);
user_pref("browser.safebrowsing.downloads.remote.enabled", false);
user_pref("browser.safebrowsing.malware.enabled", false);
user_pref("browser.safebrowsing.phishing.enabled", false);
user_pref("browser.tabs.crashReporting.sendReport", false);
user_pref("dom.push.connection.enabled", false);
user_pref("dom.push.enabled", false);
user_pref("geo.enabled", false);
user_pref("network.http.spdy.allow-push", false);
user_pref("network.security.esni.enabled", false);
user_pref("network.trr.mode", 5);
user_pref("privacy.trackingprotection.enabled", true);
user_pref("social.remote-install.enabled", false);
user_pref("toolkit.telemetry.enabled", false);
user_pref("toolkit.telemetry.unified", false);
user_pref("xpinstall.signatures.required", false);
user_pref("xpinstall.whitelist.required", false);
of-course my user.js has a ton more shit in it, but these are all the security-related entries.
>("network.trr.mode", 5)
What does this do?
Also, thanks.
until trusted recursive resolvers obey hosts files (including hosts allow and hosts deny on lignux), they're a clear security issue. so this explicitly disables the use of those resolvers. maybe 0.1% of FF users would ever use the feature anyway, so whatever. just wanted to be safe.
Does it have any network performance impact?
zero. it only disables the use of trusted recursive resolvers. this is a feature that is not on by default. the value of 5 simply removes the option to enable it.
dnssec, dns over https, encrypted sni
>dnssec
not a firefox feature. jesus christ.
>dns over https, encrypted sni
great things in general, but firefox's implementation of esni is not mature and has security issues like the one i mentioned here (iESNI relies on TRRs if you were not aware): most people should just be using DoT or DNSCrypt on their routers anyway.
I see that's awesome I've applied your tweaks and a couple others like dom.enable_resource_timing and dom.battery.enabled to false. Do you use any tweaks that make firefox faster? Like disabled cosmetic and video fullscreen animations?
no need to. router filters out 30% of the web's garbage. hosts file filters out like 50%, and ublock catches the rest. i haven't seen firefox get sluggish on either my windows or lignux installs in years.
Disabling prefetch needs to be a GUI option.
network.dns.disablePrefetch true
network.http.speculative-parallel-limit 0
network.predictor.cleaned-up true
network.predictor.enabled false
network.prefetch-next false
thankfully for newbs ubo disables that shiz by default
someone posted once a website with a config guide for privacy on firefox, but i cant find it again. it wasnt spyware.neocities either, if anyone could help i would be glad :)
>i haven't seen firefox get sluggish on either my windows or lignux installs in years.
Looks like someone doesn't have to use altassian shit for work
Geo.enabled
Media.peerconnection
There's more, but those are just off hand.
Privacytools.io
github.com
Make a backup of your profile
Copy user.js
Go through it line by line and keep things you need
Start ff and see what breaks
Doable rules (and enable them in about: config)
Repeat until it works
>Privacytools.io
It was probably this.
Not definitive, but a few good ones.
privateinternetaccess.com
security.ssl3.rsa_des_ede3_sha;false
security.ssl.require_safe_negotiation;true
security.tls.version.min;3
security.tls.enable_0rtt_data;false
security.ssl.enable_false_start;false
privacy.firstparty.isolate;true
browser.cache.disk.enable;false
browser.cache.disk_cache_ssl;false
network.dns.disablePrefetch;true
network.prefetch-next;false
webgl.disabled;true
media.peerconnection.enabled;false
geo.enabled;false
dom.event.contextmenu.enabled;false
dom.event.clipboardevents.enabled;false
dom.battery.enabled;false
security.dialog_enable_delay;0
browser.urlbar.trimURLs;false
browser.download.animateNotifications;false
extensions.pocket.enabled;false
gfx.webrender.enabled;true
gfx.webrender.all;true
This one is solid.
spyware.neocities.org
I used wireshark to confirm
Was just curious but does anyone use the force hardware acceleration flag to drastically improve performance and stop fullscreen video tearing on Linux? Chromium's default "use where available" option seems to work great ootb with none of those issues otherwise but I'm just wondering. This also isn't an issue on Windows with defaults
what flag it that? I have webrender force enabled and no tearing on fullscreen videos anyway, hardware video acceleration is not supported on linux tho
indeed, it was. thank you
Apps and features->uninstall Firefox
github.com
github.com
git.savannah.gnu.org
Read github.com
Read all comments in the source files so you don't get surprises.
Best is building your own config.
Just install IceCat.
>Apps and features
Winfag
it's bloated with useless addons and a russian ublock clone
thanks user
bumping for more
layers.acceleration.force-enabled
What I meant by performance is scrolling webpages basically, they would jitter or lag to 30fps before I enabled this flag as well as tear on full screen videos (this doesn't happen if I use tear-free or a Wayland session). After enabling it it's even smoother than Chromium and more reminiscent of its Windows counterpart. The actual video itself isn't an issue too since I mostly open them in mpv anyway but 4k60 videos run fine even without hardware acceleration too.
Just curious but what version are you running? I'm on 62 (Lubuntu) and having layers.acceleration.force-enabled is a hit and miss because firefox tends to crash sporadically, marked improvement yes but I turned it off just for stability
javascript.enabled;false
here user, you dropped this
For some reason I don't need to force hardware acceleration on lignux, but I do on windows (to avoid choppy scrolling and sometimes fonts looking messy). The flag works.
67 on Fedora, but from the others I've asked I'm starting to gather that this might be a DE / wm dependant issue, and since I'm running an outdated Budgie I'm probably just lucky. Thanks for your input tho user I really appreciate it!
lol that's a new one, I've even heard that on Windows it's form of hardware acceleration automatic detection was very hit or miss and forcing it for some machines regardless. Thanks user for your input as well, I'm trying to move over from Chromium following the scheduled adblock removal and this is pretty much one of the things that held me back, but who knows it might edge out even more in the future. As much as I don't like what Mozilla is doing, we don't really have much of a choice for original alternatives sadly.