From 528b38cb34deab62364bd6198847a2f9aba1df1a Mon Sep 17 00:00:00 2001 From: fxbrit Date: Sun, 22 May 2022 12:51:56 +0200 Subject: [PATCH] remove session cookie prefs and fission prefs --- docs/Changelog.md | 13 +++++++++++++ librewolf.cfg | 11 +---------- 2 files changed, 14 insertions(+), 10 deletions(-) diff --git a/docs/Changelog.md b/docs/Changelog.md index 001ca48..3bd8f45 100644 --- a/docs/Changelog.md +++ b/docs/Changelog.md @@ -3,9 +3,22 @@ Setting versions are documented using the pref `librewolf.cfg.version`, availabl # 6.5 +**target commit**: eea09ca07333dc166213fa9c873e4916d979e97f + +**base librewolf version**: 101.x + +**References**: +- query stripping is now [part of strict mode](https://hg.mozilla.org/mozilla-central/rev/9d9425eb1ded). +- session cookie prefs are useless given that we sanitize on close, [more details at arkenfox](https://github.com/arkenfox/user.js/pull/1443/commits/3207478033fefc19e933dab4eef6445125341ec4). +- fission has been a default for the longest now. + + #### Removed preferences ``` defaultPref("privacy.query_stripping.enabled", true); +defaultPref("network.cookie.thirdparty.sessionOnly", true); +defaultPref("network.cookie.thirdparty.nonsecureSessionOnly", true); +defaultPref("fission.autostart", true); ``` # 6.4 diff --git a/librewolf.cfg b/librewolf.cfg index 08b7fa7..f63542e 100755 --- a/librewolf.cfg +++ b/librewolf.cfg @@ -47,9 +47,6 @@ defaultPref("privacy.partition.serviceWorkers", true); // isolate service worker /** [SECTION] SANITIZING */ defaultPref("network.cookie.lifetimePolicy", 2); // keep cookies until end of the session, then clear -// make third party and http cookies session-only -defaultPref("network.cookie.thirdparty.sessionOnly", true); -defaultPref("network.cookie.thirdparty.nonsecureSessionOnly", true); /** * this way of sanitizing cookies would override the exceptions set by the users and just delete everything, * we disable it but cookies and site data are still cleared per session unless exceptions are set. @@ -189,12 +186,6 @@ defaultPref("webgl.disabled", true); /** [CATEGORY] SECURITY */ -/** [SECTION] SITE ISOLATION - * https://wiki.mozilla.org/Project_Fission - * this has been rolled out and is now a default on most FF releases - */ -defaultPref("fission.autostart", true); - /** [SECTION] CERTIFICATES */ defaultPref("security.cert_pinning.enforcement_level", 2); // enable strict public key pinning, might cause issues with AVs defaultPref("security.pki.sha1_enforcement_level", 1); // disable sha-1 certificates @@ -291,7 +282,7 @@ defaultPref("media.gmp-provider.enabled", false); defaultPref("media.gmp-gmpopenh264.enabled", false); /** [SECTION] SEARCH AND URLBAR - * disable search suggestion by default and do not update opensearch engines. urls should also be + * disable search suggestion and do not update opensearch engines. urls should also be * displayed in full instead of trimming them. */ defaultPref("browser.urlbar.suggest.searches", false);