librewolf-bot/settings
1
0
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity

remove session cookie prefs and fission prefs

Browse source
This commit is contained in:
fxbrit 2022-05-22 12:51:56 +02:00
parent c03021ef29
commit 528b38cb34
2 changed files with 14 additions and 10 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
docs/Changelog.md
View file

@ -3,9 +3,22 @@ Setting versions are documented using the pref `librewolf.cfg.version`, availabl
# 6.5 # 6.5
**target commit**: eea09ca07333dc166213fa9c873e4916d979e97f
**base librewolf version**: 101.x
**References**:
- query stripping is now [part of strict mode](https://hg.mozilla.org/mozilla-central/rev/9d9425eb1ded).
- session cookie prefs are useless given that we sanitize on close, [more details at arkenfox](https://github.com/arkenfox/user.js/pull/1443/commits/3207478033fefc19e933dab4eef6445125341ec4).
- fission has been a default for the longest now.
#### Removed preferences #### Removed preferences
``` ```
defaultPref("privacy.query_stripping.enabled", true); defaultPref("privacy.query_stripping.enabled", true);
defaultPref("network.cookie.thirdparty.sessionOnly", true);
defaultPref("network.cookie.thirdparty.nonsecureSessionOnly", true);
defaultPref("fission.autostart", true);
``` ```
# 6.4 # 6.4

11
librewolf.cfg
View file

@ -47,9 +47,6 @@ defaultPref("privacy.partition.serviceWorkers", true); // isolate service worker
/** [SECTION] SANITIZING */ /** [SECTION] SANITIZING */
defaultPref("network.cookie.lifetimePolicy", 2); // keep cookies until end of the session, then clear defaultPref("network.cookie.lifetimePolicy", 2); // keep cookies until end of the session, then clear
// make third party and http cookies session-only
defaultPref("network.cookie.thirdparty.sessionOnly", true);
defaultPref("network.cookie.thirdparty.nonsecureSessionOnly", true);
/** /**
* this way of sanitizing cookies would override the exceptions set by the users and just delete everything, * this way of sanitizing cookies would override the exceptions set by the users and just delete everything,
* we disable it but cookies and site data are still cleared per session unless exceptions are set. * we disable it but cookies and site data are still cleared per session unless exceptions are set.
@ -189,12 +186,6 @@ defaultPref("webgl.disabled", true);
/** [CATEGORY] SECURITY */ /** [CATEGORY] SECURITY */
/** [SECTION] SITE ISOLATION
* https://wiki.mozilla.org/Project_Fission
* this has been rolled out and is now a default on most FF releases
*/
defaultPref("fission.autostart", true);
/** [SECTION] CERTIFICATES */ /** [SECTION] CERTIFICATES */
defaultPref("security.cert_pinning.enforcement_level", 2); // enable strict public key pinning, might cause issues with AVs defaultPref("security.cert_pinning.enforcement_level", 2); // enable strict public key pinning, might cause issues with AVs
defaultPref("security.pki.sha1_enforcement_level", 1); // disable sha-1 certificates defaultPref("security.pki.sha1_enforcement_level", 1); // disable sha-1 certificates
@ -291,7 +282,7 @@ defaultPref("media.gmp-provider.enabled", false);
defaultPref("media.gmp-gmpopenh264.enabled", false); defaultPref("media.gmp-gmpopenh264.enabled", false);
/** [SECTION] SEARCH AND URLBAR /** [SECTION] SEARCH AND URLBAR
* disable search suggestion by default and do not update opensearch engines. urls should also be * disable search suggestion and do not update opensearch engines. urls should also be
* displayed in full instead of trimming them. * displayed in full instead of trimming them.
*/ */
defaultPref("browser.urlbar.suggest.searches", false); defaultPref("browser.urlbar.suggest.searches", false);