librewolf-bot/settings
1
0
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity

Merge branch 'v101'

Browse source
This commit is contained in:
ohfp 2022-06-01 12:28:43 +02:00
commit b10dcbdd84
3 changed files with 25 additions and 15 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
distribution/policies.json
View file

@ -29,7 +29,7 @@
}, },
"Extensions": { "Extensions": {
"Install": [ "Install": [
"https://addons.mozilla.org/firefox/downloads/file/3933192/ublock_origin-1.42.4-an+fx.xpi" "https://addons.mozilla.org/firefox/downloads/latest/ublock-origin/latest.xpi"
], ],
"Uninstall": [ "Uninstall": [
"google@search.mozilla.org", "google@search.mozilla.org",

20
docs/Changelog.md
View file

@ -1,6 +1,26 @@
This changelog will be used from now on to document changes in a precise manner, with a list of changes for each setting version. This changelog will be used from now on to document changes in a precise manner, with a list of changes for each setting version.
Setting versions are documented using the pref `librewolf.cfg.version`, available in about:config. Setting versions are documented using the pref `librewolf.cfg.version`, available in about:config.
# 6.5
**target commit**:
**base librewolf version**: 101.x
**References**:
- query stripping is now [part of strict mode](https://hg.mozilla.org/mozilla-central/rev/9d9425eb1ded).
- session cookie prefs are useless given that we sanitize on close, [more details at arkenfox](https://github.com/arkenfox/user.js/pull/1443/commits/3207478033fefc19e933dab4eef6445125341ec4).
- fission has been a default for the longest now.
#### Removed preferences
```
defaultPref("privacy.query_stripping.enabled", true);
defaultPref("network.cookie.thirdparty.sessionOnly", true);
defaultPref("network.cookie.thirdparty.nonsecureSessionOnly", true);
defaultPref("fission.autostart", true);
```
# 6.4 # 6.4
**target commit**: eea09ca07333dc166213fa9c873e4916d979e97f **target commit**: eea09ca07333dc166213fa9c873e4916d979e97f

18
librewolf.cfg
View file

@ -6,7 +6,7 @@
* *
* WARNING: please make sure the first line of this file is empty. this is a known bug. * WARNING: please make sure the first line of this file is empty. this is a known bug.
*/ */
defaultPref("librewolf.cfg.version", "6.4"); defaultPref("librewolf.cfg.version", "6.5");
/** INDEX /** INDEX
@ -36,6 +36,7 @@ defaultPref("librewolf.cfg.version", "6.4");
* 3. shims to avoid breakage caused by blocking lists * 3. shims to avoid breakage caused by blocking lists
* 4. stricter policies for xorigin referrers * 4. stricter policies for xorigin referrers
* 5. dFPI specific cookie cleaning mechanism * 5. dFPI specific cookie cleaning mechanism
* 6. query stripping
* *
* the desired category must be set with pref() otherwise it won't stick. * the desired category must be set with pref() otherwise it won't stick.
* the UI that allows to change mode manually is hidden. * the UI that allows to change mode manually is hidden.
@ -46,9 +47,6 @@ defaultPref("privacy.partition.serviceWorkers", true); // isolate service worker
/** [SECTION] SANITIZING */ /** [SECTION] SANITIZING */
defaultPref("network.cookie.lifetimePolicy", 2); // keep cookies until end of the session, then clear defaultPref("network.cookie.lifetimePolicy", 2); // keep cookies until end of the session, then clear
// make third party and http cookies session-only
defaultPref("network.cookie.thirdparty.sessionOnly", true);
defaultPref("network.cookie.thirdparty.nonsecureSessionOnly", true);
/** /**
* this way of sanitizing cookies would override the exceptions set by the users and just delete everything, * this way of sanitizing cookies would override the exceptions set by the users and just delete everything,
* we disable it but cookies and site data are still cleared per session unless exceptions are set. * we disable it but cookies and site data are still cleared per session unless exceptions are set.
@ -79,11 +77,9 @@ defaultPref("browser.sessionstore.privacy_level", 2); // prevent websites from s
defaultPref("browser.sessionstore.interval", 60000); // increase time between session saves defaultPref("browser.sessionstore.interval", 60000); // increase time between session saves
/** [SECTION] QUERY STRIPPING /** [SECTION] QUERY STRIPPING
* enable query stripping and set the strip list. * currently we set the same query stripping list that brave uses:
* currently we use the same one that brave uses:
* https://github.com/brave/brave-core/blob/f337a47cf84211807035581a9f609853752a32fb/browser/net/brave_site_hacks_network_delegate_helper.cc#L29 * https://github.com/brave/brave-core/blob/f337a47cf84211807035581a9f609853752a32fb/browser/net/brave_site_hacks_network_delegate_helper.cc#L29
*/ */
defaultPref("privacy.query_stripping.enabled", true);
defaultPref("privacy.query_stripping.strip_list", "__hsfp __hssc __hstc __s _hsenc _openstat dclid fbclid gbraid gclid hsCtaTracking igshid mc_eid ml_subscriber ml_subscriber_hash msclkid oly_anon_id oly_enc_id rb_clickid s_cid twclid vero_conv vero_id wbraid wickedid yclid"); defaultPref("privacy.query_stripping.strip_list", "__hsfp __hssc __hstc __s _hsenc _openstat dclid fbclid gbraid gclid hsCtaTracking igshid mc_eid ml_subscriber ml_subscriber_hash msclkid oly_anon_id oly_enc_id rb_clickid s_cid twclid vero_conv vero_id wbraid wickedid yclid");
/** /**
* librewolf specific pref that allows to include the query stripping lists in uBO by default. * librewolf specific pref that allows to include the query stripping lists in uBO by default.
@ -190,12 +186,6 @@ defaultPref("webgl.disabled", true);
/** [CATEGORY] SECURITY */ /** [CATEGORY] SECURITY */
/** [SECTION] SITE ISOLATION
* https://wiki.mozilla.org/Project_Fission
* this has been rolled out and is now a default on most FF releases
*/
defaultPref("fission.autostart", true);
/** [SECTION] CERTIFICATES */ /** [SECTION] CERTIFICATES */
defaultPref("security.cert_pinning.enforcement_level", 2); // enable strict public key pinning, might cause issues with AVs defaultPref("security.cert_pinning.enforcement_level", 2); // enable strict public key pinning, might cause issues with AVs
defaultPref("security.pki.sha1_enforcement_level", 1); // disable sha-1 certificates defaultPref("security.pki.sha1_enforcement_level", 1); // disable sha-1 certificates
@ -292,7 +282,7 @@ defaultPref("media.gmp-provider.enabled", false);
defaultPref("media.gmp-gmpopenh264.enabled", false); defaultPref("media.gmp-gmpopenh264.enabled", false);
/** [SECTION] SEARCH AND URLBAR /** [SECTION] SEARCH AND URLBAR
* disable search suggestion by default and do not update opensearch engines. urls should also be * disable search suggestion and do not update opensearch engines. urls should also be
* displayed in full instead of trimming them. * displayed in full instead of trimming them.
*/ */
defaultPref("browser.urlbar.suggest.searches", false); defaultPref("browser.urlbar.suggest.searches", false);