revisit middle mouse click behavior

* deprecate middlemouse.contentLoadURL since its default
* add browser.tabs.searchclipboardfor.middleclick to prevent clipboard leaks to search engines by mistake

.gitlab-ci.yml

@@ -0,0 +1,6 @@
+stages:
+  - dummy
+dummy-job:
+  stage: dummy
+  script:
+    - echo "Hello, world!"

.gitlab/issue_templates/Default.md

@@ -0,0 +1,26 @@
+### pre-requisites
+
+<!--
+
+if you ignore the pre-requisites and the template the issue might be closed.
+issues that have the `provide info` label need user input or they will be quarantined after a week,
+and closed after ten days.
+
+suggestions are appreciated in the form of merge requests or alternatively well documented issues.
+
+make sure you are in the right repository:
+https://librewolf.net/docs/faq/#i-have-a-problem-where-do-i-open-a-new-issue
+
+-->
+
+- [ ] I've read and followed the [contribution guidelines](https://librewolf.net/docs/faq/#do-you-have-any-contribution-guidelines);
+- [ ] I've reproduced the issue in a new LibreWolf profile;
+- [ ] I've checked that the problem is not present in a stock Firefox profile;
+
+### details
+- browser version & OS:
+- steps to reproduce:
+- expected result:
+- actual result:
+- console errors and warnings:
+- others:

README.md

@@ -1,3 +1,20 @@
 # LibreWolf settings
 
-Heavily borrowed from [ghacks-user.js](https://github.com/ghacksuserjs/ghacks-user.js) and [pyllyukko/user.js](https://github.com/pyllyukko/user.js). Not affiliated with either.
+LibreWolf settings for all platforms.
+
+we encourage users to find **their own setup** and to use our default configuration as something to build on top of. this is now easier thanks to the [overrides](https://librewolf.net/docs/faq/#where-do-i-find-my-librewolfoverridescfg).
+
+## Useful links
+- [website](https://librewolf.net/): read the docs.
+- [faq](https://librewolf.net/docs/faq/): for any question you might have, and to help you creating your own pref file.
+- [all releases](https://gitlab.com/librewolf-community/browser).
+- [issue tracker](https://gitlab.com/librewolf-community/settings/-/issues).
+  - if you ignore the pre-requisites and the template the issues might be closed.
+  - issues that have the `provide info` label need user input or they will be quarantined after a week, and closed after ten days.
+- find us on [gitter](https://gitter.im/librewolf-community/librewolf) / [matrix](https://matrix.to/#/#librewolf:matrix.org) / [reddit](https://www.reddit.com/r/LibreWolf/) / [lemmy](https://lemmy.ml/c/librewolf).
+
+## Notes and thanks
+- this repository benefits from the knowledge and research provided by [arkenfox](https://github.com/arkenfox), so special thanks to the project.
+we do not use arkenfox's `user.js` but we try to keep up with it, and we also consider it a great resource for users who want to find their own setup.
+- many thanks to the firefox team and to the people working on [bugzilla](https://bugzilla.mozilla.org/home);
+- thanks to the whole LibreWolf community and to all the contributors of this repo.

docs/Changelog.md

@@ -0,0 +1,996 @@
+This changelog will be used from now on to document changes in a precise manner, with a list of changes for each setting version.
+Setting versions are documented using the pref `librewolf.cfg.version`, available in about:config.
+
+# 7.7
+
+**base librewolf version**: 115.x
+
+**References**:
+- https://gitlab.com/librewolf-community/settings/-/issues/262
+
+#### Added preferences
+
+```
+defaultPref("browser.urlbar.suggest.weather", false);
+defaultPref("extensions.quarantinedDomains.enabled", false);
+```
+
+# 7.6
+
+**base librewolf version**: 111.x - 114.x
+
+**References**:
+- the prefs added in the `LOGGING` section are off by default in the official Mozilla builds, so we are just acting like Firefox here;
+
+#### Removed preferences
+
+```
+defaultPref("browser.contentblocking.report.monitor.enabled", false); // default
+```
+
+#### Changed preferences
+
+```
+defaultPref("app.support.baseURL", "https://support.librewolf.net/");
+```
+
+#### Added preferences
+
+```
+pref("browser.dom.window.dump.enabled", false);
+pref("devtools.console.stdout.chrome", false);
+```
+
+# 7.5
+
+**target commit**: from 71a20c6fff90e7fbcb216f1d644ca1b40b32b8e2 to 6fe09c63cbfb83ebfb6a17f5e624248f2501b97e
+
+**base librewolf version**: 109.x and 110.x
+
+**References**:
+
+- thumbnails are only used in privileged code to populate New Tab Page and Ctrl+Tab previews.
+- the startup blank window doesn't break anything and the perceived performance boost is irrelevant on modern hardware.
+- reset popup events to default as it's mostly a non-issue.
+
+#### Removed preferences
+
+```
+defaultPref("browser.pagethumbnails.capturing_disabled", true);
+defaultPref("browser.startup.blankWindow", false);
+defaultPref("dom.popup_allowed_events", "click dblclick mousedown pointerdown");
+```
+
+# 7.4
+
+**target commit**: b0d277a77b36e3bcc5c0f7a1b0eca7a54a388d9d
+
+**base librewolf version**: 108.x
+
+**References**:
+
+- win7/8.x don't need this pref thanks to Firefox's own implementation of mDNS.
+
+#### Removed preferences
+
+```
+defaultPref("media.peerconnection.ice.no_host", true); // don't use any private IPs for ICE candidate
+```
+
+# 7.3
+
+**target commit**: from 9395f5c0e061250acbcbcb523d2270d57136d411 to 240e184b785e4e46c09ca6881111f7c2d4d31a3f
+
+**base librewolf version**: 107.x
+
+**References**:
+
+- mixed content is already covered by HTTPS-only-mode;
+- [dom.disable_beforeunload is no longer necessary](https://github.com/arkenfox/user.js/issues/1575);
+- [beacon API is fine](https://gitlab.com/librewolf-community/settings/-/issues/229);
+- [Firefox Vew pref was removed in previous commit](https://gitlab.com/librewolf-community/settings/-/commit/9395f5c0e061250acbcbcb523d2270d57136d411), adding reference to the changelog;
+
+#### Removed preferences
+
+```
+defaultPref("security.mixed_content.block_display_content", true); // block insecure passive content
+defaultPref("dom.disable_beforeunload", true);
+defaultPref("dom.disable_open_during_load", true); // default
+defaultPref("browser.tabs.firefox-view", false);
+pref("beacon.enabled", false);
+```
+
+# 7.2
+
+**target commit**: from 7211e954b82da3cde5c5cf2d613fe1f84288e635 to eb51b4785e5b67fc388bcbd06a8324d5a54f5850
+
+**base librewolf version**: 106.x
+
+**References**:
+
+- hide Firefox View til reviewed, see https://gitlab.com/librewolf-community/browser/source/-/issues/78;
+- hotfix for syntax error;
+
+#### Removed preferences
+
+```
+defaultPref("browser.ssl_override_behavior", 1); // deprecated
+```
+
+#### Added preferences
+
+```
+defaultPref("browser.tabs.firefox-view", false);
+```
+
+# 7.1
+
+**target commit**: 33e1ec1cb97d1f16a696057fe9007ae8391def6b
+
+**base librewolf version**: 106.x
+
+**References**:
+
+- change most `lockPref()` to `pref()` or `defaultPref()`, see https://gitlab.com/librewolf-community/settings/-/issues/204;
+- offline autodetection is mature enough and it is used by some APIs;
+- if someone wants to get the mozilla extension for USB debugging, that's fine.
+
+#### Removed preferences
+```
+defaultPref("network.manage-offline-status", false);
+defaultPref("devtools.remote.adb.extensionURL", "");
+defaultPref("devtools.chrome.enabled", false); // default
+```
+
+# 7.0
+
+**target commit**: from ed9334d258d20830deafe1a02b87b0cea678236d to 1bdfd333e31c3d119c0bf5506a56b2026ead3583
+
+**base librewolf version**: 105.x
+
+**References**:
+
+- [enable APS](https://github.com/arkenfox/user.js/issues/1530#issuecomment-1242850653);
+- trim unnecessary or default NTP prefs, then tidy existing ones;
+- stick to default session restore interval for writes;
+- remove a bunch of default prefs that have been that way for the longest;
+- offer accessibility by default;
+- remove hardcore svg security pref since CVEs are very old and irrelevant, see [this discussion](https://github.com/arkenfox/user.js/issues/1529);
+- improve [autoplay behavior](https://gitlab.com/librewolf-community/settings/-/issues/213).
+
+#### Added preferences
+```
+defaultPref("privacy.partition.always_partition_third_party_non_cookie_storage", true);
+defaultPref("privacy.partition.always_partition_third_party_non_cookie_storage.exempt_sessionstorage", false);
+```
+
+#### Removed preferences
+```
+defaultPref("browser.newtab.preload", false);
+lockPref("browser.newtabpage.activity-stream.feeds.discoverystreamfeed", false);
+lockPref("browser.newtabpage.activity-stream.discoverystream.enabled", false);
+lockPref("browser.newtabpage.activity-stream.feeds.snippets", false); // default
+lockPref("browser.newtabpage.activity-stream.feeds.system.topstories", false);
+defaultPref("browser.sessionstore.interval", 60000); // increase time between session saves
+defaultPref("network.http.windows-sso.enabled", false); // default
+defaultPref("privacy.partition.serviceWorkers", true); // default v105+
+defaultPref("accessibility.force_disabled", 1); // block accessibility services
+lockPref("toolkit.telemetry.shutdownPingSender.enabledFirstSession", false); // default
+lockPref("toolkit.telemetry.reportingpolicy.firstRun", false); // default
+defaultPref("network.http.referer.XOriginPolicy", 0); // default
+lockPref("browser.safebrowsing.passwords.enabled", false); // default
+lockPref("browser.safebrowsing.provider.google4.dataSharing.enabled", false); // default
+defaultPref("gfx.font_rendering.opentype_svg.enabled", false); // disale svg opentype fonts
+defaultPref("media.autoplay.blocking_policy", 2);
+```
+
+# 6.9
+
+**target commit**: 49a705f835e1438372fbdf1a779fbc5846212a68
+
+**base librewolf version**: 104.x
+
+**References**:
+- autofill prefs have been replaced in a migration, we now only keep the bare minimum;
+
+#### Removed preferences
+```
+defaultPref("browser.fixup.alternate.enabled", false); // default v104+
+defaultPref("browser.urlbar.dnsResolveSingleWordsAfterSearch", 0); // default v104+
+defaultPref("extensions.formautofill.available", "off"); // deprecated
+defaultPref("extensions.formautofill.creditCards.available", false); // deprecated
+defaultPref("extensions.formautofill.heuristics.enabled", false);
+```
+
+# 6.8
+
+**target commit**: 381cbed42c98d2376faf7e4ec449623bb99b0be1
+
+**base librewolf version**: 103.x
+
+**References**:
+- [geoclue](https://github.com/arkenfox/user.js/issues/1504);
+
+#### Added preferences
+```
+defaultPref("geo.provider.use_geoclue", false); // [LINUX]
+```
+
+#### Removed preferences
+```
+defaultPref("network.cookie.cookieBehavior", 5); // default
+```
+
+# 6.7
+
+**target commit**: from e505ddbf0242aec1017a565a74ff9ff5aa458fe5 to 02212c3f44e7aa68b22c8febd9158580d7e4b74f
+
+**base librewolf version**: 103.x
+
+**References**:
+- the cookie lifetime policy pref has been deprecated, see https://gitlab.com/librewolf-community/settings/-/issues/199;
+- stop disabling IPv6, see https://gitlab.com/librewolf-community/settings/-/issues/96;
+- discussion about domain guessing is available at https://gitlab.com/librewolf-community/settings/-/issues/197.
+
+#### Removed preferences
+```
+defaultPref("network.cookie.lifetimePolicy", 2); // deprecated
+defaultPref("network.dns.disableIPv6", true);
+```
+
+#### Unlocked preferences
+```
+defaultPref("browser.fixup.alternate.enabled", false); // default v104+
+```
+
+# 6.6
+
+**target commit**: from bc16f4f14185e8791d819a69b7d798082ace67f8 to c983fcc8bea8fab31265bc345217b59ce5128de2
+
+**base librewolf version**: 102.x
+
+**References**:
+- sha1 certificates: https://bugzilla.mozilla.org/1767489 and https://bugzilla.mozilla.org/1766687.
+- trimming only applies to http websites so it's very minimal.
+- crlite: https://bugzilla.mozilla.org/show_bug.cgi?id=1773371, we can stick to default 3 till v103, then the value will be changed to 2 which is the best possible if mozilla feels like it's ready usability wise.
+- add more entries to the native query stripping list, to [get in line with brave](https://github.com/brave/brave-core/blob/master/browser/net/brave_site_hacks_network_delegate_helper.cc).
+- `services.settings.server` can now be used as a pref, see: https://gitlab.com/librewolf-community/browser/source/-/merge_requests/37
+
+#### Added preferences
+```
+defaultPref("services.settings.server", "https://%.invalid") // set the remote settings URL (REMOTE_SETTINGS_SERVER_URL in the code)
+```
+
+#### Removed preferences
+```
+defaultPref("security.pki.sha1_enforcement_level", 1); // default
+defaultPref("browser.urlbar.trimURLs", false);
+defaultPref("security.pki.crlite_mode", 3); // default
+defaultPref("security.OCSP.enabled", 1); // default
+```
+
+#### Changed preferences
+```
+defaultPref("privacy.query_stripping.strip_list", "__hsfp __hssc __hstc __s _hsenc _openstat dclid fbclid gbraid gclid hsCtaTracking igshid mc_eid ml_subscriber ml_subscriber_hash msclkid oft_c oft_ck oft_d oft_id oft_ids oft_k oft_lk oft_sk oly_anon_id oly_enc_id rb_clickid s_cid twclid vero_conv vero_id wbraid wickedid yclid");
+```
+
+# 6.5
+
+**target commit**: b10dcbdd84e63787c4f2f6d34d41724b437df5be
+
+**base librewolf version**: 101.x
+
+**References**:
+- query stripping is now [part of strict mode](https://hg.mozilla.org/mozilla-central/rev/9d9425eb1ded).
+- session cookie prefs are useless given that we sanitize on close, [more details at arkenfox](https://github.com/arkenfox/user.js/pull/1443/commits/3207478033fefc19e933dab4eef6445125341ec4).
+- fission has been a default for the longest now.
+
+#### Removed preferences
+```
+defaultPref("privacy.query_stripping.enabled", true);
+defaultPref("network.cookie.thirdparty.sessionOnly", true);
+defaultPref("network.cookie.thirdparty.nonsecureSessionOnly", true);
+defaultPref("fission.autostart", true);
+```
+
+# 6.4
+
+**target commit**: eea09ca07333dc166213fa9c873e4916d979e97f
+
+**base librewolf version**: 100.x
+
+**References**:
+- hide Firefox Focus promo in private tabs.
+- double checking revoked certificates with both CRL and OCSP allows to detect false positives and it is also [the default](https://hg.mozilla.org/mozilla-central/rev/a6ba7b4ee17).
+- [clearOnShutdown prefs now respect exceptions](https://github.com/arkenfox/user.js/issues/1441) so we can tick all boxes in that UI as well.
+
+#### Added preferences
+```
+lockPref("browser.promo.focus.enabled", false);
+defaultPref("privacy.clearOnShutdown.offlineApps", true);
+```
+
+#### Changed preferences
+```
+defaultPref("security.pki.crlite_mode", 3); // prev 2
+```
+
+#### Removed preferences
+```
+defaultPref("privacy.clearOnShutdown.cookies", false);
+```
+
+# 6.3
+
+**target commit**: e84fc950bfd7c3542cb974e9d545b9b8e18c010d
+
+**base librewolf version**: 99.x
+
+**References**:
+- Fixes the uBlock Origin installation URL
+
+# 6.2
+
+**target commit**: ac95f5195ed82ca6bcec48acf9d1241e3c683b25
+
+**base librewolf version**: 99.x
+
+**References**:
+- vpn pref was set to the wrong value by mistake.
+- offscreencanvas cannot be read back using JS, plus it is being tracked upstream. see [this comment](https://github.com/arkenfox/user.js/issues/1418#issuecomment-1093390017), which solves doubts from 6.1 changelog.
+
+#### Removed preferences
+```
+defaultPref("gfx.offscreencanvas.domain-enabled", false);
+```
+
+#### Changed preferences
+```
+lockPref("browser.vpn_promo.enabled", false);
+```
+
+# 6.1
+
+**target commit**: 465257e5993893cd7896ef1533d37e245f206fb9
+
+**base librewolf version**: 99.x
+
+**References**:
+- csp pref has been deprecated.
+- quicksuggest prefs are redundant as it has a master switch. the master switch is now force applied on each restart of the browser.
+- do not whitelist offscreencanvas for now, we need to first check how it is tied to the "normal" canvas.
+
+**Notes**: using the vpn pref should allow us to get rid of one patch.
+
+#### Added preferences
+```
+lockPref("browser.vpn_promo.enabled", true);
+defaultPref("gfx.offscreencanvas.domain-enabled", false);
+```
+
+#### Removed preferences
+```
+lockPref("security.csp.enable", true); // enforce csp, default
+lockPref("browser.urlbar.suggest.quicksuggest.nonsponsored", false);
+lockPref("browser.urlbar.suggest.quicksuggest.sponsored", false);
+lockPref("browser.urlbar.quicksuggest.dataCollection.enabled", false); // default
+lockPref("browser.urlbar.quicksuggest.scenario", "history");
+```
+
+#### Changed preferences
+```
+pref("browser.urlbar.quicksuggest.enabled", false);
+```
+
+# 6.0
+
+**target commit**: 0822d491d2b377b5cd7f0429cee5aa916538fa50
+
+**base librewolf version**: 98.x
+
+**References**:
+- we are going to force history to custom mode and hide the UI for always on PB mode, a bunch of pointers are collected in [this MR](https://gitlab.com/librewolf-community/browser/source/-/merge_requests/21).
+- [handlers prefs are deprecated](https://bugzilla.mozilla.org/show_bug.cgi?id=1733497).
+- for OCSP see [this issue](https://gitlab.com/librewolf-community/settings/-/issues/150).
+
+#### Added preferences
+```
+pref("privacy.history.custom", true);
+pref("browser.privatebrowsing.autostart", false);
+defaultPref("browser.preferences.moreFromMozilla", false); // hide about:preferences#moreFromMozilla
+defaultPref("security.OCSP.require", true); // set to hard-fail
+```
+
+#### Removed preferences
+```
+/** [SECTION] HANDLERS
+ * remove the default handlers for several tipe of files and services.
+ */
+lockPref("gecko.handlerService.schemes.mailto.0.uriTemplate", "");
+lockPref("gecko.handlerService.schemes.mailto.0.name", "");
+lockPref("gecko.handlerService.schemes.mailto.1.uriTemplate", "");
+lockPref("gecko.handlerService.schemes.mailto.1.name", "");
+lockPref("gecko.handlerService.schemes.irc.0.uriTemplate", "");
+lockPref("gecko.handlerService.schemes.irc.0.name", "");
+lockPref("gecko.handlerService.schemes.ircs.0.uriTemplate", "");
+lockPref("gecko.handlerService.schemes.ircs.0.name", "");
+```
+
+#### Changed preferences
+```
+defaultPref("security.OCSP.enabled", 1);
+```
+
+# 5.5
+
+**target commit**: 0fc1ff53c99379d9d4625de65ea51287d57a0a3a
+
+**base librewolf version**: 97.x
+
+**References**:
+- showing the insecure connection text is redundant as there's already the lock UI for http websites.
+- `browser.places.speculativeConnect.enabled` controls speculative connections for bookmarks and will be fully effective only once we hit v98.
+- we will no longer disable history but we'll clear it on close. [reasoning](https://gitlab.com/librewolf-community/settings/-/issues/135).
+- [download annoyances](https://gitlab.com/librewolf-community/settings/-/issues/144).
+
+**Notes**: the settings have been re-organized and they should also be documented a bit better now.
+
+#### Removed preferences
+```
+defaultPref("security.insecure_connection_text.enabled", true); // display http websites as insecure in the ui
+defaultPref("places.history.enabled", true);
+```
+
+#### Added preferences
+```
+defaultPref("browser.places.speculativeConnect.enabled", false);
+defaultPref("browser.download.alwaysOpenPanel", false); // do not expand toolbar menu for every download, we already have enough interaction
+```
+
+#### Changed preferences
+```
+pref("security.tls.version.enable-deprecated", false); // make TLS downgrades session only by enforcing it with pref()
+```
+
+## 5.4
+
+**target commit**:
+
+**base librewolf version**: 96.x
+
+**References**:
+- [serve custom uBO assets](https://gitlab.com/librewolf-community/settings/-/issues/134)
+
+
+#### Added preferences
+```
+defaultPref("librewolf.uBO.assetsBootstrapLocation", "https://gitlab.com/librewolf-community/browser/source/-/raw/main/assets/uBOAssets.json");
+```
+
+#### Changed preferences
+```
+defaultPref("privacy.query_stripping.strip_list", "__hsfp __hssc __hstc __s _hsenc _openstat dclid fbclid gbraid gclid hsCtaTracking igshid mc_eid ml_subscriber ml_subscriber_hash msclkid oly_anon_id oly_enc_id rb_clickid s_cid twclid vero_conv vero_id wbraid wickedid yclid");
+```
+
+## 5.3
+
+**target commit**: c256656f377d3c15a8c7537c65f45dc802904df7
+
+**base librewolf version**: 96.x
+
+**References**:
+- [disable sync differently](https://gitlab.com/librewolf-community/settings/-/issues/132);
+- [remove tracking query params](https://gitlab.com/librewolf-community/settings/-/issues/128);
+
+
+#### Added preferences
+```
+defaultPref("identity.fxaccounts.enabled", false); // sync and firefox account
+defaultPref("privacy.query_stripping.enabled", true);
+defaultPref("privacy.query_stripping.strip_list", "__hsfp __hssc __hstc __s _hsenc _openstat dclid fbclid gclid hsCtaTracking igshid mc_eid ml_subscriber ml_subscriber_hash msclkid oly_anon_id oly_enc_id rb_clickid s_cid vero_conv vero_id wickedid yclid");
+```
+
+## 5.2
+
+**target commit**: f3b4414d30953d1ea3eb64a9d75c62c242ee991b
+
+**base librewolf version**: 96.x
+
+**References**:
+- [fix console issue](https://gitlab.com/librewolf-community/settings/-/issues/129)
+
+#### Added preferences
+```
+defaultPref("devtools.selfxss.count", 0);
+```
+
+## 5.1
+
+**target commit**: f28b218e97acec8935c0c868863a9f4b6a061a39 and 60221803c46bf5cf2cbc5d77035927f9fd249e6a
+
+**base librewolf version**: 96.x
+
+**References**:
+- [fix language issue](https://gitlab.com/librewolf-community/settings/-/issues/125)
+
+#### Added preferences
+```
+pref("intl.accept_languages", "en-US, en");
+```
+
+#### Removed preferences
+```
+defaultPref("intl.locale.requested", "en-US");
+defaultPref("privacy.spoof_english", 2);
+defaultPref("browser.search.region", "US"); // set a default search region for all users
+defaultPref("extensions.getAddons.langpacks.url", ""); // prevent users from adding lang packs, which would cause leaks
+```
+
+#### Changed preferences
+```
+pref("javascript.use_us_english_locale", true);
+```
+
+## 5.0
+
+**target commit**: from 8a98176400e2e44ae1138ea8bdc1991250f75b8e to b219a75b4a0d72b519ce386406f45acead940c9a
+
+**base librewolf version**: 96.x
+
+**References**:
+- [extension auto-updates](https://gitlab.com/librewolf-community/settings/-/issues/116)
+- [remove all the OS specific prefs](https://gitlab.com/librewolf-community/settings/-/issues/124)
+- [service workers and push](https://gitlab.com/librewolf-community/settings/-/issues/115)
+
+#### Added preferences
+```
+defaultPref("privacy.partition.serviceWorkers", true); // isolate service workers
+```
+
+#### Removed preferences
+```
+defaultPref("extensions.update.enabled", false); // disable automatic checks for extension updates
+defaultPref("extensions.update.autoUpdateDefault", false); // disable automatic installs of extension updates
+defaultPref("browser.tabs.loadBookmarksInTabs", true);
+defaultPref("clipboard.autocopy", false);
+defaultPref("dom.popup_maximum", 4);
+defaultPref("general.autoScroll", false);
+defaultPref("devtools.selfxss.count", 0); // was set because of https://gitlab.com/librewolf-community/browser/linux/-/issues/80
+defaultPref("dom.push.enabled", false); // disable push notifications
+defaultPref("dom.push.serverURL", ""); // default "wss://push.services.mozilla.com/"
+defaultPref("dom.serviceWorkers.enabled", false); // disable service workers, must enable for push notifications
+```
+
+## 4.0
+
+**target commit**: 9003f029f8fe087cde5bb081d51ab82340948874
+
+**base librewolf version**: 95.x
+
+**References**:
+- [review webrtc](https://gitlab.com/librewolf-community/settings/-/issues/108).
+- [stop disabling geo api](https://gitlab.com/librewolf-community/settings/-/issues/102).
+- [deprecate RFP dark mode](https://gitlab.com/librewolf-community/browser/common/-/issues/56).
+- `offlineApps` change in 3.1 did not respect exceptions, so revert it.
+- uncomment prefs to enable CRL without OCSP fallback, although they will fully work only when [this issue is closed](https://gitlab.com/librewolf-community/browser/common/-/issues/57).
+- we decided to force a larger new window size by default, to improve usability for RFP users while still keeping a rounded value. see [this comment](https://gitlab.com/librewolf-community/settings/-/issues/104#note_752186737).
+
+#### Added preferences
+```
+defaultPref("privacy.window.maxInnerWidth", 1600);
+defaultPref("privacy.window.maxInnerHeight", 900);
+```
+
+#### Removed preferences
+```
+defaultPref("media.peerconnection.enabled", false);
+lockPref("privacy.override_rfp_for_color_scheme", false);
+defaultPref("geo.enabled", false);
+defaultPref("permissions.default.geo", 2);
+defaultPref("privacy.clearOnShutdown.offlineApps", true);
+defaultPref("privacy.cpd.offlineApps", true);
+```
+
+#### Changed preferences
+```
+defaultPref("security.remote_settings.crlite_filters.enabled", true);
+defaultPref("security.pki.crlite_mode", 2);
+```
+
+## 3.2
+
+**target commit**: 19e59813ed483de7ffc8a219da96eb18a942eb01
+
+**base librewolf version**: 94.x
+
+**References**:
+- block the new firefox suggests feature in full.
+- enforce a sane value for manual sanitizing.
+
+**Notes**: the suggest prefs might be overkill, we should try to trim to the bare minimum in the next release.
+
+#### Added preferences
+```
+lockPref("browser.urlbar.quicksuggest.enabled", false); // disable suggest and hide its ui
+lockPref("browser.urlbar.suggest.quicksuggest.nonsponsored", false); // disable suggestions from firefox
+lockPref("browser.urlbar.suggest.quicksuggest.sponsored", false); // disable sponsored suggestions
+lockPref("browser.urlbar.quicksuggest.dataCollection.enabled", false); // default
+defaultPref("privacy.sanitize.timeSpan", 0);
+```
+#### Changed preferences
+```
+lockPref("browser.urlbar.quicksuggest.scenario", "history"); // prevent opt-in, doesn't work alone
+```
+
+## 3.1
+
+**target commit**: 6844d4ad1c9ad8bb3ffdc29e0a607c21c0559da4 and 67e6a00b719ecd52782a724cd09a9f08fa4577c0
+
+**base librewolf version**: 94.x
+
+**References**:
+- the added prefs are all defense in depth.
+- `drawInTitlebar` was causing errors for some users, the bug was reproduced. Linux users might experience a different toolbar behavior because of this change.
+- the default value for scopes seems like a better choice than changing it.
+- `offlineApps` can be safely cleared without using logins, in fact it was most likely cleared by other sanitazion techniques regardless.
+
+**Notes**: please notify users about the new website, thanks to @maltejur for helping with the migration.
+
+#### Added preferences
+```
+defaultPref("webchannel.allowObject.urlWhitelist", ""); // remove webchannel whitelist
+lockPref("toolkit.telemetry.coverage.opt-out", true); // hidden
+defaultPref("privacy.cpd.offlineApps", true); // for consistency with clearOnShutdown prefs
+```
+
+#### Removed preferences
+```
+defaultPref("extensions.autoDisableScopes", 11); // bring back to default
+defaultPref("browser.tabs.drawInTitlebar", true); // bring back to default
+```
+
+#### Changed preferences
+```
+defaultPref("privacy.clearOnShutdown.offlineApps", true); // can be cleared
+defaultPref("app.support.baseURL", "https://librewolf.net/docs/faq/#");
+defaultPref("browser.search.searchEnginesURL", "https://librewolf.net/docs/faq/#how-do-i-add-a-search-engine");
+defaultPref("browser.geolocation.warning.infoURL", "https://librewolf.net/docs/faq/#how-do-i-enable-location-aware-browsing");
+defaultPref("app.feedback.baseURL", "https://librewolf.net/#questions");
+```
+
+## 3.0
+
+**target commit**: f0a2d5d70657cc87348282d6faaf72edff8bf304 and 4e0895a299ec99066f119d8ce1a2923fc91aa465
+
+**base librewolf version**: 94.x
+
+**References**:
+- as reported in #95 and discussed [here](https://gitlab.com/librewolf-community/browser/linux/-/issues/246) we are re-enabling TP by default, setting it to strict.
+- the sponsored shortcuts in about:preferences#home were already locked, now they are properly hidden.
+- enable fission as it is being [rolled out to stable](https://bugzilla.mozilla.org/show_bug.cgi?id=1732206).
+
+**Notes**: all the removed preferences were either related to disabling TP, or unecessary when using strict mode. as a result of this trimming the tracking protection section of the .cfg file doesn't need to exist anymore.
+
+#### Added preferences
+```
+defaultPref("browser.topsites.useRemoteSetting", false); // hide sponsored shortcuts button from about:preferences#home
+defaultPref("privacy.resistFingerprinting.letterboxing", false); // expose hidden letterboxing pref, but do not enable by default
+defaultPref("fission.autostart", true); // enable fission by default
+```
+
+#### Removed preferences
+```
+lockPref("privacy.trackingprotection.enabled", false);
+lockPref("privacy.trackingprotection.pbmode.enabled", false);
+lockPref("privacy.trackingprotection.annotate_channels", false);
+defaultPref("browser.safebrowsing.provider.mozilla.updateURL", "");
+defaultPref("browser.safebrowsing.provider.mozilla.gethashURL", "");
+defaultPref("privacy.trackingprotection.cryptomining.enabled", false);
+defaultPref("privacy.trackingprotection.fingerprinting.enabled", false);
+defaultPref("browser.contentblocking.cryptomining.preferences.ui.enabled", false);
+defaultPref("browser.contentblocking.fingerprinting.preferences.ui.enabled", false);
+```
+
+#### Changed preferences
+```
+pref("browser.contentblocking.category", "strict");
+```
+
+## 2.0
+
+**target commit**: from 6451faa167568313e5ed065fcb3ee2bb76132063 to b17a1ed657e22ac61b4399699223d36724b842e7
+
+**base librewolf version**: 92.x
+
+**References**:
+- [web content can no longer access the battery api](https://bugzilla.mozilla.org/show_bug.cgi?id=1313580).
+- http alternative services are [isolated by network partitioning and FPI](https://github.com/arkenfox/user.js/blob/269cf965bd51022ca69823f8f66a8e402280d856/user.js#L1350) and they are unchanged even in tor browser. from a security standpoint, the alternate service will need to provide the certificate of the origin in order to be considered trusthworthy.
+- let the user decide what to manually clear, including the timespan.
+- drm prefs have been trimmed as a quality of life improvement. the end result is the same, with less hassle for users who want to access drm-protected content.
+- DNT header has been proved to not work and it is used to fingerprint.
+- VR access is behind a prompt and, despite being unlikely, it could be fingerprinted. with all this on the table it's just not worth and overkill.
+- vibrator API is so nieche that even tor does not change it. best to trim where possible.
+- `extensions.getAddons.link.url"` is showed only when no extension is installed and it's not a bad suggestion to get addons from addons.mozilla.org so we can remove it.
+- `browser.safebrowsing.downloads.remote.*` are all controlled by the prefs already in the .cfg, which is the same approach taken by tor browser.
+- graphite [is no longer as concerning](https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=firefox+graphite) and blocking it is likely fingerprintable.
+- the pdf prefs and the bookmark backup are not really relevant to librewolf.
+- as reported [here](https://bugzilla.mozilla.org/show_bug.cgi?id=1606624) the shared memory pref is no longer needed, so we can switch it back to default.
+- new tab page section now includes a new design and no longer an empty page. all the unnecessary preferences have been removed and users can also customize as the most essential ones have been unlocked.
+- UI bug in tracking protection section is fixed.
+- a bunch of dead links are fixed.
+- for screensharing see [testing provided at this link](https://github.com/arkenfox/user.js/issues/1245)
+- disable new firefox suggests feature
+
+**Notes**
+Recent changes in the category `MISC > set librewolf support and releases urls` require to create a couple header for the landing page.
+
+#### Removed preferences
+```
+defaultPref("general.warnOnAboutConfig", false); // deprecated
+defaultPref("dom.battery.enabled", false);
+lockPref("network.http.altsvc.enabled", false);
+lockPref("network.http.altsvc.oe", false);
+lockPref("signon.storeWhenAutocompleteOff", false); // we do not suggest lockwise in the first place
+defaultPref("signon.management.page.breach-alerts.enabled", false); // no harm for lockwise users
+defaultPref("signon.management.page.breachAlertUrl", ""); // no harm for lockwise users
+defaultPref("privacy.history.custom", true); // redundant
+defaultPref("privacy.cpd.cookies", false);
+defaultPref("privacy.cpd.offlineApps", false); // default
+defaultPref("privacy.sanitize.timeSpan", 0);
+defaultPref("media.gmp-widevinecdm.visible", false);
+defaultPref("media.gmp-widevinecdm.enabled", false);
+defaultPref("privacy.donottrackheader.enabled", true);
+defaultPref("dom.vr.enabled", false);
+defaultPref("dom.vibrator.enabled", false);
+defaultPref("dom.push.connection.enabled", false); // redundant
+defaultPref("dom.security.https_only_mode_pbm", true); // redundant
+defaultPref("security.tls.version.fallback-limit", 3); // default is for, no need to enforce further
+lockPref("extensions.webextensions.identity.redirectDomain", ""); // outdated and unchanged even in tor
+defaultPref("extensions.getAddons.link.url", ""); // https://addons.mozilla.org/%LOCALE%/firefox/
+defaultPref("extensions.getAddons.get.url", ""); // redundant
+lockPref("extensions.getAddons.discovery.api_url", ""); // redundant
+lockPref("webextensions.storage.sync.serverURL", ""); // sync not supported
+lockPref("extensions.webservice.discoverURL", ""); // deprecated
+defaultPref("xpinstall.signatures.devInfoURL", ""); // link to wiki page
+lockPref("app.normandy.user_id", ""); // redundant
+lockPref("app.normandy.shieldLearnMoreUrl", ""); // redundant
+lockPref("security.mixed_content.block_active_content", true); // default
+defaultPref("security.insecure_connection_text.pbmode.enabled", true); // redundant
+lockPref("browser.safebrowsing.downloads.remote.block_dangerous", false);
+lockPref("browser.safebrowsing.downloads.remote.block_dangerous_host", false);
+lockPref("gfx.font_rendering.graphite.enabled", false); // consider removing
+defaultPref("pdfjs.previousHandler.alwaysAskBeforeHandling", true);
+defaultPref("pdfjs.enabledCache.state", false);
+lockPref("remote.enabled", false); // removed in FF90
+lockPref("browser.shell.didSkipDefaultBrowserCheckOnFirstRun", true); // redundant
+defaultPref("browser.bookmarks.max_backups", 2);
+defaultPref("devtools.performance.recording.ui-base-url", "http://localhost:55555"); // unharmful
+defaultPref("devtools.devices.url", ""); // unharmful
+lockPref("media.decoder-doctor.new-issue-endpoint", ""); // redundant
+lockPref("identity.sync.tokenserver.uri", ""); // redundant
+defaultPref("accessibility.support.url", ""); // redundant
+lockPref("browser.dictionaries.download.url", ""); // dictionaries are hidden already
+lockPref("browser.uitour.themeOrigin", ""); // redundant
+lockPref("toolkit.datacollection.infoURL", ""); // redundant
+lockPref("identity.mobilepromo.android", ""); // redundant
+lockPref("identity.mobilepromo.ios", ""); // redundant
+defaultPref("identity.sendtabpromo.url", ""); // redundant
+lockPref("datareporting.healthreport.infoURL", ""); // redundant
+lockPref("browser.chrome.errorReporter.infoURL", ""); // redundant
+lockPref("datareporting.policy.firstRunURL", ""); // redundant
+lockPref("javascript.options.shared_memory", false);
+lockPref("app.update.staging.enabled", false); // not relevant
+lockPref("app.update.lastUpdateTime.telemetry_modules_ping", 0); // redundant
+lockPref("network.connectivity-service.IPv6.url", "http://0.0.0.0"); // redundant
+lockPref("network.connectivity-service.IPv4.url", "http://0.0.0.0"); // redundant
+lockPref("network.connectivity-service.DNSv6.domain", ""); // redundant
+lockPref("network.connectivity-service.DNSv4.domain", ""); // redundant
+lockPref("browser.crashReports.unsubmittedCheck.enabled", false); // default
+lockPref("browser.crashReports.unsubmittedCheck.autoSubmit2", false); // default
+lockPref("browser.newtabpage.activity-stream.feeds.newtabinit", false);
+lockPref("browser.newtabpage.activity-stream.feeds.places", false);
+lockPref("browser.newtabpage.activity-stream.feeds.systemtick", false);
+lockPref("browser.newtabpage.activity-stream.feeds.system.topsites", false);
+lockPref("browser.newtabpage.activity-stream.asrouter.providers.messaging-experiments", "");
+lockPref("browser.newtabpage.activity-stream.asrouter.providers.message-groups", "");
+lockPref("browser.newtabpage.activity-stream.asrouter.providers.cfr-fxa", "");
+lockPref("browser.newtabpage.activity-stream.asrouter.providers.cfr", "");
+lockPref("browser.newtabpage.activity-stream.asrouter.providers.whats-new-panel", "{\"id\":\"whats-new-panel\",\"enabled\":false}");
+lockPref("browser.newtabpage.activity-stream.asrouter.devtoolsEnableds", true);
+lockPref("browser.newtabpage.activity-stream.telemetry.structuredIngestion.endpoint", "");
+lockPref("browser.newtabpage.activity-stream.improvesearch.topSiteSearchShortcuts", false);
+lockPref("browser.newtabpage.activity-stream.improvesearch.handoffToAwesomebar", false);
+lockPref("browser.newtabpage.activity-stream.improvesearch.topSiteSearchShortcuts.searchEngines", "");
+lockPref("browser.newtabpage.activity-stream.improvesearch.topSiteSearchShortcuts.havePinned", "");
+defaultPref("dom.push.userAgentID", ""); // push notifications are already disabled
+lockPref("services.settings.server", ""); // redundant with patches
+lockPref("webchannel.allowObject.urlWhitelist", ""); // deprecated
+defaultPref("media.getusermedia.browser.enabled", false);
+defaultPref("media.getusermedia.screensharing.enabled", false);
+defaultPref("media.getusermedia.audiocapture.enabled", false);
+defaultPref("dom.storage.next_gen", true); // default from v92.0
+```
+
+#### Added preferences
+```
+defaultPref("browser.download.useDownloadDir", false); // force user interaction on downloads, by always asking location
+// defaultPref("security.remote_settings.crlite_filters.enabled", true);
+// defaultPref("security.pki.crlite_mode", 2);
+pref("browser.urlbar.quicksuggest.scenario", ""); // disable firefox suggests and hide its UI
+```
+
+#### Commented preferences
+```
+// pref("network.trr.mode", 2); // previously uncommented defaultPref with value 5
+// pref("network.trr.uri", "https://dns.quad9.net/dns-query"); // previously uncommented defaultPref with empty value
+```
+
+#### Changed preferences
+previously empty, set to proper value
+```
+defaultPref("network.trr.confirmationNS", "skip");
+defaultPref("browser.search.searchEnginesURL", "https://gitlab.com/librewolf-community/settings/-/wikis/support#search");
+defaultPref("browser.geolocation.warning.infoURL", "https://gitlab.com/librewolf-community/settings/-/wikis/support#location");
+defaultPref("app.feedback.baseURL", "https://gitlab.com/librewolf-community/settings/-/wikis/support");
+defaultPref("app.releaseNotesURL", "https://gitlab.com/librewolf-community/browser");
+defaultPref("app.releaseNotesURL.aboutDialog", "https://gitlab.com/librewolf-community/browser");
+```
+
+#### Unlocked preferences
+```
+defaultPref("signon.rememberSignons", false);
+defaultPref("signon.autofillForms", false);
+defaultPref("signon.formlessCapture.enabled", false);
+defaultPref("browser.urlbar.speculativeConnect.enabled", false);
+defaultPref("browser.contentblocking.report.lockwise.enabled", false);
+defaultPref("browser.contentblocking.report.monitor.enabled", false);
+defaultPref("network.dns.disablePrefetch", true);
+defaultPref("security.ssl.treat_unsafe_negotiation_as_broken",	true);
+defaultPref("browser.startup.blankWindow", false);
+defaultPref("extensions.htmlaboutaddons.recommendations.enabled", false);
+defaultPref("extensions.systemAddon.update.enabled", false);
+defaultPref("extensions.systemAddon.update.url", "");
+defaultPref("security.mixed_content.block_display_content", true);
+defaultPref("security.insecure_connection_text.enabled", true);
+defaultPref("gfx.font_rendering.opentype_svg.enabled", false);
+defaultPref("browser.shell.shortcutFavicons", false);
+defaultPref("network.gio.supported-protocols", "");
+defaultPref("network.IDN_show_punycode", true);
+defaultPref("browser.shell.checkDefaultBrowser", false);
+defaultPref("middlemouse.contentLoadURL", false);
+defaultPref("browser.pagethumbnails.capturing_disabled", true);
+defaultPref("browser.privatebrowsing.forceMediaMemoryCache", true);
+defaultPref("app.update.url.details", "https://gitlab.com/librewolf-community/browser");
+defaultPref("app.update.url.manual", "https://gitlab.com/librewolf-community/browser");
+defaultPref("network.protocol-handler.external.ms-windows-store", false);
+defaultPref("browser.newtab.preload", false);
+defaultPref("browser.newtabpage.activity-stream.section.highlights.includeDownloads", false);
+defaultPref("browser.newtabpage.activity-stream.section.highlights.includeVisited", false);
+defaultPref("browser.newtabpage.activity-stream.feeds.topsites", false);
+defaultPref("browser.safebrowsing.downloads.enabled", false);
+```
+
+## 1.6
+
+**target commit**: 192f51abe21e9aeb9b01d396079e9b8533cab7bb
+
+**base librewolf version**: 91.x
+
+**References**:
+- [reasoning on webgl2](https://github.com/arkenfox/user.js/commit/41c3c0ec26ef4392169fa1d04fd5783ac03bfc8e) from arkenfox's maintainer, basically disabling webgl is enough for those who don't need it. users who want it have one less pref to change.
+
+#### Removed preferences
+```
+defaultPref("dom.targetBlankNoOpener.enabled", true); // default since v79.0
+defaultPref("webgl.enable-webgl2", false);
+lockPref("browser.newtabpage.activity-stream.feeds.section.highlights", false); // default
+```
+
+## 1.5
+
+**target commit**: 23d1bff4f4ae3456df8e50e67f657ea6288eef29
+
+**base librewolf version**: 91.x
+
+**References**:
+- [comment](https://github.com/arkenfox/user.js/commit/3bb9fc713f141d794fc4adfb38d3fcf86c9307ab#commitcomment-53916786) from arkenfox's maintainer regarding tls version pref
+- [mozilla update service](https://support.mozilla.org/en-US/kb/enable-background-updates-firefox-windows)
+- extension firewall has been revisited
+
+#### Removed preferences
+```
+lockPref("security.dialog_enable_delay", 700); // default 1000, no need to enforce this
+```
+
+#### Added preferences
+```
+defaultPref("app.update.background.scheduling.enabled", false); // Win specific update service
+defaultPref("security.tls.version.enable-deprecated", false); // default but helps resetting the preference
+// defaultPref("extensions.webextensions.base-content-security-policy.v3", "default-src 'none'; script-src 'none'; object-src 'none';");
+```
+
+#### Changed preferences
+```
+// defaultPref("extensions.webextensions.base-content-security-policy", "default-src 'none'; script-src 'none'; object-src 'none';");
+```
+
+## 1.4
+**target commit**: 2e21db4c3018321a077d9af2ec44b29675c57adf
+
+**base librewolf version**: 90.x
+
+#### Removed preferences
+```
+lockPref("security.tls.version.enable-deprecated", false); // default
+```
+
+## 1.3
+**target commit**: 60e75e30c6018a5c909a2f00f40831ed3f1948a6
+
+**base librewolf version**: 90.x
+
+#### Added preferences
+```
+defaultPref("network.http.windows-sso.enabled", false);
+```
+
+#### Removed preferences
+```
+lockPref("browser.cache.offline.storage.enable", false); // pref does not exist anymore as it became default behavior
+```
+
+## 1.2
+**target commit**: 294724fae38ffa4ebcf6dfb0854787fb7022d1e6
+
+**base librewolf version**: 89.x
+
+**References**:
+- issue [#65](https://gitlab.com/librewolf-community/settings/-/issues/65) from settings
+- issue [#22](https://gitlab.com/librewolf-community/browser/common/-/issues/22) from common
+
+#### Removed preferences
+```
+defaultPref("dom.webaudio.enabled", false);
+defaultPref("media.navigator.enabled", false);
+```
+
+#### Changed preferences
+```
+defaultPref("app.support.baseURL", "https://gitlab.com/librewolf-community/settings/-/wikis/support#");
+```
+
+## 1.1
+**target commit**: cf0a2cc88acdbc51b138228353a0d7c9ea0db7c3
+
+**base librewolf version**: 89.x
+
+**References**:
+- issue [#54](https://gitlab.com/librewolf-community/settings/-/issues/54) from settings
+- merge request [#5](https://gitlab.com/librewolf-community/browser/common/-/merge_requests/5) from common
+
+#### Removed preferences
+```
+defaultPref("security.OCSP.require", false); // default value
+defaultPref("extensions.update.url", "");
+defaultPref("extensions.update.background.url", "");
+defaultPref("extensions.getAddons.search.browseURL", "");
+```
+
+#### Changed preferences
+```
+defaultPref("geo.provider.network.url", "https://location.services.mozilla.com/v1/geolocate?key=%MOZILLA_API_KEY%");
+```
+
+#### Added preferences
+```
+lockPref("privacy.override_rfp_for_color_scheme", false);
+```
+
+
+## 1.0
+**target commit**: 2b8dc4ac6d7fb6fdf8f172d04c27912098268257
+
+**base librewolf version**: 89.x
+
+This is the initial release from which we start tagging and versioning settings. For previous changes see
+[here](https://gitlab.com/librewolf-community/settings/-/blob/master/docs/changelog-legacy.md).

docs/changelog-legacy.md

@@ -0,0 +1,711 @@
+## Changelog
+This is a list of all the changes in librewolf prefs, in the transition from legacy up to the release of 89.0. After this all the changes will be documented in a better [changelog](./changelod.md) that includes a list of removed and added stuff on each release.
+
+#### Added
+Previously missing, now added
+```
+defaultPref("pdfjs.enableScripting", false);
+lockPref("browser.contentblocking.category", "custom"); // changing to other options is currently broken anyway
+lockPref("browser.contentblocking.cfr-milestone.enabled", false);
+lockPref("browser.contentblocking.database.enabled", false);
+lockPref("browser.contentblocking.cryptomining.preferences.ui.enabled", false);
+lockPref("browser.contentblocking.fingerprinting.preferences.ui.enabled", false);
+lockPref("browser.contentblocking.report.hide_vpn_banner", true);
+lockPref("browser.contentblocking.report.show_mobile_app", false);
+defaultPref("extensions.formautofill.creditCards.available", false);
+defaultPref("extensions.formautofill.addresses.capture.enabled", false);
+defaultPref("extensions.formautofill.section.enabled", false); // hide formautofill section in settings, which is useless and buggy atm
+defaultPref("media.peerconnection.ice.proxy_only_if_behind_proxy", true);
+lockPref("network.trr.send_empty_accept-encoding_headers", false);
+lockPref("browser.newtabpage.activity-stream.section.highlights.includePocket", false);
+lockPref("browser.newtabpage.activity-stream.improvesearch.topSiteSearchShortcuts", false);
+lockPref("browser.newtabpage.activity-stream.improvesearch.topSiteSearchShortcuts.havePinned", "");
+lockPref("browser.newtabpage.activity-stream.showSponsoredTopSites", false);
+lockPref("browser.newtabpage.activity-stream.feeds.topsites",	false);
+lockPref("browser.newtabpage.activity-stream.feeds.system.topsites",    false);
+lockPref("browser.newtabpage.activity-stream.feeds.system.topstories",	false);
+lockPref("app.normandy.dev_mode", false);
+lockPref("toolkit.telemetry.shutdownPingSender.enabledFirstSession", false);
+defaultPref("browser.urlbar.dnsResolveSingleWordsAfterSearch", 0);
+defaultPref("dom.security.https_only_mode_pbm", true);
+lockPref("browser.ping-centre.telemetry", false);
+lockPref("browser.region.network.url", "");
+lockPref("browser.region.update.enabled", false);
+defaultPref("dom.popup_allowed_events", "click dblclick mousedown pointerdown");
+defaultPref("extensions.postDownloadThirdPartyPrompt", false);
+defaultPref("general.warnOnAboutConfig", false);
+defaultPref("network.auth.subresource-http-auth-allow", 1);
+defaultPref("browser.display.use_system_colors", false);
+defaultPref("browser.cache.disk.enable", false);
+defaultPref("fission.autostart", true); // commented for now
+```
+
+#### Modified
+Updated some present prefs to better one
+```
+defaultPref("network.cookie.cookieBehavior", 5); // dFPI, previously set to 1
+lockPref("browser.cache.offline.storage.enable", false); // Previously browser.cache.offline.insecure.enable
+lockPref("network.http.referer.XOriginTrimmingPolicy", 2); // Previously set to 0
+lockPref("network.http.referer.XOriginPolicy", 0); // Previously set to 1
+defaultPref("privacy.clearOnShutdown.offlineApps", false); // For consistency with new cookie behavior
+defaultPref("privacy.cpd.offlineApps", false); // For consistency with new cookie behavior
+lockPref("devtools.performance.recording.ui-base-url", "http://localhost:55555"); // Previously redirected to localhost:4242
+defaultPref("media.autoplay.blocking_policy", 2); // Previously media.autoplay.enabled.user-gestures-needed
+defaultPref("media.memory_cache_max_size", 65536); // previously lockPref("media.memory_cache_max_size", 16384);
+```
+
+#### Removed
+Active prefs that were removed
+```
+lockPref("network.cookie.same-site.enabled", true); // Deprecated
+lockPref("network.cookie.leave-secure-alone", true); // Deprecated
+lockPref("browser.contentblocking.reportBreakage.enabled", false); // Deprecated
+lockPref("browser.contentblocking.rejecttrackers.reportBreakage.enabled", false); // Deprecated
+lockPref("browser.contentblocking.rejecttrackers.ui.enabled", false); // Deprecated
+lockPref("browser.contentblocking.trackingprotection.control-center.ui.enabled", false); // Deprecated
+lockPref("browser.contentblocking.trackingprotection.ui.enabled", false); // Deprecated
+pref("signon.management.page.mobileAndroidURL", ""); // Deprecated
+pref("signon.management.page.mobileAppleURL", ""); // Deprecated
+lockPref("browser.urlbar.openViewOnFocus", false); // Handled through patch
+lockPref("browser.urlbar.update1", false); // Handled through patch
+lockPref("browser.urlbar.update1.interventions", false); // Handled through patch
+lockPref("browser.urlbar.update1.searchTips", false); // Handled through patch
+defaultPref("places.history.expiration.max_pages", 2147483647); // Useless
+defaultPref("media.gmp-manager.url.override", "data:text/plain,"); // To easily enable DRM
+defaultPref("media.gmp-manager.updateEnabled", false); // Deprecated
+defaultPref("media.gmp-widevinecdm.autoupdate", false); // Deprecated
+defaultPref("media.gmp-eme-adobe.enabled", false); // Deprecated
+defaultPref("media.gmp-manager.certs.2.commonName", ""); // To easily enable DRM
+defaultPref("media.gmp-manager.certs.1.commonName", ""); // To easily enable DRM
+defaultPref("media.gmp.trial-create.enabled", false); // To easily enable DRM
+lockPref("dom.indexedDB.enabled", true); // Deprecated
+lockPref("dom.w3c_pointer_events.enabled", false); // Deprecated
+lockPref("offline-apps.allow_by_default", false); // Deprecated
+lockPref("ui.use_standins_for_native_colors", true); // Interferes with RFP
+lockPref("dom.event.highrestimestamp.enabled", true); // Deprecated
+lockPref("browser.urlbar.usepreloadedtopurls.enabled", false); // Deprecated
+lockPref("browser.urlbar.oneOffSearches", false); // Deprecated
+lockPref("dom.disable_window_open_feature.close", true); // Deprecated
+lockPref("dom.disable_window_open_feature.location", true); // Deprecated
+lockPref("dom.disable_window_open_feature.menubar", true); // Deprecated
+lockPref("dom.disable_window_open_feature.minimizable", true); // Deprecated
+lockPref("dom.disable_window_open_feature.personalbar", true); // Deprecated
+lockPref("dom.disable_window_open_feature.resizable", true); // Deprecated
+lockPref("dom.disable_window_open_feature.status", true); // Deprecated
+lockPref("dom.disable_window_open_feature.titlebar", true); // Deprecated
+lockPref("dom.disable_window_open_feature.toolbar", true); // Deprecated
+lockPref("security.csp.experimentalEnabled", true); // Deprecated
+lockPref("security.csp.enable_violation_events", false); // Deprecated
+lockPref("gecko.handlerService.schemes.ircs.0.uriTemplate", ""); // Duplicated in the file
+lockPref("browser.newtabpage.activity-stream.asrouter.userprefs.cfr", false); // Deprecated
+lockPref("extensions.htmlaboutaddons.discover.enabled", false); // Deprecated
+lockPref("browser.messaging-system.fxatoolbarbadge.enabled", false); // Deprecated
+lockPref("browser.onboarding.notification.tour-ids-queue", ""); // Deprecated
+lockPref("devtools.gcli.lodashSrc", ""); // Deprecated
+lockPref("devtools.webide.templatesURL", ""); // Deprecated
+lockPref("browser.ping-centre.production.endpoint", ""); // Deprecated
+lockPref("gecko.handlerService.schemes.ircs.0.name", ""); // Duplicated in the file
+lockPref("services.sync.fxa.privacyURL", ""); // Deprecated
+lockPref("services.settings.default_signer", ""); // Deprecated
+lockPref("app.productInfo.baseURL", ""); // Deprecated
+lockPref("devtools.webide.adbAddonURL", ""); // Deprecated
+lockPref("lightweightThemes.recommendedThemes", ""); // Deprecated
+defaultPref("media.gmp-gmpopenh264.autoupdate", false); // Adroid FF only
+lockPref("browser.newtabpage.activity-stream.prerender", false); // Deprecated
+lockPref("browser.newtabpage.activity-stream.aboutHome.enabled", false); // Deprecated
+lockPref("browser.newtabpage.activity-stream.disableSnippets", true); // Deprecated
+lockPref("privacy.donottrackheader.value", 1); // Deprecated
+defaultPref("privacy.userContext.longPressBehavior", 2); // Deprecated
+defaultPref("browser.tabs.closeWindowWithLastTab", true); // Already default
+lockPref("dom.forms.datetime", false); // Deprecated
+lockPref("browser.download.hide_plugins_without_extensions", false); // Deprecated
+lockPref("services.sync.clients.lastSync", "0"); // Deprecated
+lockPref("services.sync.clients.lastSyncLocal", "0"); // Deprecated
+lockPref("services.sync.enabled", false); // Deprecated
+lockPref("services.sync.jpake.serverURL", ""); // Deprecated
+lockPref("services.sync.migrated", true); // Deprecated
+lockPref("services.sync.prefs.sync.browser.safebrowsing.downloads.password", false); // Deprecated
+lockPref("services.sync.serverURL", ""); // Deprecated
+lockPref("services.sync.tabs.lastSyncLocal", "0"); // Deprecated
+lockPref("services.sync.engine.bookmarks.buffer", false); // Deprecated
+lockPref("services.sync.prefs.sync.browser.sessionstore.restore_on_demand", false); // Deprecated
+lockPref("services.sync.prefs.sync.browser.urlbar.suggest.history.onlyTyped", false); // Deprecated
+lockPref("services.sync.prefs.sync.browser.urlbar.matchBuckets", false); // Deprecated
+lockPref("services.sync.prefs.sync.browser.urlbar.autocomplete.enabled", false); // Deprecated
+lockPref("services.sync.prefs.sync.extensions.personas.current", false); // Deprecated
+lockPref("services.sync.prefs.sync.lightweightThemes.selectedThemeID", false); // Deprecated
+lockPref("services.sync.prefs.sync.lightweightThemes.usedThemes", false); // Deprecated
+lockPref("services.sync.prefs.sync.pref.advanced.images.disable_button.view_image", false); // Deprecated
+lockPref("services.sync.prefs.sync.pref.advanced.javascript.disable_button.advanced", false); // Deprecated
+lockPref("services.sync.prefs.sync.security.OCSP.enabled", false); // Deprecated
+lockPref("services.sync.prefs.sync.security.OCSP.require", false); // Deprecated
+lockPref("services.sync.prefs.sync.security.tls.version.max", false); // Deprecated
+lockPref("services.sync.prefs.sync.security.tls.version.min", false); // Deprecated
+lockPref("services.sync.prefs.sync.xpinstall.whitelist.required", false); // Deprecated
+lockPref("prio.publicKeyB", ""); // Deprecated
+lockPref("prio.publicKeyA", ""); // Deprecated
+lockPref("browser.chrome.errorReporter.publicKey", ""); // Deprecated
+lockPref("security.insecure_password.ui.enabled", true); // Deprecated
+defaultPref("network.dns.localDomains", "librefox.com"); // Doesn't make sense at all
+lockPref("security.ssl.errorReporting.automatic", false); // Deprecated
+lockPref("security.ssl.errorReporting.url", ""); // Deprecated
+lockPref("security.ssl.errorReporting.enabled", false); // Deprecated
+defaultPref("layout.frame_rate.precise", true); // Deprecated
+defaultPref("layers.offmainthreadcomposition.enabled", true); // Deprecated
+defaultPref("layers.async-video.enabled", true); // Deprecated
+defaultPref("layers.offmainthreadcomposition.async-animations", true); // Default true and not important to set
+defaultPref("html5.offmainthread", true); // Default true and not important to set
+defaultPref("browser.tabs.animate", false); // Deprecated
+lockPref("webgl.disable-extensions", true); // Deprecated
+lockPref("browser.onboarding.notification.finished", true); // Deprecated
+lockPref("browser.onboarding.tour.onboarding-tour-customize.completed", true); // Deprecated
+lockPref("browser.onboarding.tour.onboarding-tour-performance.completed", true); // Deprecated
+lockPref("devtools.onboarding.telemetry.logged", false); // Deprecated
+lockPref("pref.general.disable_button.default_browser", false); // Deprecated
+lockPref("pref.privacy.disable_button.view_passwords", false); // Deprecated
+lockPref("browser.urlbar.daysBeforeHidingSuggestionsPrompt", 0); // Deprecated
+lockPref("browser.urlbar.searchSuggestionsChoice", false); // Deprecated
+lockPref("browser.urlbar.timesBeforeHidingSuggestionsHint", 0); // Deprecated
+lockPref("app.update.silent", false); // Deprecated
+lockPref("app.vendorURL", ""); // Deprecated
+lockPref("browser.chrome.errorReporter.submitUrl", ""); // Deprecated
+lockPref("browser.chrome.errorReporter.enabled", false); // Deprecated
+lockPref("browser.ping-centre.staging.endpoint", ""); // Deprecated
+lockPref("devtools.devedition.promo.url", ""); // Deprecated
+lockPref("devtools.gcli.imgurUploadURL", ""); // Deprecated
+lockPref("devtools.gcli.jquerySrc", ""); // Deprecated
+lockPref("devtools.gcli.underscoreSrc", ""); // Deprecated
+lockPref("devtools.telemetry.supported_performance_marks", ""); // Deprecated
+lockPref("dom.permissions.enabled", false); // Deprecated
+lockPref("extensions.blocklist.url", ""); // Deprecated
+lockPref("geo.wifi.uri", ""); // Deprecated
+lockPref("geo.provider-country.network.scan", false); // Deprecated
+lockPref("geo.provider-country.network.url", ""); // Deprecated
+lockPref("identity.fxaccounts.service.sendLoginUrl", ""); // Deprecated
+lockPref("lpbmode.enabled", true); // Deprecated
+lockPref("mailnews.messageid_browser.url", ""); // Deprecated
+lockPref("mailnews.mx_service_url", ""); // Deprecated
+lockPref("network.predictor.cleaned-up", true); // Deprecated
+lockPref("plugins.crash.supportUrl", ""); // Deprecated
+lockPref("sync.enabled", false); // Deprecated
+lockPref("sync.jpake.serverURL", ""); // Deprecated
+lockPref("sync.serverURL", ""); // Deprecated
+lockPref("toolkit.telemetry.hybridContent.enabled", false); // Deprecated
+lockPref("toolkit.telemetry.infoURL", ""); // Deprecated
+lockPref("toolkit.telemetry.prompted", 2); // Deprecated
+lockPref("toolkit.telemetry.rejected", true); // Deprecated
+lockPref("toolkit.telemetry.coverage.opt-out", true); // Deprecated
+lockPref("browser.aboutHomeSnippets.updateUrl", ""); // Deprecated
+lockPref("dom.enable_user_timing", false); // Deprecated
+lockPref("geo.wifi.logging.enabled", false); // Deprecated
+lockPref("browser.search.geoSpecificDefaults.url", ""); // Deprecated
+lockPref("browser.search.geoSpecificDefaults", false); // Deprecated
+lockPref("browser.fixup.hide_user_pass", true); // Deprecated
+lockPref("privacy.storagePrincipal.enabledForTrackers", false); // redundant with dFPI
+defaultPref("layout.css.visited_links_enabled", false); // https://bugzilla.mozilla.org/show_bug.cgi?id=1632765
+defaultPref("layout.css.always-repaint-on-unvisited", false); // no benefit with RFP enabled -> https://github.com/arkenfox/user.js/issues/933
+defaultPref("layout.css.notify-of-unvisited", false); // no benefit with RFP enabled
+defaultPref("dom.event.contextmenu.enabled", false); // causes breakage with no demonstrated privacy benefit
+lockPref("dom.registerProtocolHandler.insecure.enabled", true); // Deprecated
+defaultPref("dom.security.https_only_mode_ever_enabled", true); // Triggered by dom.security.https_only_mode = true
+lockPref("dom.enable_resource_timing", false); // conflicting with RFP
+lockPref("device.sensors.enabled", false); // conflicting with RFP
+lockPref("dom.gamepad.enabled", false); // conflicting with RFP
+lockPref("dom.netinfo.enabled", false); // conflicting with RFP
+lockPref("media.video_stats.enabled", false); // conflicting with RFP
+lockPref("webgl.enable-debug-renderer-info", false); // conflicting with RFP
+defaultPref("extensions.getAddons.themes.browseURL", ""); // Deprecated
+lockPref("extensions.getAddons.compatOverides.url", ""); // Used for tests on localhost:8888
+defaultPref("extensions.ui.experiment.hidden", false); // Deprecated
+defaultPref("extensions.webextensions.tabhide.enabled", false); // Deprecated
+lockPref("dom.enable_performance", false); // conflicting with RFP
+lockPref("dom.enable_performance_navigation_timing", false);  // conflicting with RFP
+lockPref("security.mixed_content.upgrade_display_content", true); // not worth having https://github.com/arkenfox/user.js/issues/754
+lockPref("security.ssl3.ecdhe_ecdsa_rc4_128_sha", false); // Deprecated
+lockPref("security.ssl3.ecdhe_rsa_rc4_128_sha", false); // Deprecated
+lockPref("security.ssl3.rsa_rc4_128_md5", false); // Deprecated
+lockPref("security.ssl3.rsa_rc4_128_sha", false); // Deprecated
+lockPref("security.tls.unrestricted_rc4_fallback", false); // Deprecated
+lockPref("security.ssl3.ecdh_ecdsa_rc4_128_sha", false); // Deprecated
+lockPref("security.ssl3.ecdh_rsa_rc4_128_sha", false); // Deprecated
+lockPref("security.ssl3.rsa_seed_sha", false); // Deprecated
+lockPref("security.ssl3.rsa_des_ede3_sha", false); // known to leak and increase fingerprint
+lockPref("security.ssl3.rsa_aes_256_sha", false); // known to leak and increase fingerprint
+lockPref("security.ssl3.rsa_aes_128_sha", false); // known to leak and increase fingerprint
+lockPref("browser.safebrowsing.allowOverride", false); // we do not have SB enabled so we don't care if the bypass button is shown
+defaultPref("browser.ctrlTab.recentlyUsedOrder", false); // why should be disable this?
+lockPref("services.blocklist.onecrl.collection", ""); // Deprecated
+lockPref("font.blacklist.underline_offset", ""); // knwown to increase fingerprint
+lockPref("plugin.defaultXpi.state", 1); // Deprecated
+lockPref("remote.log.level", "Info"); // already default and not important in any way
+lockPref("webgl.min_capability_mode", true); // small to no gain according to arkenfox and TOR, breaks websites on the other side
+lockPref("lightweightThemes.update.enabled", false); // Deprecated 
+lockPref("lightweightThemes.persisted.headerURL", false); // Deprecated 
+lockPref("lightweightThemes.persisted.footerURL", false); // Deprecated 
+lockPref("network.protocol-handler.warn-external-default",true); // any real benefit? 
+lockPref("network.protocol-handler.external.javascript",false); // any real benefit? 
+lockPref("network.protocol-handler.external.moz-extension",false); // any real benefit? 
+lockPref("network.protocol-handler.external.ftp",false);// any real benefit? 
+lockPref("network.protocol-handler.external.file",false);// any real benefit? 
+lockPref("network.protocol-handler.external.about",false);// any real benefit? 
+lockPref("network.protocol-handler.external.chrome",false);// any real benefit? 
+lockPref("network.protocol-handler.external.blob",false);// any real benefit? 
+lockPref("network.protocol-handler.external.data",false);// any real benefit? 
+lockPref("network.protocol-handler.expose-all",false);// any real benefit? 
+lockPref("network.protocol-handler.expose.http",true);// any real benefit? 
+lockPref("network.protocol-handler.expose.https",true);// any real benefit? 
+lockPref("network.protocol-handler.expose.javascript",true);// any real benefit? 
+lockPref("network.protocol-handler.expose.moz-extension",true);// any real benefit? 
+lockPref("network.protocol-handler.expose.ftp",true);// any real benefit? 
+lockPref("network.protocol-handler.expose.file",true);// any real benefit? 
+lockPref("network.protocol-handler.expose.about",true);// any real benefit? 
+lockPref("network.protocol-handler.expose.chrome",true);// any real benefit? 
+lockPref("network.protocol-handler.expose.blob",true);// any real benefit? 
+lockPref("network.protocol-handler.expose.data",true);// any real benefit? 
+lockPref("network.protocol-handler.external.http",false);// any real benefit? 
+lockPref("network.protocol-handler.external.https",false);// any real benefit?
+lockPref("shumway.disabled", true); // Deprecated
+lockPref("plugin.state.libgnome-shell-browser-plugin", 0); // Deprecated
+lockPref("plugins.click_to_play", true); // Deprecated
+lockPref("plugin.sessionPermissionNow.intervalInMinutes", 0); // Deprecated
+lockPref("devtools.webide.enabled", false); // Deprecated
+lockPref("devtools.webide.autoinstallADBExtension", false); // Deprecated
+lockPref("network.allow-experiments", false); // Deprecated
+lockPref("browser.urlbar.userMadeSearchSuggestionsChoice", true); // Deprecated
+lockPref("network.netlink.route.check.IPv4", "127.0.0.1"); // Deprecated
+lockPref("network.netlink.route.check.IPv6", "::1"); // Deprecated
+lockPref("network.negotiate-auth.allow-insecure-ntlm-v1", false); // Deprecated
+lockPref("network.negotiate-auth.allow-insecure-ntlm-v1-https", false); // Deprecated
+lockPref("security.tls.version.max", 4); // increases fingerprint
+defaultPref("network.dns.blockDotOnion", true); // TOR is out of scope
+lockPref("network.http.referer.hideOnionSource", true); // TOR is out of scope
+lockPref("browser.onboarding.enabled", false); // Deprecated
+lockPref("dom.mozTCPSocket.enabled", false); // Useless according to https://gitlab.torproject.org/legacy/trac/-/issues/27268#comment:2
+lockPref("devtools.webide.autoinstallADBHelper", false); // Deprecated
+lockPref("app.update.enabled", false); // Deprecated
+lockPref("browser.casting.enabled", false); // Deprecated, probably Android only
+lockPref("browser.newtabpage.activity-stream.enabled", false); // Deprecated
+lockPref("browser.newtabpage.directory.ping", "data:text/plain,"); // Deprecated
+lockPref("browser.newtabpage.directory.source", "data:text/plain,"); // Deprecated
+lockPref("browser.newtabpage.enhanced", false); // Deprecated
+lockPref("browser.selfsupport.url", ""); // Deprecated
+lockPref("camera.control.face_detection.enabled", false); // Deprecated
+lockPref("datareporting.healthreport.about.reportUrl", "data:,"); // Deprecated
+lockPref("datareporting.healthreport.service.enabled", false); // Deprecated
+lockPref("devtools.webide.autoinstallFxdtAdapters", false); // Deprecated
+lockPref("devtools.webide.adaptersAddonURL", ""); // Deprecated
+lockPref("dom.flyweb.enabled", false); // Deprecated
+lockPref("dom.push.udp.wakeupEnabled", false); // Deprecated
+lockPref("dom.telephony.enabled", false); // Deprecated
+lockPref("extensions.shield-recipe-client.enabled", false); // Deprecated
+lockPref("loop.logDomains", false); // Deprecated
+lockPref("network.websocket.enabled", false); // Deprecated
+lockPref("security.xpconnect.plugin.unrestricted", false); // Deprecated
+lockPref("social.directories", ""); // Deprecated
+lockPref("social.remote-install.enabled", false); // Deprecated
+lockPref("social.whitelist", ""); // Deprecated
+lockPref("pref.privacy.disable_button.change_blocklist", true); // seems to have no effect and probably deprecated
+lockPref("pref.privacy.disable_button.tracking_protection_exceptions", true); // seems to have no effect and probably deprecated
+lockPref("browser.pocket.enabled", false); // Deprecated
+defaultPref("toolkit.legacyUserProfileCustomizations.stylesheets", false); // already default value and not that important, can still be flipped easily
+lockPref("plugin.scan.plid.all", false); // Win-only, plugins are disabled so it's redundant
+lockPref("webgl.dxgl.enabled", false); // Win-only, marked as useless https://github.com/arkenfox/user.js/issues/714
+lockPref("browser.search.countryCode", "US"); // Deprecated
+lockPref("experiments.activeExperiment", false); // Deprecated
+lockPref("experiments.enabled", false); // Deprecated
+lockPref("experiments.manifest.uri", ""); // Deprecated
+lockPref("experiments.supported", false); // Deprecated
+lockPref("network.jar.block-remote-files", true); // Deprecated
+lockPref("network.jar.open-unsafe-types", false); // Deprecated
+lockPref("plugin.state.java", 0); // Deprecated
+lockPref("trailhead.firstrun.branches", "join-privacy"); // Deprecated
+lockPref("services.blocklist.update_enabled", false); // Deprecated
+lockPref("shield.savant.enabled", false); // Deprecated
+defaultPref("gfx.direct2d.disabled", false); // Win-only, default and probably out of scope
+defaultPref("layers.acceleration.disabled", false); // default and probably out of scope
+lockPref("browser.taskbar.previews.enable", false); // personal pref
+lockPref("browser.taskbar.lists.enabled", false); // personal pref
+lockPref("browser.taskbar.lists.frequent.enabled", false); // personal pref
+lockPref("browser.taskbar.lists.recent.enabled", false); // personal pref
+lockPref("browser.taskbar.lists.tasks.enabled", false); // personal pref
+defaultPref("webgl.force-enabled", true); // out of scope, not worth
+defaultPref("layers.acceleration.force-enabled", true); // out of scope, not worth
+lockPref("privacy.trackingprotection.testing.report_blocked_node", false); // default false and we have tracking protection disabled
+lockPref("privacy.trackingprotection.origin_telemetry.enabled", false); // default false and we have tracking protection disabled
+lockPref("privacy.trackingprotection.lower_network_priority", false); // default
+lockPref("telemetry.origin_telemetry_test_mode.enabled", false); // default false and we have tracking protection disabled
+lockPref("signon.storeSignons", false); // Deprecated
+lockPref("browser.urlbar.filter.javascript", true); // default
+lockPref("browser.search.geoip.url", ""); // Deprecated
+defaultPref("privacy.clearOnShutdown.siteSettings", false); // default
+defaultPref("privacy.clearOnShutdown.cache", true); // default
+defaultPref("privacy.clearOnShutdown.sessions", true); // default
+defaultPref("privacy.clearOnShutdown.downloads", true); // default
+defaultPref("privacy.clearOnShutdown.formdata", true); // default
+defaultPref("privacy.clearOnShutdown.history", true); // default
+defaultPref("privacy.cpd.siteSettings", false); // default
+defaultPref("privacy.cpd.downloads", true); // default
+defaultPref("privacy.cpd.cache", true); // default
+defaultPref("privacy.cpd.formdata", true); // default
+defaultPref("privacy.cpd.history", true); // default
+defaultPref("privacy.cpd.passwords", false); // default
+defaultPref("privacy.cpd.sessions", true); // default
+defaultPref("extensions.formautofill.addresses.capture.enabled", false); // default
+lockPref("signon.autofillForms.http", false); // default
+lockPref("network.trr.send_user-agent_headers", false); // default
+lockPref("network.dns.disablePrefetchFromHTTPS", true); // default
+lockPref("dom.imagecapture.enabled", false); // default
+lockPref("dom.reporting.crash.enabled", false); // default
+defaultPref("network.proxy.autoconfig_url.include_path", false); // default
+lockPref("security.tls.version.min", 3); // default
+defaultPref("extensions.webextensions.background-delayed-startup", true); //default
+defaultPref("xpinstall.signatures.required", true); // default
+lockPref("app.normandy.dev_mode", false); // default
+defaultPref("pdfjs.enableWebGL", false); // default
+lockPref("browser.cache.offline.enable", false); // apparently increases fingerprinting and redundant with browser.cache.offline.storage.enable
+lockPref("network.predictor.enable-prefetch", false); // default
+lockPref("network.http.referer.spoofSource", false);  // default
+defaultPref("network.http.referer.defaultPolicy", 2);  // default
+defaultPref("network.http.referer.defaultPolicy.pbmode", 2);  // default
+defaultPref("layout.spellcheckDefault", 2); // why?
+lockPref("privacy.trackingprotection.introURL", ""); // Deprecated
+defaultPref("general.appname.override", "Netscape"); // no benefit over RFP
+defaultPref("general.appversion.override", "5.0 (Windows)"); // no benefit over RFP, and it doesn't spoof
+defaultPref("general.platform.override", "Win32"); // no benefit over RFP, and it doesn't spoof
+defaultPref("general.oscpu.override", "Windows NT 6.1"); // no benefit over RFP, and it doesn't spoof
+lockPref("general.buildID.override", "20100101"); // no benefit over RFP
+lockPref("browser.startup.homepage_override.buildID", "20100101"); // no benefit over RFP
+defaultPref("general.useragent.override", "Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0"); // no benefit over RFP and without may increase FP
+lockPref("security.insecure_connection_icon.enabled", true); // Default
+lockPref("security.insecure_connection_icon.pbmode.enabled", true); // Default
+lockPref("browser.bookmarks.restore_default_bookmarks", false); // Default
+lockPref("browser.contentblocking.cfr-milestone.enabled", false); // not needed with contenblocking disabled
+lockPref("app.normandy.first_run", false); // default
+lockPref("browser.send_pings", false); // default
+lockPref("browser.send_pings.require_same_host", true); // default
+defaultPref("browser.tabs.closeTabByDblclick", true); // why?
+lockPref("devtools.debugger.force-local", true); // default
+lockPref("gfx.offscreencanvas.enabled", false); // default
+lockPref("media.webspeech.recognition.enable", false); // default
+lockPref("network.auth.subresource-img-cross-origin-http-auth-allow", false); // default
+lockPref("remote.force-local", true); // default
+lockPref("security.data_uri.block_toplevel_data_uri_navigations", true); // default
+lockPref("security.fileuri.strict_origin_policy", true); // default
+lockPref("security.insecure_field_warning.contextual.enabled", true); // default
+defaultPref("security.remote_settings.intermediates.enabled", true); // default
+lockPref("xpinstall.whitelist.required", true); // default
+lockPref("browser.sessionhistory.max_entries", 20); // why?
+lockPref("extensions.webapi.testing", false); // hidden but default false
+lockPref("canvas.capturestream.enabled", false); // any real benefit?
+lockPref("network.http.redirection-limit", 10); // small benefit from having it at default 20, and break some payments
+defaultPref("dom.event.clipboardevents.enabled", false); // causes breakage with small benefits, moved to hardened setup
+lockPref("webgl.disable-fail-if-major-performance-caveat", true); // default
+lockPref("network.trr.send_empty_accept-encoding_headers", false); // why?
+
+// fxaccounts is disabled in policies
+lockPref("identity.fxaccounts.enabled", false);
+lockPref("identity.fxaccounts.remote.root", "");
+lockPref("identity.fxaccounts.auth.uri", "");
+lockPref("identity.fxaccounts.commands.enabled", false);
+lockPref("identity.fxaccounts.remote.oauth.uri", "");
+lockPref("identity.fxaccounts.remote.profile.uri", "");
+lockPref("identity.fxaccounts.service.monitorLoginUrl", "");
+
+// all handled by lockPref("services.settings.server", "")
+lockPref("services.blocklist.addons.collection", "");
+lockPref("services.blocklist.plugins.collection", "");
+lockPref("services.blocklist.gfx.collection", "");
+lockPref("services.blocklist.addons.signer", "");
+lockPref("services.blocklist.gfx.signer", "");
+lockPref("services.settings.security.onecrl.signer", "");
+lockPref("services.blocklist.pinning.signer", "");
+lockPref("services.blocklist.plugins.signer", "");
+
+// useless as fxaccounts are off
+lockPref("services.sync.addons.trustedSourceHostnames", "");
+lockPref("services.sync.lastversion", "");
+lockPref("services.sync.maxResyncs", 0); // 1
+lockPref("services.sync.telemetry.maxPayloadCount", 0); //500
+lockPref("services.sync.addons.ignoreUserEnabledChanges", true); //false
+lockPref("services.sync.engine.addons", false); //true
+lockPref("services.sync.engine.addresses", false); //false
+lockPref("services.sync.engine.addresses.available", false);
+lockPref("services.sync.engine.bookmarks", false); //true
+lockPref("services.sync.engine.creditcards", false); //false
+lockPref("services.sync.engine.creditcards.available", false); //false
+lockPref("services.sync.engine.history", false); //true
+lockPref("services.sync.engine.passwords", false); //true
+lockPref("services.sync.engine.prefs", false); //true
+lockPref("services.sync.engine.tabs", false); //true
+lockPref("services.sync.log.appender.file.logOnError", false); //true
+lockPref("services.sync.log.appender.file.logOnSuccess", false); //false
+lockPref("services.sync.log.cryptoDebug", false); //false
+lockPref("services.sync.sendVersionInfo", false); //true
+lockPref("services.sync.syncedTabs.showRemoteIcons", true); //true
+lockPref("services.sync.prefs.sync.services.sync.syncedTabs.showRemoteIcons", false); //true
+lockPref("services.sync.prefs.sync.accessibility.blockautorefresh", false); //true
+lockPref("services.sync.prefs.sync.accessibility.browsewithcaret", false); //true
+lockPref("services.sync.prefs.sync.accessibility.typeaheadfind", false); //true
+lockPref("services.sync.prefs.sync.accessibility.typeaheadfind.linksonly", false); //true
+lockPref("services.sync.prefs.sync.addons.ignoreUserEnabledChanges", true); //true
+lockPref("services.sync.prefs.sync.browser.contentblocking.category", false); //true
+lockPref("services.sync.prefs.sync.browser.contentblocking.features.strict", false); //true
+lockPref("services.sync.prefs.sync.browser.ctrlTab.recentlyUsedOrder", false); //true
+lockPref("services.sync.prefs.sync.browser.download.useDownloadDir", false); //true
+lockPref("services.sync.prefs.sync.browser.formfill.enable", false); //true
+lockPref("services.sync.prefs.sync.browser.link.open_newwindow", false); //true
+lockPref("services.sync.prefs.sync.browser.newtabpage.enabled", false); //true
+lockPref("services.sync.prefs.sync.browser.newtabpage.pinned", false); //true
+lockPref("services.sync.prefs.sync.browser.newtabpage.activity-stream.section.highlights.includePocket", false); //true
+lockPref("services.sync.prefs.sync.browser.newtabpage.activity-stream.section.highlights.includeVisited", false); //true
+lockPref("services.sync.prefs.sync.browser.newtabpage.activity-stream.section.highlights.includeBookmarks", false); //true
+lockPref("services.sync.prefs.sync.browser.newtabpage.activity-stream.section.highlights.includeDownloads", false); //true
+lockPref("services.sync.prefs.sync.browser.newtabpage.activity-stream.section.highlights.rows", false); //true
+lockPref("services.sync.prefs.sync.browser.newtabpage.activity-stream.section.topstories.rows", false); //true
+lockPref("services.sync.prefs.sync.browser.offline-apps.notify", false); //true
+lockPref("services.sync.prefs.sync.browser.search.update", false); //true
+lockPref("services.sync.prefs.sync.browser.search.widget.inNavBar", false); //true
+lockPref("services.sync.prefs.sync.browser.sessionstore.warnOnQuit", false); //true
+lockPref("services.sync.prefs.sync.browser.startup.homepage", false); //true
+lockPref("services.sync.prefs.sync.browser.startup.page", false); //true
+lockPref("services.sync.prefs.sync.browser.tabs.loadInBackground", false); //true
+lockPref("services.sync.prefs.sync.browser.tabs.warnOnClose", false); //true
+lockPref("services.sync.prefs.sync.browser.tabs.warnOnOpen", false); //true
+lockPref("services.sync.prefs.sync.browser.urlbar.maxRichResults", false); //true
+lockPref("services.sync.prefs.sync.browser.urlbar.suggest.bookmark", false); //true
+lockPref("services.sync.prefs.sync.browser.urlbar.suggest.history", false); //true
+lockPref("services.sync.prefs.sync.browser.urlbar.suggest.engines", false); //true
+lockPref("services.sync.prefs.sync.browser.urlbar.suggest.topsites", false); //true
+lockPref("services.sync.prefs.sync.browser.urlbar.suggest.openpage", false); //true
+lockPref("services.sync.prefs.sync.browser.urlbar.suggest.searches", false); //true
+lockPref("services.sync.prefs.sync.browser.urlbar.resultBuckets", false); //true
+lockPref("services.sync.prefs.sync.browser.urlbar.showSearchSuggestionsFirst", false); //true
+lockPref("services.sync.prefs.sync.dom.disable_open_during_load", false); //true
+lockPref("services.sync.prefs.sync.dom.disable_window_flip", false); //true
+lockPref("services.sync.prefs.sync.dom.disable_window_move_resize", false); //true
+lockPref("services.sync.prefs.sync.dom.event.contextmenu.enabled", false); //true
+lockPref("services.sync.prefs.sync.dom.security.https_only_mode", false); //true
+lockPref("services.sync.prefs.sync.dom.security.https_only_mode_ever_enabled", false); //true
+lockPref("services.sync.prefs.sync.dom.security.https_only_mode_ever_enabled_pbm", false); //true
+lockPref("services.sync.prefs.sync.dom.security.https_only_mode_pbm", false); //true
+lockPref("services.sync.prefs.sync.extensions.activeThemeID", false); //true
+lockPref("services.sync.prefs.sync.extensions.update.enabled", false); //true
+lockPref("services.sync.prefs.sync.intl.accept_languages", false); //true
+lockPref("services.sync.prefs.sync.intl.regional_prefs.use_os_locales", false); //true
+lockPref("services.sync.prefs.sync.layout.spellcheckDefault", false); //true
+lockPref("services.sync.prefs.sync.network.cookie.cookieBehavior", false); //true
+lockPref("services.sync.prefs.sync.network.cookie.lifetimePolicy", false); //true
+lockPref("services.sync.prefs.sync.network.cookie.thirdparty.sessionOnly", false); //true
+lockPref("services.sync.prefs.sync.permissions.default.image", false); //true
+lockPref("services.sync.prefs.sync.pref.downloads.disable_button.edit_actions", false); //true
+lockPref("services.sync.prefs.sync.pref.privacy.disable_button.cookie_exceptions", false); //true
+lockPref("services.sync.prefs.sync.privacy.clearOnShutdown.cache", false); //true
+lockPref("services.sync.prefs.sync.privacy.clearOnShutdown.cookies", false); //true
+lockPref("services.sync.prefs.sync.privacy.clearOnShutdown.downloads", false); //true
+lockPref("services.sync.prefs.sync.privacy.clearOnShutdown.formdata", false); //true
+lockPref("services.sync.prefs.sync.privacy.clearOnShutdown.history", false); //true
+lockPref("services.sync.prefs.sync.privacy.clearOnShutdown.offlineApps", false); //true
+lockPref("services.sync.prefs.sync.privacy.clearOnShutdown.sessions", false); //true
+lockPref("services.sync.prefs.sync.privacy.clearOnShutdown.siteSettings", false); //true
+lockPref("services.sync.prefs.sync.privacy.donottrackheader.enabled", false); //true
+lockPref("services.sync.prefs.sync.privacy.fuzzyfox.clockgrainus", false); //true
+lockPref("services.sync.prefs.sync.privacy.fuzzyfox.enabled", false); //true
+lockPref("services.sync.prefs.sync.privacy.reduceTimerPrecision", false); //true
+lockPref("services.sync.prefs.sync.privacy.resistFingerprinting", false); //true
+lockPref("services.sync.prefs.sync.privacy.resistFingerprinting.reduceTimerPrecision.jitter", false); //true
+lockPref("services.sync.prefs.sync.privacy.resistFingerprinting.reduceTimerPrecision.microseconds", false); //true
+lockPref("services.sync.prefs.sync.privacy.sanitize.sanitizeOnShutdown", false); //true
+lockPref("services.sync.prefs.sync.privacy.trackingprotection.enabled", false); //true
+lockPref("services.sync.prefs.sync.privacy.trackingprotection.pbmode.enabled", false); //true
+lockPref("services.sync.prefs.sync.privacy.trackingprotection.cryptomining.enabled", false); //true
+lockPref("services.sync.prefs.sync.privacy.trackingprotection.fingerprinting.enabled", false); //true
+lockPref("services.sync.prefs.sync.privacy.userContext.enabled", false); //true
+lockPref("services.sync.prefs.sync.privacy.userContext.newTabContainerOnLeftClick.enabled", false); //true
+lockPref("services.sync.prefs.sync.security.default_personal_cert", false); //true
+lockPref("services.sync.prefs.sync.spellchecker.dictionary", false); //true
+lockPref("services.sync.prefs.sync.signon.rememberSignons", false);
+lockPref("services.sync.prefs.sync.signon.management.page.breach-alerts.enabled", false);
+lockPref("services.sync.prefs.sync.signon.generation.enabled", false);
+lockPref("services.sync.prefs.sync.signon.autofillForms", false);
+lockPref("services.sync.declinedEngines", "");
+lockPref("services.sync.globalScore", 0);
+lockPref("services.sync.nextSync", 0);
+lockPref("services.sync.prefs.sync.browser.safebrowsing.downloads.enabled", false);
+lockPref("services.sync.prefs.sync.browser.safebrowsing.malware.enabled", false);
+lockPref("services.sync.prefs.sync.browser.safebrowsing.downloads.remote.block_potentially_unwanted", false);
+lockPref("services.sync.prefs.sync.browser.safebrowsing.phishing.enabled", false);
+lockPref("services.sync.tabs.lastSync", "0");
+
+// useless as ui elements are not in the report page
+lockPref("browser.contentblocking.report.cookie.url", "");
+lockPref("browser.contentblocking.report.cryptominer.url", "");
+lockPref("browser.contentblocking.report.endpoint_url", "");
+lockPref("browser.contentblocking.report.fingerprinter.url", "");
+lockPref("browser.contentblocking.report.lockwise.how_it_works.url", "");
+lockPref("browser.contentblocking.report.manage_devices.url", "");
+lockPref("browser.contentblocking.report.monitor.how_it_works.url", "");
+lockPref("browser.contentblocking.report.monitor.sign_in_url", "");
+lockPref("browser.contentblocking.report.monitor.home_page_url", "");
+lockPref("browser.contentblocking.report.monitor.preferences", "");
+lockPref("browser.contentblocking.report.monitor.url", "");
+lockPref("browser.contentblocking.report.proxy.enabled", false);
+lockPref("browser.contentblocking.report.proxy_extension.url", "");
+lockPref("browser.contentblocking.report.social.url", "");
+lockPref("browser.contentblocking.report.tracker.url", "");
+lockPref("browser.contentblocking.report.vpn.url", "");
+lockPref("browser.contentblocking.report.vpn-promo.url", "");
+lockPref("browser.contentblocking.report.vpn-ios.url", "");
+lockPref("browser.contentblocking.report.vpn-android.url", "");
+
+// urls that do not damage and make re-enabling TP a pain
+lockPref("browser.contentblocking.reportBreakage.url", "");
+defaultPref("browser.safebrowsing.provider.mozilla.pver", "");
+defaultPref("browser.safebrowsing.provider.mozilla.lists", "");
+defaultPref("browser.safebrowsing.provider.mozilla.lists.base", "");
+defaultPref("browser.safebrowsing.provider.mozilla.lists.content", "");
+defaultPref("browser.safebrowsing.provider.mozilla.lastupdatetime", "");
+defaultPref("browser.safebrowsing.provider.mozilla.nextupdatetime", "");
+lockPref("urlclassifier.trackingTable", "");
+lockPref("browser.contentblocking.database.enabled", false);
+
+// all covered by previous prefs
+// defaultPref("media.navigator.video.enabled", false);
+// defaultPref("media.peerconnection.use_document_iceservers", false);
+// defaultPref("media.peerconnection.identity.enabled", false);
+// defaultPref("media.peerconnection.identity.timeout", 1);
+// defaultPref("media.peerconnection.turn.disable", true);
+// defaultPref("media.peerconnection.ice.tcp", false);
+
+lockPref("privacy.trackingprotection.socialtracking.enabled", false); // default
+defaultPref("network.stricttransportsecurity.preloadlist",	false); // nothing wrong with hsts
+lockPref("security.ssl.disable_session_identifiers", true); // covered by isolation, large performance hit
+// defaultPref("intl.regional_prefs.use_os_locales", false); // default and already commented
+lockPref("extensions.screenshots.upload-disabled", true); // deprecated feature
+lockPref("dom.ipc.plugins.reportCrashURL", false); // flash is gone, does nothing
+lockPref("dom.ipc.plugins.flash.subprocess.crashreporter.enabled", false); // flash is gone, does nothing
+lockPref("plugin.state.flash", 0); // flash is gone, does nothing
+defaultPref("alerts.showFavicons", false); // default
+lockPref("plugin.default.state", 1); // default
+lockPref("extensions.pocket.enabled", false); // pocket is already disabled
+lockPref("extensions.pocket.site", ""); // pocket is already disabled
+lockPref("extensions.pocket.oAuthConsumerKey", ""); // pocket is already disabled
+lockPref("extensions.pocket.api", ""); // pocket is already disabled
+defaultPref("accessibility.typeaheadfind", false); // default
+defaultPref("reader.parse-on-load.enabled", false); // no need to have it locked, even Tor Browser re-enabled it
+lockPref("gecko.handlerService.schemes.webcal.0.uriTemplate", ""); // default
+defaultPref("network.proxy.socks_version", 5); // default
+defaultPref("network.proxy.autoconfig_url", ""); // default
+defaultPref("extensions.formautofill.section.enabled", false); // no effect
+defaultPref("network.trr.bootstrapAddress", ""); // deprecated
+lockPref("browser.newtabpage.activity-stream.feeds.asrouterfeed", false); // deprecated
+lockPref("browser.newtabpage.activity-stream.telemetry.ping.endpoint", ""); // deprecated
+defaultPref("security.ssl.enable_ocsp_stapling", true); // default
+lockPref("security.mixed_content.block_object_subrequest", true); // useless as rest of flash prefs
+defaultPref("geo.provider.network.logging.enabled", false); // default
+lockPref("toolkit.telemetry.ecosystemtelemetry.enabled", false); // deprecated
+lockPref("browser.contentblocking.report.proxy.enabled", false); // default
+```
+
+#### Commented
+Prefs that need to be addressed and that were disabled for now
+```
+// blocklist is a security feature, best left at default
+// defaultPref("extensions.blocklist.enabled", false);
+// defaultPref("extensions.blocklist.detailsURL", "");
+// defaultPref("extensions.blocklist.itemURL", "");
+
+// commented all below as they do no harm and make enabling SB painful
+// could potentially at some point
+// defaultPref("browser.safebrowsing.id", "");
+// defaultPref("browser.safebrowsing.provider.google4.pver", "");
+// defaultPref("browser.safebrowsing.provider.google4.advisoryName", "");
+// defaultPref("browser.safebrowsing.provider.google4.advisoryURL", "");
+// defaultPref("browser.safebrowsing.provider.google4.lists", "");
+// defaultPref("browser.safebrowsing.provider.google4.reportMalwareMistakeURL", "");
+// defaultPref("browser.safebrowsing.provider.google4.reportPhishMistakeURL", "");
+// defaultPref("browser.safebrowsing.provider.google4.reportURL", "");
+// defaultPref("browser.safebrowsing.provider.google4.lastupdatetime", "");
+// defaultPref("browser.safebrowsing.provider.google4.nextupdatetime", "");
+// defaultPref("browser.safebrowsing.provider.google.advisoryName", "");
+// defaultPref("browser.safebrowsing.provider.google.advisoryURL", "");
+// defaultPref("browser.safebrowsing.provider.google.lastupdatetime", "");
+// defaultPref("browser.safebrowsing.provider.google.lists", "");
+// defaultPref("browser.safebrowsing.provider.google.nextupdatetime", "");
+// defaultPref("browser.safebrowsing.provider.google.pver", "");
+// defaultPref("browser.safebrowsing.provider.google.reportMalwareMistakeURL", "");
+// defaultPref("browser.safebrowsing.provider.google.reportPhishMistakeURL", "");
+// defaultPref("browser.safebrowsing.provider.google.reportURL", "");
+// defaultPref("browser.safebrowsing.reportPhishURL", "");
+```
+
+#### Unlocked
+Locked prefs that were unlocked, more should be unlocked probably
+```
+defaultPref("general.config.filename", "librewolf.cfg");
+defaultPref("privacy.donottrackheader.enabled", true); // Unlocked as some think it increases fingerprint, they can now disable it
+defaultPref("permissions.default.geo", 2); // Unlocked as some think it increases fingerprint, they can now disable it
+defaultPref("extensions.getAddons.themes.browseURL", "")
+defaultPref("pdfjs.enableWebGL", false);
+defaultPref("pdfjs.previousHandler.alwaysAskBeforeHandling", true);
+defaultPref("pdfjs.enabledCache.state", false);
+defaultPref("alerts.showFavicons", false); // default: false
+defaultPref("security.remote_settings.intermediates.enabled", true);
+defaultPref("dom.battery.enabled", false); // Unlocked as some think it increases fingerprint, they can now disable it
+defaultPref("extensions.blocklist.enabled", false);
+defaultPref("extensions.blocklist.detailsURL", "");
+defaultPref("extensions.blocklist.itemURL", "");
+defaultPref("security.OCSP.enabled", 0); // someone might want to have it on for security concerns
+defaultPref("security.OCSP.require", false);
+defaultPref("reader.parse-on-load.enabled", false);
+defaultPref("webgl.enable-webgl2", false);
+defaultPref("geo.provider.network.url", "");
+defaultPref("geo.provider.network.logging.enabled", false);
+defaultPref("network.http.referer.XOriginTrimmingPolicy", 2);
+defaultPref("network.http.referer.XOriginPolicy", 0);
+defaultPref("browser.download.manager.addToRecentDocs", false);
+defaultPref("accessibility.force_disabled", 1);
+defaultPref("network.manage-offline-status", false);
+defaultPref("browser.helperApps.deleteTempFileOnExit", true);
+defaultPref("dom.push.enabled", false);
+defaultPref("dom.push.connection.enabled", false);
+defaultPref("dom.push.serverURL", ""); //default "wss://push.services.mozilla.com/"
+defaultPref("dom.push.userAgentID", "");
+defaultPref("dom.targetBlankNoOpener.enabled", true);
+defaultPref("dom.disable_window_move_resize", true);
+defaultPref("dom.disable_beforeunload", true);
+defaultPref("dom.popup_maximum", 4);
+defaultPref("dom.vr.enabled", false);
+defaultPref("dom.vibrator.enabled", false);
+defaultPref("network.stricttransportsecurity.preloadlist",	false);
+defaultPref("browser.ssl_override_behavior", 1);
+defaultPref("security.tls.version.fallback-limit", 3);
+defaultPref("browser.xul.error_pages.expert_bad_cert", true); // advanced ui infos
+defaultPref("extensions.enabledScopes", 5);
+defaultPref("extensions.autoDisableScopes", 11);
+defaultPref("xpinstall.signatures.devInfoURL", "");
+defaultPref("security.cert_pinning.enforcement_level", 2);
+defaultPref("devtools.performance.recording.ui-base-url", "http://localhost:55555"); // Default Value : https://profiler.firefox.com
+defaultPref("devtools.devices.url", "");
+defaultPref("devtools.remote.adb.extensionURL", ""); // [FF64+]
+defaultPref("devtools.remote.adb.extensionID", ""); // default adb@mozilla.org [FF64+]
+defaultPref("browser.safebrowsing.blockedURIs.enabled", false);
+defaultPref("browser.safebrowsing.provider.google4.gethashURL", "")
+defaultPref("browser.safebrowsing.provider.google4.updateURL", "");
+defaultPref("browser.safebrowsing.provider.google.gethashURL", "");
+defaultPref("browser.safebrowsing.provider.google.updateURL", "");
+defaultPref("browser.safebrowsing.provider.mozilla.updateURL", "");
+defaultPref("browser.safebrowsing.provider.mozilla.gethashURL", "");
+defaultPref("browser.safebrowsing.reportPhishURL", "");
+defaultPref("browser.safebrowsing.malware.enabled", false);
+defaultPref("browser.safebrowsing.passwords.enabled", false);
+defaultPref("browser.safebrowsing.phishing.enabled", false);
+defaultPref("browser.urlbar.trimURLs", false);
+defaultPref("browser.search.suggest.enabled", false);
+defaultPref("browser.search.region", "US");
+defaultPref("browser.urlbar.suggest.searches", false);
+defaultPref("browser.search.update", false);
+defaultPref("browser.contentblocking.cryptomining.preferences.ui.enabled", false); // enable UI elements of TP if you want to use it
+defaultPref("browser.contentblocking.fingerprinting.preferences.ui.enabled", false); // enable UI elements of TP if you want to use it
+defaultPref("privacy.trackingprotection.cryptomining.enabled", false); // user can manually choose what to do once he enables UI with the above prefs
+defaultPref("privacy.trackingprotection.fingerprinting.enabled", false); // user can manually choose what to do once he enables UI with the above prefs
+```

docs/faq.md

@@ -1,32 +0,0 @@
-# Questions:
-
-The questions [open] and [disscussion] are discussed in [the faq issue](https://gitlab.com/librewolf-community/settings/-/issues/50).
-
-* How do I toggle the proton ui? [open]
-* How do I enable DRM? [open]
-* How do I enable microphone / webcam? [open]
-* How do I make LibreWolf remember all the cookies? [discussion]
-* How do I enable dark theming on websites such as duckduckgo.com? [open]
-* How do I switch to another language, say, to brazil/portuguese? [open]
-
-# How do I make LibreWolf remember all the cookies?
-
-In your librewolf.overrides.cfg, add the following:
-
-    // cookies: No longer forget any website data..
-    pref("network.cookie.cookieBehavior",        1);
-    pref("privacy.sanitize.sanitizeOnShutdown",  false);
-    pref("privacy.clearOnShutdown.cookies",      false);
-    pref("privacy.clearOnShutdown.cache",        false);
-    pref("privacy.clearOnShutdown.downloads",    false);
-    pref("privacy.clearOnShutdown.history",      false);
-    pref("privacy.clearOnShutdown.formData",     false);
-    pref("privacy.clearOnShutdown.offlineApps",  false);
-    pref("privacy.clearOnShutdown.sessions",     false);
-    pref("privacy.clearOnShutdown.siteSettings", false);
-
-
-
-
-
-