hardening firefox for security and privacy
TRANSCRIPT
![Page 2: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/2.jpg)
![Page 3: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/3.jpg)
![Page 4: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/4.jpg)
![Page 5: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/5.jpg)
enable
disable
restrict
![Page 6: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/6.jpg)
enable
disable
restrict
![Page 7: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/7.jpg)
![Page 8: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/8.jpg)
eliminating all fingerprinting
![Page 9: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/9.jpg)
eliminating all fingerprinting
![Page 10: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/10.jpg)
eliminating all traffic to Mozilla
![Page 11: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/11.jpg)
eliminating all traffic to Mozilla
support.mozilla.org/kb/how-stop-firefox-making-automatic-connections
![Page 12: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/12.jpg)
eliminating all traffic to Mozilla
● auto-updates
![Page 13: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/13.jpg)
eliminating all traffic to Mozilla
● auto-updates
● add-on blocklist
![Page 14: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/14.jpg)
eliminating all traffic to Mozilla
● telemetry
![Page 15: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/15.jpg)
eliminating all traffic to Mozilla
● telemetry
wiki.mozilla.org/Firefox/Data_Collection
![Page 16: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/16.jpg)
disabling features with big perf impact
● prefetching
● speculative connections
![Page 17: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/17.jpg)
disabling useful features
● WebGL
● WebRTC
●DOM Storage
![Page 18: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/18.jpg)
disabling features that:
● disabled by default
● prompt you first
![Page 19: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/19.jpg)
features to enable
![Page 20: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/20.jpg)
![Page 21: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/21.jpg)
privacy.trackingprotection.enabled
![Page 23: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/23.jpg)
feeding.cloud.geek.nz/posts/how-tracking-protection-works-in-firefox
![Page 24: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/24.jpg)
Do Not Track
![Page 25: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/25.jpg)
privacy.donottrackheader.enabled
![Page 26: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/26.jpg)
privacy.donottrackheader.enabled
![Page 27: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/27.jpg)
features to disable
![Page 28: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/28.jpg)
![Page 29: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/29.jpg)
media.eme.enabled
![Page 30: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/30.jpg)
![Page 31: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/31.jpg)
![Page 32: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/32.jpg)
![Page 34: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/34.jpg)
device.sensors.enabled
![Page 35: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/35.jpg)
![Page 36: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/36.jpg)
BatteryManagery { charging: false, chargingTime: Infinity, dischargingTime: 8940, level: 0.59, onchargingchange: null, onchargingtimechange: null, ondischargingtimechange: null, onlevelchange: null}
![Page 37: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/37.jpg)
BatteryManagery { charging: false, chargingTime: Infinity, dischargingTime: 8940, level: 0.59, onchargingchange: null, onchargingtimechange: null, ondischargingtimechange: null, onlevelchange: null}
![Page 38: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/38.jpg)
BatteryManagery { charging: false, chargingTime: Infinity, dischargingTime: 8940, level: 0.59, onchargingchange: null, onchargingtimechange: null, ondischargingtimechange: null, onlevelchange: null}
![Page 39: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/39.jpg)
dom.battery.enabled
![Page 40: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/40.jpg)
removedin 52
dom.battery.enabled
![Page 41: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/41.jpg)
www.fsf.orgwww.eff.org
![Page 42: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/42.jpg)
www.fsf.orgwww.eff.orgwww.netflix.comstore.steampowered.com
![Page 43: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/43.jpg)
layout.css.visited_links_enabled
![Page 44: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/44.jpg)
![Page 45: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/45.jpg)
Simple ServiceDiscovery Protocol
![Page 46: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/46.jpg)
browser.casting.enabled
![Page 47: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/47.jpg)
![Page 48: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/48.jpg)
pdfjs.disabled
![Page 49: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/49.jpg)
network information
![Page 50: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/50.jpg)
navigator.connection.type;
![Page 51: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/51.jpg)
navigator.connection.type;
bluetooth, cellular, ethernet, none,wifi, wimax, other, mixed, unknown
![Page 52: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/52.jpg)
navigator.connection.type;
bluetooth, cellular, ethernet, none,wifi, wimax, other, mixed, unknown
navigator.connection.downlinkMax;
![Page 53: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/53.jpg)
dom.netinfo.enabled
![Page 54: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/54.jpg)
media.video_stats.enabled
![Page 55: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/55.jpg)
webgl.enable-debug-renderer-info
![Page 56: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/56.jpg)
dom.enable_performance
![Page 57: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/57.jpg)
features to restrict
![Page 58: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/58.jpg)
![Page 59: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/59.jpg)
network.cookie.cookieBehavior = 0
network.cookie.thirdparty.sessionOnly = true
privacy.clearOnShutdown.cookies = false
network.cookie.lifetimePolicy = 3
network.cookie.lifetime.days = 5
feeding.cloud.geek.nz/posts/tweaking-cookies-for-privacy-in-firefox
![Page 60: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/60.jpg)
![Page 61: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/61.jpg)
network.http.referer.XoriginPolicy = 1
![Page 62: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/62.jpg)
network.http.referer.XoriginPolicy = 1
network.http.referer.XOriginTrimmingPolicy = 2
feeding.cloud.geek.nz/posts/tweaking-referrer-for-privacy-in-firefox
newin 52
![Page 63: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/63.jpg)
![Page 64: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/64.jpg)
![Page 65: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/65.jpg)
![Page 66: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/66.jpg)
![Page 67: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/67.jpg)
pre-downloaded lists
of URL hash prefixes
![Page 68: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/68.jpg)
feeding.cloud.geek.nz/
![Page 69: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/69.jpg)
5b31c2702efc7c81e4d197cd8011339654da10d3315636cccbb536e868ff82a6
![Page 70: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/70.jpg)
5b31c2702efc7c81e4d197cd8011339654da10d3315636cccbb536e868ff82a6
![Page 71: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/71.jpg)
5b31c2702efc7c81e4d197cd8011339654da10d3315636cccbb536e868ff82a6
feeding.cloud.geek.nz/posts/how-safe-browsing-works-in-firefox
![Page 72: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/72.jpg)
![Page 73: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/73.jpg)
.exe
.com
.bat
.apk
.dmg
.pl
.py
.sh
.deb
.rpm
![Page 74: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/74.jpg)
.exe
.com
.bat
.apk
.dmg
.pl
.py
.sh
.deb
.rpm
toolkit/components/downloads/ApplicationReputation.cpp
![Page 75: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/75.jpg)
filename and size
URLs
hash of contents
locale
toolkit/components/downloads/ApplicationReputation.cpp
![Page 76: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/76.jpg)
![Page 77: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/77.jpg)
browser.safebrowsing.downloads.remote.enabled
feeding.cloud.geek.nz/posts/how-safe-browsing-works-in-firefox
![Page 78: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/78.jpg)
![Page 79: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/79.jpg)
![Page 80: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/80.jpg)
![Page 81: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/81.jpg)
revealing non-VPN IP address
leaking internal IP address
![Page 82: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/82.jpg)
revealing non-VPN IP address
leaking internal IP address
fixedin 51
![Page 83: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/83.jpg)
media.peerconnection.ice.default_address_only = true50 or earlier:
![Page 84: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/84.jpg)
media.peerconnection.ice.no_host = true51 or later:
media.peerconnection.ice.default_address_only = true50 or earlier:
![Page 85: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/85.jpg)
other things to
keep in mind
![Page 86: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/86.jpg)
p@ssW0rd5
![Page 87: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/87.jpg)
![Page 88: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/88.jpg)
![Page 91: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/91.jpg)
![Page 92: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/92.jpg)
![Page 93: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/93.jpg)
![Page 96: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/96.jpg)
user_pref("privacy.trackingprotection.enabled",true);user_pref("privacy.donottrackheader.enabled", true);
user_pref("device.sensors.enabled", false);user_pref("media.eme.enabled", false);user_pref("pdfjs.disabled", true);user_pref("browser.casting.enabled", false);user_pref("layout.css.visited_links_enabled", false);
user_pref("dom.battery.enabled", false); // Fx < 52user_pref("dom.netinfo.enabled", false);user_pref("media.video_stats.enabled", false);user_pref("dom.enable_performance", false);user_pref("webgl.enable-debug-renderer-info", false);
user_pref("media.peerconnection.ice.default_address_only", true); // Fx < 51user_pref("media.peerconnection.ice.no_host", true); // Fx >= 51user_pref("security.pki.sha1_enforcement_level", 2); // Fx < 52
user_pref("network.http.referer.XOriginPolicy", 1);
user_pref("privacy.clearOnShutdown.cookies", false);user_pref("network.cookie.cookieBehavior", 0);user_pref("network.cookie.lifetimePolicy", 3);user_pref("network.cookie.lifetime.days", 5);user_pref("network.cookie.thirdparty.sessionOnly", true);
user_pref("browser.urlbar.trimURLs", false);
?@fmarier
![Page 97: Hardening Firefox for Security and Privacy](https://reader031.vdocuments.us/reader031/viewer/2022021417/58ed3c4b1a28ab0c358b457b/html5/thumbnails/97.jpg)
Photo Credits:
shooting star: https://www.flickr.com/photos/funcrush/9496927983/
yellow triangle: https://www.flickr.com/photos/tillwe/2974932670/
jail cell: https://www.flickr.com/photos/mikecogh/5997920696
speedbump: https://www.flickr.com/photos/jputnam/9078451876/
cookie: https://www.flickr.com/photos/amagill/34754258/
chromecast: https://www.flickr.com/photos/medithit/10165535814/