felschr/nixos-config
1
1
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

feat(browsers): improve Firefox privacy & security settings

Browse source
This commit is contained in:
Felix Schröter 2021-12-12 01:56:58 +01:00
parent 8b54a4b5d8
commit 676ffbfc14
No known key found for this signature in database
GPG key ID: 910ACB9F6BD26F58
1 changed files with 6 additions and 16 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

22
home/browsers/firefox.nix
View file

@ -8,28 +8,18 @@ let
config.gtk.gtk3.extraConfig.gtk-application-prefer-dark-theme; config.gtk.gtk3.extraConfig.gtk-application-prefer-dark-theme;
sharedSettings = { sharedSettings = {
# Privacy recommendations from https://www.privacytools.io/browsers/#about_config # Privacy & Security Improvements
"privacy.firstparty.isolate" = true; "browser.contentblocking.category" = "strict";
# "privacy.resistFingerprinting" = true; # forces ui.systemUsesDarkTheme to false
"privacy.trackingprotection.fingerprinting.enabled" = true;
"privacy.trackingprotection.cryptomining.enabled" = true;
"privacy.trackingprotection.socialtracking.enabled" = true;
"privacy.trackingprotection.enabled" = true;
"browser.send_pings" = false;
"browser.urlbar.speculativeConnect.enabled" = false; "browser.urlbar.speculativeConnect.enabled" = false;
"dom.event.clipboardevents.enabled" = false;
"dom.security.https_only_mode" = true; "dom.security.https_only_mode" = true;
"dom.security.https_only_mode_ever_enabled" = true; "media.eme.enabled" = false; # disables DRM
"media.eme.enabled" = false;
"media.gmp-widevinecdm.enabled" = false;
"media.navigator.enabled" = false;
"network.cookie.cookieBehavior" = 1;
# causes CORS error on waves.exchange when set to 2 # causes CORS error on waves.exchange when set to 2
"network.http.referer.XOriginPolicy" = 1; "network.http.referer.XOriginPolicy" = 1;
"network.http.referer.XOriginTrimmingPolicy" = 2; "network.http.referer.XOriginTrimmingPolicy" = 2;
# "webgl.disabled" = true;
"browser.sessionstore.privacy_level" = 2;
"network.IDN_show_punycode" = true; "network.IDN_show_punycode" = true;
# forces ui.systemUsesDarkTheme to false
# "privacy.resistFingerprinting" = true;
# "webgl.disabled" = true;
# Disable DNS over HTTPS (done system-wide) # Disable DNS over HTTPS (done system-wide)
"network.trr.mode" = 5; "network.trr.mode" = 5;