v118 (#235)

Author: yokoffing

Fastfox.js

@@ -3,7 +3,7 @@
  * Fastfox                                                                              *
  * "Non ducor duco"                                                                     *
  * priority: speedy browsing                                                            *
- * version: 117                                                                         *
+ * version: 118                                                                         *
  * url: https://github.com/yokoffing/Betterfox                                          *
  ***************************************************************************************/
 
@@ -231,7 +231,6 @@ user_pref("dom.security.sanitizer.enabled", true);
 
 // PREF: if your hardware doesn't support Webrender, you can fallback to Webrender's software renderer
 // [1] https://www.ghacks.net/2020/12/14/how-to-find-out-if-webrender-is-enabled-in-firefox-and-how-to-enable-it-if-it-is-not/
-//user_pref("gfx.webrender.enabled", true); // [REMOVED FF118?]
 //user_pref("gfx.webrender.software", true); // Software Webrender uses CPU instead of GPU
     //user_pref("gfx.webrender.software.opengl", true); // LINUX
 

Peskyfox.js

@@ -3,7 +3,7 @@
  * Peskyfox                                                                 *
  * "Aquila non capit muscas"                                                *
  * priority: remove annoyances                                              *
- * version: 117                                                             *
+ * version: 118                                                             *
  * url: https://github.com/yokoffing/Betterfox                              *
  ***************************************************************************/
 
@@ -388,7 +388,7 @@ user_pref("pdfjs.sidebarViewOnLoad", 2);
 //user_pref("browser.tabs.loadDivertedInBackground", false); // DEFAULT
 
 // PREF: force bookmarks to open in a new tab, not the current tab
-user_pref("browser.tabs.loadBookmarksInTabs", true);
+//user_pref("browser.tabs.loadBookmarksInTabs", true);
     //user_pref("browser.tabs.loadBookmarksInBackground", true); // load bookmarks in background
 
 // PREF: leave Bookmarks Menu open when selecting a site
@@ -460,9 +460,9 @@ user_pref("findbar.highlightAll", true);
 //user_pref("ui.key.menuAccessKeyFocuses", false);
     //user_pref("ui.key.menuAccessKey", 18); // DEFAULT
 
-// PREF: CTRL+TAB cycles tabs in chronological order instead of
-// recently-used order
-//user_pref("browser.ctrlTab.recentlyUsedOrder", false);
+// PREF: cycle through tabs in recently used order
+// [SETTING] Ctrl+Tab cycles through tabs in recently used order
+//user_pref("browser.ctrlTab.sortByRecentlyUsed", true);
 
 // PREF: Spell-check
 // 0=none, 1-multi-line, 2=multi-line & single-line

Securefox.js

@@ -3,7 +3,7 @@
  * Securefox                                                                *
  * "Natura non contristatur"                                                *     
  * priority: provide sensible security and privacy                          *
- * version: 117                                                             *
+ * version: 118                                                             *
  * url: https://github.com/yokoffing/Betterfox                              *                   
 ****************************************************************************/
 
@@ -118,7 +118,7 @@ user_pref("urlclassifier.features.socialtracking.skipURLs", "*.instagram.com, *.
     //user_pref("privacy.partition.serviceWorkers", true); // [DEFAULT: true FF105+]
     //user_pref("privacy.partition.network_state.ocsp_cache", true); // enabled with "Strict"
     //user_pref("privacy.partition.bloburl_per_agent_cluster", false); // DEFAULT [REGRESSIONS - DO NOT TOUCH]
-    //user_pref("privacy.partition.bloburl_per_partition_key", true); // enabled with "Strict"? [FF118+]
+    user_pref("privacy.partition.bloburl_per_partition_key", true); // [FF118+]
 // enable APS (Always Partitioning Storage) [FF104+]
 //user_pref("privacy.partition.always_partition_third_party_non_cookie_storage", true); // [DEFAULT: true FF109+]
 //user_pref("privacy.partition.always_partition_third_party_non_cookie_storage.exempt_sessionstorage", false); // [DEFAULT: false FF109+]
@@ -247,7 +247,13 @@ user_pref("security.remote_settings.crlite_filters.enabled", true);
 user_pref("security.pki.crlite_mode", 2);
 
 // PREF: HTTP Public Key Pinning (HPKP)
-// If you rely on an antivirus to protect your web browsing
+// HPKP enhances the security of SSL certificates by associating
+// a host with their expected public key. It prevents attackers
+// from impersonating the host using fraudulent certificates,
+// even if they hold a valid certificate from a trusted certification authority.
+// HPKP ensures that the client maintains a secure connection with
+// the correct server, thereby reducing the risk of man-in-the-middle (MITM) attacks.
+// [NOTE] If you rely on an antivirus to protect your web browsing
 // by inspecting ALL your web traffic, then leave at 1.
 // [ERROR] MOZILLA_PKIX_ERROR_KEY_PINNING_FAILURE
 // By default, pinning enforcement is not applied if a user-installed
@@ -263,16 +269,12 @@ user_pref("security.cert_pinning.enforcement_level", 2);
 //user_pref("security.enterprise_roots.enabled", false); // DEFAULT
     //user_pref("security.certerrors.mitm.auto_enable_enterprise_roots", false);
 
-// PREF: disable Microsoft Family Safety [WINDOWS 8-10]
-// [1] https://wiki.mozilla.org/QA/Windows_Child_Mode
-//user_pref("security.family_safety.mode", 0);
-
 /****************************************************************************
  * SECTION: SSL (Secure Sockets Layer) / TLS (Transport Layer Security)    *
 ****************************************************************************/
 
 // PREF: display warning on the padlock for "broken security"
-// Bug: warning padlock not indicated for subresources on a secure page! [2]
+// [NOTE] Warning padlock not indicated for subresources on a secure page! [2]
 // [1] https://wiki.mozilla.org/Security:Renegotiation
 // [2] https://bugzilla.mozilla.org/1353705
 user_pref("security.ssl.treat_unsafe_negotiation_as_broken", true);
@@ -483,6 +485,17 @@ user_pref("privacy.history.custom", true);
 // [2] https://winaero.com/firefox-75-strips-https-and-www-from-address-bar-results/
 //user_pref("browser.urlbar.trimURLs", true); // DEFAULT
 
+// PREF: trim https:// from the URL bar [FF119+]
+// Firefox will hide https:// from the address bar, but not subdomains like www.
+// [TEST] http://www.http2demo.io/
+// [1] https://www.ghacks.net/2023/09/19/firefox-119-will-launch-with-an-important-address-bar-change/
+//user_pref("browser.urlbar.trimHttps", true);
+
+// PREF: display "Not Secure" text on HTTP sites
+// Needed with HTTPS-First Policy; not needed with HTTPS-Only Mode.
+user_pref("security.insecure_connection_text.enabled", true);
+user_pref("security.insecure_connection_text.pbmode.enabled", true);
+
 // PREF: do not show search terms in URL bar [FF110+] [FF113+]
 // Show search query instead of URL on search results pages.
 // [SETTING] Search>Search Bar>Use the address bar for search and navigation>Show search terms instead of URL...
@@ -542,13 +555,6 @@ user_pref("browser.formfill.enable", false);
 // and is a security risk (e.g. common typos & malicious sites set up to exploit this).
 //user_pref("browser.fixup.alternate.enabled", false); // [DEFAULT FF104+]
 
-// PREF: display "Not Secure" text on HTTP sites
-// Needed with HTTPS-First Policy; not needed with HTTPS-Only Mode.
-user_pref("security.insecure_connection_text.enabled", true);
-user_pref("security.insecure_connection_text.pbmode.enabled", true);
-//user_pref("security.insecure_connection_icon.enabled", true); // DEFAULT
-//user_pref("security.insecure_connection_icon.pbmode.enabled", true); // DEFAULT
-
 // PREF: Disable location bar autofill
 // https://support.mozilla.org/en-US/kb/address-bar-autocomplete-firefox#w_url-autocomplete
 //user_pref("browser.urlbar.autoFill", false);
@@ -637,27 +643,23 @@ user_pref("dom.security.https_only_mode_error_page_user_suggestions", true);
  * SECTION: DNS-over-HTTPS                                                    *
 ******************************************************************************/
 
-// PREF: DNS-over-HTTPS (DoH) mode
-// Mozilla uses Cloudfare by default. NextDNS is also an option.
-// You can set this to 0 if you are already using secure DNS for
-// your entire network (e.g. OS-level, router-level).
+// PREF: DNS-over-HTTPS (DoH) implementation
+// [NOTE] Mode 3 has site exceptions with a nice UI on the error page.
+// [SETTINGS] Privacy & Security > DNS over HTTPS > Enable secure DNS using:
 // [NOTE] Mode 3 has site-exceptions with a nice UI on the error page
 // [1] https://hacks.mozilla.org/2018/05/a-cartoon-intro-to-dns-over-https/
-// [2] https://www.internetsociety.org/blog/2018/12/dns-privacy-support-in-mozilla-firefox/
-// 0=disable DoH (default)
-// 2=use DoH; fall back to native DNS if necessary
-// 3=only use DoH; do not fall back to native DNS
-// 5=explicitly disable DoH
+// [2] https://support.mozilla.org/en-US/kb/dns-over-https#w_protection-levels-explained
+// 0= Default Protection: disable DoH (default)
+// 2= Increased Protection: use DoH and fall back to native DNS if necessary
+// 3= Max Protection: only use DoH; do not fall back to native DNS
+// 5= Off: disable DoH
 //user_pref("network.trr.mode", 0); // DEFAULT
 
 // PREF: display fallback warning page [FF115+]
-// Show a warning checkbox UI in modes 0 + 2.
+// Show a warning checkbox UI in modes 0 or 2 above.
 //user_pref("network.trr_ui.show_fallback_warning_option", false); // DEFAULT
 //user_pref("network.trr.display_fallback_warning", false); // DEFAULT
 
-// PREF: fallback to native DNS upon network errors
-//user_pref("network.trr.strict_native_fallback", false); // DEFAULT
-
 // PREF: DoH resolver
 // [1] https://github.com/uBlockOrigin/uBlock-issues/issues/1710
 //user_pref("network.trr.uri", "https://xxxx/dns-query");
@@ -666,6 +668,9 @@ user_pref("dom.security.https_only_mode_error_page_user_suggestions", true);
 // PREF: adjust providers
 //user_pref("network.trr.resolvers", '[{ "name": "Cloudflare", "url": "https://mozilla.cloudflare-dns.com/dns-query" },{ "name": "SecureDNS", "url": "https://doh.securedns.eu/dns-query" },{ "name": "AppliedPrivacy", "url": "https://doh.appliedprivacy.net/query" },{ "name": "Digitale Gesellschaft (CH)", "url": "https://dns.digitale-gesellschaft.ch/dns-query" }, { "name": "Quad9", "url": "https://dns.quad9.net/dns-query" }]'); 
 
+// PREF: fallback to native DNS upon network errors
+//user_pref("network.trr.strict_native_fallback", false); // DEFAULT
+
 // PREF: EDNS Client Subnet (ECS)
 // [WARNING] In some circumstances, enabling ECS may result
 // in suboptimal routing between CDN origins and end users [2].
@@ -874,13 +879,6 @@ user_pref("pdfjs.enableScripting", false);
 // [1] https://bugzilla.mozilla.org/buglist.cgi?bug_id=1659530,1681331
 user_pref("extensions.postDownloadThirdPartyPrompt", false);
 
-// PREF: disable permissions delegation [deprecated in FF118]
-// Currently applies to cross-origin geolocation, camera, mic and screen-sharing
-// permissions, and fullscreen requests. Disabling delegation means any prompts
-// for these will show/use their correct 3rd party origin.
-// [1] https://groups.google.com/forum/#!topic/mozilla.dev.platform/BdFOMAuCGW8/discussion
-user_pref("permissions.delegation.enabled", false);
-
 // PREF: disable middle click on new tab button opening URLs or searches using clipboard [FF115+]
 // Enable if you're using LINUX.
 //user_pref("browser.tabs.searchclipboardfor.middleclick", false); // DEFAULT WINDOWS macOS
@@ -947,6 +945,7 @@ user_pref("permissions.delegation.enabled", false);
 // 0=send full URI (default), 1=scheme+host+port+path, 2=scheme+host+port
 // [1] https://blog.mozilla.org/security/2021/03/22/firefox-87-trims-http-referrers-by-default-to-protect-user-privacy/
 // [2] https://web.dev/referrer-best-practices/
+// [3] https://www.reddit.com/r/waterfox/comments/16px8yq/comment/k29r6bu/?context=3
 user_pref("network.http.referer.XOriginTrimmingPolicy", 2);
 
 /******************************************************************************
@@ -1117,10 +1116,10 @@ user_pref("browser.safebrowsing.downloads.remote.enabled", false);
 // [3] https://www.reddit.com/r/firefox/comments/p8g5zd/why_does_disabling_accessibility_services_improve
 // [4] https://winaero.com/firefox-has-accessibility-service-memory-leak-you-should-disable-it/
 // [5] https://www.ghacks.net/2022/12/26/firefoxs-accessibility-performance-is-getting-a-huge-boost/
-user_pref("accessibility.force_disabled", 1);
+//user_pref("accessibility.force_disabled", 1);
     //user_pref("devtools.accessibility.enabled", false);
 
-// PREF: disable Firefox accounts
+// PREF: disable Firefox Sync
 // [ALTERNATIVE] Use xBrowserSync [1]
 // [1] https://addons.mozilla.org/en-US/firefox/addon/xbs
 // [2] https://github.com/arkenfox/user.js/issues/1175
@@ -1131,6 +1130,9 @@ user_pref("identity.fxaccounts.enabled", false);
 user_pref("browser.tabs.firefox-view", false);
 //user_pref("browser.tabs.firefox-view-next", false); // [FF119+]
 
+// PREF: disable the Firefox View tour from popping up
+//user_pref("browser.firefox-view.feature-tour", "{\"screen\":\"\",\"complete\":true}");
+
 // PREF: disable Push Notifications API [FF44+]
 // Push is an API that allows websites to send you (subscribed) messages even when the site
 // isn't loaded, by pushing messages to your userAgentID through Mozilla's Push Server.
@@ -1258,7 +1260,7 @@ user_pref("datareporting.policy.dataSubmissionEnabled", false);
 // [SETTING] Privacy & Security>Firefox Data Collection & Use>Allow Firefox to install and run studies
 user_pref("app.shield.optoutstudies.enabled", false);
 
-// Personalized Extension Recommendations in about:addons and AMO
+// PREF: Personalized Extension Recommendations in about:addons and AMO
 // [NOTE] This pref has no effect when Health Reports are disabled.
 // [SETTING] Privacy & Security>Firefox Data Collection & Use>Allow Firefox to make personalized extension recommendations
 user_pref("browser.discovery.enabled", false);

personal/user-overrides.js

@@ -55,6 +55,8 @@ user_pref("browser.search.update", false); // do not update opensearch engines
 user_pref("network.dns.skipTRR-when-parental-control-enabled", false); // bypass parental controls when using DoH
 user_pref("network.trr.confirmationNS", "skip"); // skip TRR confirmation request
 user_pref("extensions.webextensions.restrictedDomains", ""); // remove Mozilla domains so adblocker works on pages
+user_pref("browser.firefox-view.feature-tour", "{\"screen\":\"\",\"complete\":true}"); // disable the Firefox View tour from popping up for new profiles
+user_pref("accessibility.force_disabled", 1); // disable Accessibility features
 
 /** PESKYFOX ***/
 user_pref("devtools.accessibility.enabled", false); // removes un-needed "Inspect Accessibility Properties" on right-click
@@ -77,7 +79,8 @@ user_pref("browser.bookmarks.max_backups", 0); // minimize disk use; manually ba
 user_pref("view_source.wrap_long_lines", true);  // wrap source lines
 user_pref("devtools.debugger.ui.editor-wrapping", true);  // wrap lines in devtools
 user_pref("browser.zoom.full", false); // text-only zoom, not all elements on page
-user_pref("pdfjs.sidebarViewOnLoad", 2); // [HIDDEN] force showing of Table of Contents in sidebar for PDFs (if available)
+//user_pref("pdfjs.sidebarViewOnLoad", 2); // [HIDDEN] force showing of Table of Contents in sidebar for PDFs (if available)
+user_pref("browser.tabs.loadBookmarksInTabs", true); // force bookmarks to open in a new tab, not the current tab
 user_pref("ui.key.menuAccessKey", 0); // remove underlined characters from various settings
 user_pref("general.autoScroll", false); // disable unintentional behavior for middle click
 user_pref("ui.SpellCheckerUnderlineStyle", 1); // dots for spell check errors
@@ -93,6 +96,7 @@ user_pref("privacy.userContext.enabled", false); // disable Containers functiona
 user_pref("browser.crashReports.unsubmittedCheck.enabled", false); // true by default on NIGHTLY
 //user_pref("browser.urlbar.suggest.quickactions", false); // Quick Actions in URL bar
 //user_pref("xpinstall.signatures.required", false); // [ESR/DEV/NIGHTLY]
+user_pref("browser.urlbar.trimHttps", true); // hide https in URL bar [FF119]
 
 /** DELETE IF NOT WINDOWS DESKTOP ***/
 user_pref("network.trr.mode", 3); // enable TRR (without System fallback)

user.js

@@ -10,7 +10,7 @@
 /****************************************************************************
  * Betterfox                                                                *
  * "Ad meliora"                                                             *
- * version: 117                                                             *
+ * version: 118                                                             *
  * url: https://github.com/yokoffing/Betterfox                              *
 ****************************************************************************/
 
@@ -72,6 +72,7 @@ user_pref("network.predictor.enable-prefetch", false);
 user_pref("browser.contentblocking.category", "strict");
 user_pref("urlclassifier.trackingSkipURLs", "*.reddit.com, *.twitter.com, *.twimg.com, *.tiktok.com");
 user_pref("urlclassifier.features.socialtracking.skipURLs", "*.instagram.com, *.twitter.com, *.twimg.com");
+user_pref("privacy.partition.bloburl_per_partition_key", true);
 user_pref("browser.uitour.enabled", false);
 user_pref("privacy.globalprivacycontrol.enabled", true);
 user_pref("privacy.globalprivacycontrol.functionality.enabled", true);
@@ -121,7 +122,6 @@ user_pref("network.auth.subresource-http-auth-allow", 1);
 user_pref("security.mixed_content.block_display_content", true);
 user_pref("pdfjs.enableScripting", false);
 user_pref("extensions.postDownloadThirdPartyPrompt", false);
-user_pref("permissions.delegation.enabled", false);
 
 /** HEADERS / REFERERS ***/
 user_pref("network.http.referer.XOriginTrimmingPolicy", 2);
@@ -137,7 +137,6 @@ user_pref("media.peerconnection.ice.default_address_only", true);
 user_pref("browser.safebrowsing.downloads.remote.enabled", false);
 
 /** MOZILLA ***/
-user_pref("accessibility.force_disabled", 1);
 user_pref("identity.fxaccounts.enabled", false);
 user_pref("browser.tabs.firefox-view", false);
 user_pref("permissions.default.desktop-notification", 2);
@@ -230,7 +229,6 @@ user_pref("browser.download.open_pdf_attachments_inline", true);
 user_pref("pdfjs.sidebarViewOnLoad", 2);
 
 /** TAB BEHAVIOR ***/
-user_pref("browser.tabs.loadBookmarksInTabs", true);
 user_pref("browser.bookmarks.openInTabClosesMenu", false);
 user_pref("browser.menu.showViewImageInfo", true);
 user_pref("findbar.highlightAll", true);