User.js: ToDo: diffs FF74-FF75

for the record, I'm not touching anything in here until a final diff - so E doesn't have to fuck around with tracking what was moved

With Firefox 75 Mozilla add "Firefox caches "all trusted Web PKI Certificate Authority certificates known to Mozilla" locally." It`s create folder with name "security_state" inside profile folder. Is there any pref to disable this?

PS: I tried replacing the folder with an empty file with the same name. But this breaks the opening of pages in the browser. Private browsing mode not help.

@DerekLiBoB I think it is security.remote_settings.intermediates.enabled, will test later.

NEW
pref("geo.provider-country.network.scan", false);
pref("geo.provider-country.network.url", "blah blah");

• https://bugzilla.mozilla.org/show_bug.cgi?id=1589618

DEPRECATED
0205 - browser.search.geoip.url

I'm not entirely sure what's going on here. It's all in the bugzilla and patch. Note that the hidden pref in 0205, browser.search.region, is not deprecated. And the new pref geo.provider-country.network.scan is still default false in Nightly 77 - but it would get flipped to true at some stage (I assume, why else have it)

So, I assume:

• browser.search.geoip.url -> deprecate from 0205
• geo.provider-country.network.url -> new, add + blank to 0205
• geo.provider-country.network.scan -> new, add as false to 0205 (futureproofing)
• I have no idea if geo url is only used if geo scan is true, or until scan is flipped it's using the hidden pref: IDFK

For the latter...
It will make me very sad if this happens and I really will miss you all guys, but I fully understand and support you in any decision you make.
It is a life and on some point it needs to move on, but I hope this will happen later than sooner.

I would really like to help you, but am afraid that I am not really competent... where do you guys get all those info anyway?

❤️

@Thorin-Oakenpants @earthlng
whatever you guys do, i wish you well - i can hardly imagine how much time a project like this consumes and unfortunately it isn't one that has an end; there is no light at the end of the tunnel and therefore burnout is kind of inevitable

i'm actually a little surprised, and very appreciative, that you guys stuck with this for as long as you have because it must be an extremely tedious job ... for which you're not getting paid

love all around and my best to you both regardless of what you decide

I think you misunderstand - I am not burnt out, I have lots of time (but also other things I want to do), I have been and always will be uber-enthusiatic about this project, the user.js is very mature and only needs maintenance, each release there should only be a few things to check, and earthlng (while he has said that he is stepping back for whatever reason) will still provide a diff.

All the hard work's been done - this should be the easy part: we have a good system in place, great syntax, a swag of utilities (such as auto-updating. pref-cleaning. troubleshooting, user.js comparing, scratchpad scripts etc), an awesome wiki, a balanced well rounded default user.js with setup tags, and a much larger knowledge base and understanding (from tests and investigating etc): personally I've been at this (prefs) for 6+ years and have learnt a lot. Now should be the fucking easy part :)

We all have different skills / knowledge etc. While I appreciate the help from others, let's be honest here: 95% of the work was done by earthlng and myself (and that's OK: not complaining). But I don't have all the answers: and while often it's fairly straight forward: sometimes it isn't, not everything is documented or easy to follow - and that's where I relied on earthlng (and I trust him, whereas anyone else I would question and try to validate it myself: i.e if I'm going to add something, I want to be 100% sure that it's correct: but if E said it, then 9 times out of 10 I take his word at face value: edit: that's not to say things aren't checked, I mean on things I lack knowledge: but I do try) And between us, we always managed to find all the answers

^^ Edit: It's important that someone is fact checking: because no one if correct all the time. That's my point

But E's not helping anymore. So either others step up to help fill that void, or I can try and muddle my way through things I don't or can't fully understand - except that is not the best solution. And I don't want to compromise the integrity of the project (at least between E and myself we always found a few flaws with each other's reasoning or research: i.e two heads are better than one: more eyes on the info: etc). But expecting one person to do it all is not good. And if no one can/will help out when I ask for it, then there's not much point continuing (which would fuck me off, because this should be the easy part - have I said that already?)

So all I was asking was for some help, that's all - namely: when it comes down to working out what is going on in the source code (because I am not proficient at all in this area)

well let's hope you get the help you need ... with this project i mean :)

So 0205 was about setting search defaults when you first run FF (or maybe even per new profile). In this commit I fixed the wording (from results to defaults) - seems like I misunderstood what this pref does

source

In order to set the right default search engine for your location, Firefox will perform a geolocation lookup once by contacting Mozilla's servers and store the country-level result locally. This connection happens on the first start of Firefox - in case you want to prohibit that, you will have to preconfigure the browser and set the browser.search.geoip.url preference to a blank string.

That page looks fairly up to date (snippets, what's new), but of course that pref is now obsolete.

Since this is just a first-run pref (or even if they added code to re-trigger it for a one-time change of search partners), then it's not something we need to include. Tor Browser changed them, because they are "preconfiguring", not applying a user.js (and they were concerned about the connection to Mozilla: not because they don't trust Mozilla, but they have their own search engines and as a rule don't want outbound connections they don't control or aren't necessary). I also don't see an issue with what Firefox gives people for default search engines: 1) we don't dictate to our users what search engines they should use because what they use is up to them: it's personal/relevant to their needs and depends on their language etc and 2) our audience should already know what they should use for a search engine

So what I'll do is actually remove those two prefs: the 0205 ones

So that leaves the two new prefs. Part of it is consistent naming (to geo.provider) etc and overall there is a meta ticket for what they're calling "region" detection ... and if you look at the last ticket added, 1628674, it's titled "Create browser documentation for Region.jsm" .. so who knows exactly what the overall plan is for applying "region" to everything

At the moment it looks like search only - but I'm guessing this could be expanded and applied to almost anything: but I would expect that to be things like Pocket, Snippets, etc: i.e not exposed to web content. So I honestly don't think we need to worry about them. Moving them to ignore

pref("media.eme.require-app-approval", false);

• moved to ignore
  
  
  
  • https://bugzilla.mozilla.org/show_bug.cgi?id=1587522
  
  
  • it'll get flipped when they're ready and I think it's android only anyway
  
  

pref("dom.document.exec_command.nested_calls_allowed", true);

• moved to ignore
• https://bugzilla.mozilla.org/show_bug.cgi?id=1611374
• this is currently being tested in nightly/dev and will ride the train when ready

pref("network.http.stale_while_revalidate.enabled", true);

• moving to ignore
  
  
  
  • no ticket, haven't searched yet
  
  
  • 1611651
  
  

Pants and Earthlng you both deserve gold medals and purple hearts for the work you have done in the privacy arena. You two are unsung heros and you should go down in history as two of the valiant who helped carry the ring to Mordor.

When I first started learning how difficult it is to reclaim some semblance of privacy, I was amazed by the fact that so few are making such a strong stand against so many. The tidal wave of big data exploitation is monstrous and powerful. And the people fighting back are lonesome warriors trying to stem the tide with only their skills and their own bit of free time.

So on behalf of everyone out there who has benefited greatly from your efforts... THANK YOU!!!

I have been following this project for a while and have been constantly impressed by your diligence and determination to do it right. It makes such a difference to a user like me because I just don't have the knowledge to keep my browser safe and hardened. To be able to count on people like you to help me get there is priceless.

I know the most difficult thing of all is to go it alone. But please know that there are oodles of people like me out there who are deeply grateful for what you are doing. And I would bet that you will get more help.

It really is amazing what a difference one person can make. I think about you, or someone like Gorhill, who wrote uB0 as a quick fix to a problem he found. What if any of you hadn't done what you did? We would have no swords, no shields, nothing, zip, zero, to fight the big monsters with. It's easy to take the tools we have for granted, but someone, somewhere made significant sacrifices in their personal lives so the rest of us could benefit.

All in all, I just had to take the time to create an account today so I could say basically this:
I, for one, am so glad to live in a world where people like you are doing what you do.

pref("dom.forms.requestsubmit.enabled", true); // prev: false

• FF73+ : 1552301
• spec
• MDN

requestSubmit offers a way to validate a form before submitting it. I don't see an issue here, none of the specs etc seem to indicate privacy concerns - and AFAIK code can already tell what information has been input/selected (or removed before submission). Unless I'm missing something - anyone?

As for the last two items, both changes, I cannot find any reference to them in our diffs for when they were added, so I'll have to do some more digging

• pref("browser.tabs.remote.separatePrivilegedMozillaWebContentProcess", true); // prev: false
  
  
  
  • 1578742 - access denied
  
  
  • mercurial
  
  
• pref("security.remote_settings.intermediates.enabled", true); // prev: false
  
  
  
  • 1597743
  
  

Update:

// Pref to control whether we use a separate privileged content process
// for certain mozilla webpages (which are listed in the pref
// browser.tabs.remote.separatedMozillaDomains).
pref("browser.tabs.remote.separatePrivilegedMozillaWebContentProcess", true);

currently browser.tabs.remote.separatedMozillaDomains lists AMO and accounts. The pref was added in 69 1539595 - Access denied - Create a separate content process type for privleged mozilla content - there's a bunch of changes on mercurial for this ticket - here's one

So either of these two prefs could be flipped: but I do not see the need / threat. First, the security and reasons behind them (access denied) would be valid: extra protections or whatnot for accounts. As for AMO, as long as we still get extensions to work on them (which they do) then I have no issue there either - so moving to ignore

75 release notes

Firefox will locally cache all trusted Web PKI Certificate Authority certificates known to Mozilla. This will improve HTTPS compatibility with misconfigured web servers and improve security.

I'm guessing for now that this is the security.remote_settings.intermediates.enabled pref. If everyone is getting the same cache, then what is the threat here? I'm not against turning it off, but I need more info - @rusty-snake

pref("dom.document.exec_command.nested_calls_allowed", true);

Relative to the WebApps & Extensions (External grammar and spell checkers, auto text entering mechanisms, etc.)

Smth about not allowing nested execCommand as is currently practiced by Chrome. execCommandshould cause a beforeinput event that should use the regular inputTypes corresponding to the command (otherwise an empty string).

This is just a temporary crutch (a plan for PR1 + PR2). But the inputType is not perfect itself and a more permanent solution needed in the future. This should make browser users safer.

So, there are none threats for now, let devs playing with this. May be Ignored.
Just FYI and reference for searching this pref.

I have a question. My issue is the next. I have my own "user.js" that much wider than "ghacks-user.js". This is not a "template", but reworked and complete "ready to go" config. I want to do a quickly auto-checks for the deprecated prefs and make a comparison between "mine" and "stock".

If I understand right, there is no way to grab somehow the complete list of ALL prefs that are present (active) inside the every rescent FF version? I suppose, this is the case we have manual diffs, Scratchpad Scripts and prefsCleaner scripts?

Every time I'm reading all "ghacks-user.js" advises and make changes manually (huh!), most of the time. Because diffs info is relative to global FF changes (more useful for me), but scripts are intended basicly for the "ghacks-user.js" progress.

The main question is about automatic catching of the deprecated (non-existent) prefs, including those were not touched by the "ghacks-user.js" project.

Or may be, somewhere there is a webpage, where devs publish some kind of list of the deprecated prefs for the last release version?

So, there are none threats for now, let devs playing with this. May be Ignored.
Just FYI and reference for searching this pref.

Thanks - was already done and noted in OP. I'm happy for these sorts of things to just ride the train: one less item to add, one less item to note when they flip it, one less item to remove as dead wood

I have a question ...

I'm not the person to ask: @earthlng does the diffs - see his repo. You could combine his archived diffs and build a deprecated list for all-time (or going back as far as he has)

build a deprecated list for all-time

Thanks for the link and good idea. I'm going to finalize my "user.js" and it will be one-time global check to avoid "human-error" factor and polish my config.

All in all, I just had to take the time to create an account today

@Zogski - thanks for your kind words (and creating an account to do so). I don't need time or motivation - I just need others to double check me and help in areas I'm not sure about

security.remote_settings.intermediates.enabled - https://wiki.mozilla.org/Security/CryptoEngineering/Intermediate_Preloading#Privacy
Great feature AFAICT. The only minor problem is that it can take up to 30 days for clients to get the full data store.

@iWARR here's a list of all the FF75 prefs with default values (if that's what you're after).

@Zogski thank you for your kind words!

@earthlng Can't grab this via TOR: "Please, disable your adblocker". Can you reup this on less intruisive website?

But, WOW! If you could publish such thing on a regular basis, that should be so GREAT!
(I don't know whether collecting this may appear a huge task for you, so I don't insist on it.)
Anyway, this list will aslo become a very helpful addition for polishing my present final config for FF75.

(For anybody reading this, such comparison can be done using Compare-UserJS (by claustromaniac)

Can you reup this on less intruisive website?

that site doesn't even need JS - it doesn't get much better than that. And it works fine for me over TOR. Maybe try https://controlc.com/2b50f808/ and then click on the "fullscreen" button. I guess the hash it uses times out after a while or something like that

If you could publish such thing on a regular basis, that should be so GREAT!

i explained in the past how you can create that list by yourself if you need/want to. I'll see if I can find that post so I won't have to re-explain everything

I'll see if I can find that post so I won't have to re-explain everything

found it

I just need others to double check me and help in areas I'm not sure about

I'm still here but I just won't be as active as I once was

Thanks for finishing this one all by yourself btw! 👍 💋

@iWARR please post your OT questions to earthlng elsewhere - like maybe your #927 issue

OK, so we're down to one item left - which I've already said I can't see any privacy concerns over - that's dom.forms.requestsubmit.enabled changed from false to true

Anyone care to comment?

https://developer.mozilla.org/en-US/docs/Web/API/HTMLFormElement/requestSubmit#Usage_notes

No privacy/security issue.

Sorry about the lack of contribution. I've been locked on Firefox 68 for a long while now, because I didn't review Firefox changes for 69+. Falling behind more than 2-3 weeks only happened once in all that time since I found this Japanese guy who published pref differentials, some 10 years ago...

@Thorin-Oakenpants
I need to catch up 6+ versions before I can try and be useful, but if you mark clearly which preferences annoy you on each release, for example with a special section in the first post or a colour code, I can focus my contribution to this repo on them explicitly, though only starting from Firefox 77 probably...

@crssi
Since you said you would like to help but don't know how, can I ask what you do know? In the past, did you try looking up what a preference does using Bugzilla, DXR, SearchFox, Mozilla developers discussions, or any first-hand source? How do you use this repo?

Like, maybe we can put up a straightforward guide for people to follow in order to document a pref or mark it as ignorable? That would likely not work for those more obscure preferences that Pants wants help with, but at least in my experience, easily checked preferences piled up can make for a significant part of the work.

well, generally - if it's still in the non-ignore section then I haven't checked it out or decided what to do. When earthlng posts the diffs, I like to get in there as soon as possible and remove all the obvious items to ignore, and E usually moves some when he first posts. I don't think I need to color code anything. It's just a case of double-checking by others that I don't miss anything, or get something wrong. Otherwise, I explicitly ask.

Just to be completely transparent, my wish is to make sure this repository lives, meaning my contribution needs to fulfil two conditions: Compatibility with my constraints listed below (so it can be sustainable over time), and participating in the lightening of your burden (what that means being ultimately your call).

So are you sure that what you want from now on is to check all preferences yourself, and have people double check?

Are you sure you would not rather/also have people document what some preferences do, for you to then double check much faster because it's properly sourced? (Which also means that trust is often not necessary)

The former attracts contributions from people who watch the repo regularly and notice your day to day questions/pondering, and from people you target directly with a bat signal. Unfortunately I would not notice any of these in time to be useful.

Due to things, at least in my case, the safest way to ensure a contribution that's both timely and sustainable over time would be that there exists a way to pop in and see right away where an extra pair of hands is needed *this instant*. The format you guys use right now allows this just fine when it comes to documenting prefs, since it's easy to see which preferences have not been reviewed yet.

If you prefer having people only double check your work, it seems that without any tweak to the current format fitting my constraints, the only way might be for me to come at the very end to double check the changes you decided to make. Is that any useful? It doesn't seem to lighten your workload, so I am not sure how it contributes to the goal in my first paragraph, but if that's what you prefer then ok =)