We are still actively working on the spam issue.

Difference between revisions of "Firefox"

From InstallGentoo Wiki
Jump to: navigation, search
m (Adblocking, privacy, and security)
m (Adblocking, privacy, and security: - adds note about priv8)
Line 53: Line 53:
 
* [https://addons.mozilla.org/en-US/firefox/addon/requestpolicy/ RequestPolicy] — Controls cross-site requests. Discontinued.
 
* [https://addons.mozilla.org/en-US/firefox/addon/requestpolicy/ RequestPolicy] — Controls cross-site requests. Discontinued.
 
* [https://addons.mozilla.org/en-US/firefox/addon/self-destructing-cookies/ Self-Destructing Cookies] — Auto deletes cookies after tab close.
 
* [https://addons.mozilla.org/en-US/firefox/addon/self-destructing-cookies/ Self-Destructing Cookies] — Auto deletes cookies after tab close.
* [https://addons.mozilla.org/en-US/firefox/addon/priv8/ Priv8] — a Firefox addon that uses part of the security model of Firefox OS to create sandboxed tabs and manage them.
+
* [https://addons.mozilla.org/en-US/firefox/addon/priv8/ Priv8] — a Firefox addon that uses part of the security model of Firefox OS to create sandboxed tabs and manage them. Updated infrequently and might be incompatible with certain addons.
 
* [https://addons.mozilla.org/en-US/firefox/addon/session-manager/ SessionManager] — Along with many other features allows you to encrypt your Firefox session.
 
* [https://addons.mozilla.org/en-US/firefox/addon/session-manager/ SessionManager] — Along with many other features allows you to encrypt your Firefox session.
 
* [https://addons.mozilla.org/en-US/firefox/addon/ublock-origin/ uBlock Origin] — A lightweight and low-resource adblocker. Has many filter lists built in, with EasyList, Peter Lowe’s Ad server list, EasyPrivacy, and Malware domains enabled by default. Can fully replace NoScript in advanced mode and outperform it, whilst offering more features.
 
* [https://addons.mozilla.org/en-US/firefox/addon/ublock-origin/ uBlock Origin] — A lightweight and low-resource adblocker. Has many filter lists built in, with EasyList, Peter Lowe’s Ad server list, EasyPrivacy, and Malware domains enabled by default. Can fully replace NoScript in advanced mode and outperform it, whilst offering more features.

Revision as of 05:23, 31 January 2016

A true furry hero.

Firefox is a free and open source web browser developed and maintained by the Mozilla Foundation. It is known for its high degree of customisability through add-ons and its adherence to Web standards.

Official Branches

Unfortunately, the v3.6.x series of Firefox is now unsupported. It will no longer receive security or stability updates.

Mozilla offers six officially compiled branches or channels of Firefox. These are ESR, Stable, Beta, Aurora, Nightly, and UX.

  • The Extended support release or ESR branch of Firefox is geared towards large organisations who require long-term support for mass deployments, but it is can also be a good option for the technologically illiterate. It remains static for approximately one year after a major release, receiving new code only in the form of security and stability patches.
  • The Stable branch of Firefox is geared towards the the average home or office Web user. It receives a major update every six weeks if all goes according to plan, but security and stability patches are issued as needed in the meantime.
  • The Beta branch of Firefox is geared towards home users who want to try new features a few weeks early while contributing to Firefox development. It is generally quite stable with most remaining bugs being specific to certain configurations or drivers. In the course of a typical six week beta run, there are between seven and thirteen builds released.
  • The Aurora or alpha branch is intended for testing and debugging purposes, but it is more suitable for general use than Nightly. Naturally, some instability and a few bugs are to be expected.
  • The Nightly or pre-alpha branch is intended for testing and debugging purposes. It represents the bleeding edge of Firefox development, so the likelihood of encountering instability, security vulnerabilities, and major bugs is high. As the name implies, Nightly typically receives patches on a day-to-day basis and new features as soon as they become ready. Oddly, it is the only official branch in which native 64-bit builds for Windows are offered.
  • The UX (Nightly) branch is a clone of the Nightly branch used to début and test user interface changes like the Australis project before they are added to Nightly. At the time of this writing, UX builds appear to be identical to standard Nightly builds.

Notable Forks

Due to the free and open source nature of its code base, Firefox has given rise to several forks.

  • GNU IceCat is a fork maintained by the GNU Project for those who happen to be of one mind with Richard Stallman. In addition to removing and replacing the copyrighted or trademarked parts of Firefox, the maintainer has added a couple of minor privacy and security features.
  • Iceweasel is a fork maintained by the Debian Project. It is designed to allow the project to back-port as it pleased without running afoul of Mozilla's trademarks.
  • Pale Moon is a fork of Firefox ESR dedicated to providing an optimised Firefox with the classic user interface layout of the v3.6.x series. Pale Moon is offered in both 32-bit and 64-bit builds, and uses a fork of the Gecko rendering engine called Goanna. For a complete list of the differences between Pale Moon and Firefox, see this page.
  • The Tor Browser Bundle is a package designed specifically for the purposes of visiting Onion sites and browsing the Internet through the Tor network.
  • Waterfox is a highly optimised build of Firefox for 64-bit systems running Windows. Unfortunately, it is rarely updated.

Notable Add-Ons

Tree Style Tabs

Adblocking, privacy, and security

  • BetterPrivacy — Manages and auto destroys flash cookies, aka super cookies.
  • Blender — Automatically spoofs your user agent string to another popular one.
  • Certificate Patrol — Discover when certs have changed.
  • Cookie Monster — Manages cookies permissions.
  • Disconnect — lets you visualize and block the otherwise invisible websites that track your search and browsing history. Use PrivacyBadger instead, as it's directly maintained by the EFF and is completely free and open source, unlike Disconnect. No point in using this if you're already using uBlock and/or uMatrix.
  • HTTPS-Everywhere — Encrypts your communications with many major websites, making your browsing more secure. If you can only install a couple of add-ons, this should be one of them.
  • HTTPS Finder — Detects available https and creates HTTPS Everywhere rules.
  • NoScript — Allows JavaScript, Java and other executable content to run only from trusted domains of your choice.
  • Policeman [Not under active development, buggy] — Invaluable privacy and security addon that gives you precise control over what web requests are allowed. Create rules based on domain name and type of resource being requested. This single addon renders Adblock, NoScript1 and RequestPolicy mostly useless.
    • 1 Cannot replace NoScript's surrogate script functionality (which is very, VERY rarely used anyway). uBlock has a similar feature called redirect, whose purpose is to redirect blocked resources to neutered contents.
  • RefControl — Control what gets sent as the HTTP Referer on a per-site basis.
  • RequestPolicy — Controls cross-site requests. Discontinued.
  • Self-Destructing Cookies — Auto deletes cookies after tab close.
  • Priv8 — a Firefox addon that uses part of the security model of Firefox OS to create sandboxed tabs and manage them. Updated infrequently and might be incompatible with certain addons.
  • SessionManager — Along with many other features allows you to encrypt your Firefox session.
  • uBlock Origin — A lightweight and low-resource adblocker. Has many filter lists built in, with EasyList, Peter Lowe’s Ad server list, EasyPrivacy, and Malware domains enabled by default. Can fully replace NoScript in advanced mode and outperform it, whilst offering more features.
    • Not to be confused for 'uBlock', an EXTREMELY outdated fork with some very slight changes to the UI.
    • If you feel bad about blocking advertisements, make a deal with yourself: You'll stop blocking ads when major international internet companies stop serving malware.
  • uMatrix — Made by the creator of uBlock, uMatrix is a high performance matrix-based firewall that supports hosts files, capable of blocking a myriad of objects, complete with per-hostname and global toggles, as well as plenty of privacy oriented features. Able to replace NoScript1, policeman, and request policy continued. Can be used with uBlock.
  • User Agent Switcher — Spoofs your user-agent string to any value of your choice.

Customisability

Dev tools

Usability

  • FxIF — View EXIF data in image properties.
  • Greasemonkey — Manages Userscripts.
    • The Scriptish fork of this add-on that was once popular on /g/ is no longer recommended.
  • Redirector — Automatically redirects to user-defined urls on a per hyperlink basis.
  • Singing Stallman — The Singing Stallman icon bides its time in the toolbar, waiting to be invoked in your time of need.
  • Stylish — Create and use custom CSS styles for any website you want.
  • VimFxVim bindings without changes in the UI.
  • YouTube Center — Enhances YouTube. It is recommended that you use the developer version, as per their wiki.

Tweaking

Below are options in [about:config about:config] worth considering.

  • dom.storage.enabled FALSE - Disable "client-side session and persistent storage" cookies. (bad for 8ch - the replies hypelinks next to the post number disappears)
  • geo.enabled FALSE - Disable location data.
  • general.useragent.override - Create as a String value and insert your own useragent.
  • network.dns.disablePrefetch TRUE - Stop Firefox looking up IP addresses of links of the page you haven't/aren't going to.
  • network.http.pipelining TRUE - Possible speedup for some servers (send multiple files through one connection).
  • network.http.pipelining.max-optimistic-requests 8 - Total number of pipelines.
  • network.http.pipelining.ssl TRUE - Pipeline with HTTPS sites.
  • network.http.proxy.pipelining TRUE - Pipleline through proxy connections.
  • network.http.sendRefererHeader - 0 = never (bad for 8ch), 1 = domain only, 2 = full url (default)
  • network.prefetch-next FALSE - Don't download pages linked to the current page unless we click the link.
  • dom.event.clipboardevents.enabled FALSE - Don't allow webpages to mess with the clipboard.
  • dom.disable_window_move_resize TRUE - Don't allow webpages to move or resize the browser window.
  • dom.ipc.plugins.flash.subprocess.crashreporter.enabled FALSE - Don't report flash plugin crashes.
  • media.autoplay.enabled FALSE - Don't autoplay media.
  • media.peerconnection.enabled FALSE - Important for VPN users. Don't allow p2p downloading of media.
  • pdfjs.disabled TRUE - Don't run javascript within the builtin pdf viewer.
  • reader.parse-on-load.enabled FALSE - disable "reader view"
  • browser.pocket.enabled FALSE - disable pocket
  • network.http.speculative-parallel-limit 0 - don't create connections to links you only hover over

For a privacy conscious user.js, study https://github.com/crisbrm/user.js for a user.js that comes with minimal breakage, or https://github.com/pyllyukko/user.js for one with even more emphasis on security (occasionally at the cost of functionality, like when you completely disable DOM storage, for instance), and less emphasis on blending in.

External links