-
Notifications
You must be signed in to change notification settings - Fork 8
Firefox
My notes regarding Firefox browser.
New Firefox follows painful trend to hide scrollbars and even when they appear there are now arrow buttons, making it really bad when mouse-wheel does not work...
To correct this (at least on Linux) you have to:
- enter
about:config
in Address bar - to show always scrollbars, search
layout.testing.overlay-scrollbars.always-visible
and set it totrue
(from: https://superuser.com/questions/1720362/firefox-scroll-bar-disappearing) - to enable arrows buttons,
search
widget.non-native-theme.gtk.scrollbar.allow-buttons
and set it totrue
(from: https://forums.linuxmint.com/viewtopic.php?t=330849) - restart Firefox
Please note that in my case it does not help to set
System Settings -> Appearance -> Show scroll bars.
in Firefox Settings.
Firefox is surprisingly active even before you start browsing. To get at least some clue what is is happening I adapted Windows approach from: https://superuser.com/questions/1104255/is-it-possible-to-see-the-dns-resolving-query-in-firefox-developer-tools to Linux using least possible level of logging.
Here is my script ~/bin/firefox-logging-dns.sh
#!/bin/bash
set -xeuo pipefail
NSPR_LOG_FILE=$HOME/tmp/firefox-dns-`date '+%s'`.log \
NSPR_LOG_MODULES=timestamp,nsHostResolver:1 \
/usr/bin/firefox "$@"
exit 0
When you run it, list log files sorted by date using ls -lrt ~/tmp/
Then I simply filter log like this:
tail -f ~/tmp/firefox-dns-XXXXXXXX.log.moz_log | fgrep 'Calling getaddrinfo for host'
And watch it - for example when you visit some simple web page...
- here is example when I visit https://gitlab.com
awk '/Calling getaddrinfo for host/{print $NF}' xxxxxxx.log | tr -d '][' | sed 's/\.$//' gitlab.com about.gitlab.com cdn.cookielaw.org geolocation.onetrust.com cdn.bizible.com munchkin.marketo.net extend.vimeocdn.com images.ctfassets.net player.vimeo.com capture.navattic.com fresnel.vimeocdn.com i.vimeocdn.com f.vimeocdn.com ocsp.pki.goog www.googletagmanager.com s.swiftypecdn.com capture.navattic.com epsilon.6sense.com ocsp.r2m03.amazontrust.com
- please note that there is no guarantee that all DNS requests are shown - rather estimate.
On GNOME based Linux Firefox happily uses system geoclue
service to know your location.
Additional privacy concerns are from Gentoo:
Normandy:
- it allows Mozilla to change your setting or even install Extensions remotely to your computer(!!!) See https://bugs.launchpad.net/ubuntu/+source/firefox/+bug/1827717
- workaround: in
about:config
search forapp.normandy.enabled
and ensure that it isfalse
NOTE: you have to disable DoH (DNS over https) and other techniques to see DNS requests from Firefox
Here is what I get when running tcpdump -n port 53
and running firefox-esr=115.11.0esr-1~deb12u1
on fresh Debian 12 with XFCE4
-
detectportal.firefox.com
- should be possible deactivate here: https://support.mozilla.org/en-US/questions/1157121-
about:config
->network.captive-portal-service.enabled
switch tofalse
-
js
preferences ->user_pref("network.captive-portal-service.enabled", false);
-
-
contile.services.mozilla.com
- unable to find - maybe
browser.topsites.contile.enabled
may control it...
- unable to find - maybe
-
firefox.settings.services.mozilla.com
- this should control it:signon.management.page.breach-alerts.enabled
- but it still access it...
-
push.services.mozilla.com
- some notes are here: https://support.mozilla.org/en-US/questions/1261510
Summary. I appended following settings to my /etc/firefox-esr/firefox-esr.js
// disable detectportal.firefox.com
// https://support.mozilla.org/en-US/questions/1157121
pref("network.captive-portal-service.enabled", false);
// disable contile.services.mozilla.com
pref("browser.topsites.contile.enabled", false);
// disable firefox.settings.services.mozilla.com
// IT STILL DOES NOT STOP FIREFOX FROM ACCESSING settings.services!
pref("signon.management.page.breach-alerts.enabled", false);
// disable push.services.mozilla.com
// https://support.mozilla.org/en-US/questions/1261510
pref("dom.push.enabled", false);
pref("dom.push.connection.enabled", false);
pref("dom.push.serverURL", "");
Copyright © Henryk Paluch. All rights reserved.
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License