rusty-snake

@ph00lt0 Here's your reading: https://blog.mozilla.org/security/2021/01/26/supercookie-protections/ INANE for firefox under android, but I have no hint that this isn't the case for android. > as I understood from others, this will...

The only thing that looks interesting to me besides `security.pki.sha1_enforcement_level` removal and `network.cookie.cookieBehavior=5` as default is `browser.download.open_pdf_attachments_inline`.

- `browser.download.open_pdf_attachments_inline` should stay `false` by default and arkenfox does not need to touch it. - `pdfjs.annotationEditorEnabled` is disabled for now and got renamed anyway so IMO we can ignore...

Yes, if it has an `Content-Disposition: attachment` it is opened in a (new?) tab instead of being downloaded.

This issue isn't only about `.org`, kpdx tries to open any (binary?) file without an associated app. - `.nomedia` - `.database_uuid` - `*.dat` - `*.mwm` - `*.idx` - `*.0` -...

> You just need to associate the desired extension with an application that can open it. There are nearly infinity extensions. "You just need" does not work here. > The...

> Indeed, there is a header and a mime-type in the file, the application/octet-stream one was for me necessary to ensure compatibility with other existing KeePass ports. But it's probably...

Related: https://www.exploit-db.com/exploits/46594 / https://nvd.nist.gov/vuln/detail/CVE-2019-7303

Featureful but lacks in UX.

> prevent sensitive data from being written to disk. swap