user.js icon indicating copy to clipboard operation
user.js copied to clipboard

Published 20 hours ago verified publisher icon arkenfox

ToDo: diffs FF130-FF131

Open earthlng opened this issue 4 months ago • 5 comments

FF131 release date: Oct. 1st 2024

FF131 release notes FF131 for developers FF131 security advisories

73 diffs ( 33 new, 19 gone, 21 different )

new in v131.0:

  • pref("network.http.microsoft-entra-sso.enabled", false); - 1768724 - https://github.com/arkenfox/user.js/pull/1892/commits/5c77848ba6c1e791f394f25e0de901c4b02e009f
  • pref("privacy.bounceTrackingProtection.mode", 3); - 1894040 - https://github.com/arkenfox/user.js/pull/1892/commits/8c5ab42fc86194e5a4eab3ba95f4cf3235cd1559
    • we will get this with ETP Strict in FF133 when it's ready to land
    • also see my comment below
pref("geo.prompt.open_system_prefs", true);
pref("network.http.network_error_logging.enabled", false);
pref("permissions.media.query.enabled", false);
pref("permissions.media.show_always_ask.enabled", false);

changed in v131.0:

FYI

  • pref("identity.fxaccounts.telemetry.clientAssociationPing.enabled", true); // prev: false
    • 1889123 Measure potential device migrations for Mozilla Account holders
    • requires a FF account and if you have one, then this is not an issue
  • pref("network.cookie.sameSite.noneRequiresSecure", true); // prev: false 1909673
    • about time, sounds good to me
    • https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie

    • None Means that the browser sends the cookie with both cross-site and same-site requests. The Secure attribute must also be set when setting this value, like so SameSite=None; Secure. If Secure is missing an error will be logged:

    • also see the below re CHIPS

    • Warning: Cookies with the SameSite=None; Secure that do not also have the Partitioned attribute may be blocked in cross-site contexts on future browser versions. This behavior protects user data from cross-site tracking.

  • Cookies Having Independent Partitioned State (CHIPS) + 1865198 META
    • pref("network.cookie.CHIPS.enabled", true); // prev: false
    • pref("network.cookie.chips.partitionLimitEnabled", true); // prev: false
    • sounds good to me - "cookies" are double-keyed by the origin that sets them and the origin of the top-level page
    • AFAICT this is also a precursor to Firefox blocking all third party cookies by default (but allowing CHIPS)

ignore

click me for details

==NEW

pref("browser.newtabpage.activity-stream.discoverystream.topicLabels.locale-topic-label-config", "en-US, en-GB, en-CA");
pref("browser.newtabpage.activity-stream.discoverystream.topicLabels.region-topic-label-config", "");
pref("browser.newtabpage.activity-stream.newtabLayouts.variant-a", false);
pref("browser.newtabpage.activity-stream.newtabLayouts.variant-b", false);
pref("browser.search.totalSearches", 0);
pref("browser.translations.mostRecentTargetLanguages", "");
pref("browser.urlbar.quicksuggest.ampTopPickCharThreshold", 0);
pref("dom.cookie.testing.enabled", false);
pref("dom.fetchKeepalive.request_limit_per_origin", 10);
pref("dom.fetchKeepalive.total_request_limit", 30);
pref("dom.interactive_widget_default_resizes_visual", false);
pref("dom.quotaManager.originOperations.pauseOnIOThreadMs", 0);
pref("dom.viewTransitions.enabled", false);
pref("dom.workers.throttling.enabled", false);
pref("gfx.webrender.dcomp.color-manage-with-filters", false);
pref("javascript.options.experimental.iterator_helpers", true);
pref("javascript.options.wasm_experimental_inline_call_ref_threshold", 1);
pref("media.test.null.decoder.creation-failure", false);
pref("network.http.microsoft-entra-sso.container-enabled.0", true);
pref("network.idn.punycode_cyrillic_confusables", true);
pref("network.microsoft-sso-authority-list", "login.microsoft.com, login.microsoftonline.com, sts.windows.net, login.partner.microsoftonline.cn, login.chinacloudapi.cn, login.microsoftonline.us, login-us.microsoftonline.com");
pref("svg.Moz2D.strokeBounds.enabled", false);
pref("toolkit.telemetry.dap.helper.hpke", "ACkAACAAAQABACAucqWdIQRN6BxumPBRXIlg2JsxcznwWX7vyqzM3cjuQA");
pref("toolkit.telemetry.dap.helper.url", "https://dap.services.mozilla.com");
pref("toolkit.telemetry.dap.leader.hpke", "ACkAACAAAQABACDk8wgwe2-TqHyaL74uqjVWMcF1zi9pxiwQhu4aPwncYw");
pref("toolkit.telemetry.dap.leader.url", "https://dap-09-3.api.divviup.org");
pref("webextensions.storage.session.enforceQuota", false);

==REMOVED, RENAMED or HIDDEN

pref("browser.tabs.tabmanager.enabled", true);
pref("devtools.client-side-throttling.enable", false);
pref("dom.performance.time_to_dom_content_flushed.enabled", false);
pref("dom.permissions.revoke.enable", false);
pref("gfx.offscreencanvas.enabled", true);
pref("layers.iosurfaceimage.use-nv12", true);
pref("layout.css.inline-style-caching.always-enabled", true);
pref("network.compress.allow_truncated_empty_brotli", true);
pref("network.IDN.extra_allowed_chars", "");
pref("network.IDN.extra_blocked_chars", "");
pref("network.IDN.restriction_profile", "high");
pref("privacy.bounceTrackingProtection.enabled", true);
pref("privacy.bounceTrackingProtection.enableDryRunMode", true);
pref("privacy.resistFingerprinting.autoDeclineNoUserInputCanvasPrompts", true);
pref("services.sync.prefs.sync.general.smoothScroll", true);
pref("toolkit.telemetry.dap_helper", "https://dap.services.mozilla.com");
pref("toolkit.telemetry.dap_helper_owner", "Mozilla");
pref("toolkit.telemetry.dap_leader", "https://dap-09-3.api.divviup.org/");
pref("toolkit.telemetry.dap_leader_owner", "ISRG");

==CHANGED

pref("browser.backup.scheduled.idle-threshold-seconds", 15); // prev: 300
pref("browser.newtabpage.activity-stream.discoverystream.merino-provider.enabled", true); // prev: false
pref("browser.newtabpage.activity-stream.discoverystream.topicLabels.enabled", false); // prev: true
pref("browser.newtabpage.activity-stream.support.url", "https://support.mozilla.org/1/firefox/131.0/WINNT/en-US/new-tab"); // prev: "https://support.mozilla.org/1/firefox/130.0/WINNT/en-US/new-tab"
pref("browser.safebrowsing.provider.mozilla.updateURL", "moz-sbrs:://antitracking"); // prev: "https://shavar.services.mozilla.com/downloads?client=SAFEBROWSING_ID&appver=%MAJOR_VERSION%&pver=2.2"
pref("browser.shell.setDefaultBrowserUserChoice.regRename", true); // prev: false
pref("browser.tabs.hoverPreview.enabled", true); // prev: false
pref("dom.shadowdom.new_caretPositionFromPoint_behavior.enabled", true); // prev: false
pref("dom.text_fragments.enabled", true); // prev: false
pref("javascript.options.wasm_exnref", true); // prev: false
pref("layout.overflow-underflow.content.enabled", false); // prev: true
pref("layout.overflow-underflow.content.enabled_in_addons", false); // prev: true
pref("media.wmf.allow-unsupported-resolutions", true); // prev: false
pref("network.send_OnDataFinished.cssLoader", true); // prev: false
pref("svg.nearestAndFarthestViewportElement.enabled", false); // prev: true
pref("toolkit.shopping.ohttpRelayURL", "https://mozilla-ohttp.fastly-edge.com/"); // prev: "https://mozilla-ohttp-fakespot.fastly-edge.com/"
pref("urlclassifier.blockedTable", "moztest-block-simple"); // prev: "moztest-block-simple,mozplugin-block-digest256"

earthlng avatar Oct 06 '24 11:10 earthlng