Opened 3 months ago

Last modified 3 months ago

#25438 new enhancement

Use Locked Prefs

Reported by: tom Owned by: tbb-team
Priority: Medium Milestone:
Component: Applications/Tor Browser Version:
Severity: Normal Keywords: ff60-esr
Cc: Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

https://bugzilla.mozilla.org/show_bug.cgi?id=440908 adds support for locked prefs, which are set during build and cannot be changed.

If that doesn't wind up in 60, I think it should be backported, and taken advantage of.

We can lock at least the proxy settings. We could consider locking FPI and Fingerprinting settings, but I'm not sure those would be appropriate to lock.

Child Tickets

Change History (4)

comment:1 Changed 3 months ago by gk

Keywords: ff60-esr added; esr60 removed

comment:2 Changed 3 months ago by cypherpunks

Locking what you have mentioned would be great considering the amount of times well intentioned but uninformed people install "VPN" addons on the Tor Browser and end up screwing up their anonymity and proxy settings as I've seen on irc.

We could consider locking FPI and Fingerprinting settings, but I'm not sure those would be appropriate to lock.

Related ticket: #24072 (#1047 for Torbutton-only times :) )

The only disadvantage is that it may make it more difficult to setup a clearnet Tor Browser.

comment:3 Changed 3 months ago by cypherpunks

Please don't lock the proxy settings! There are legitimate reasons to change them, for example:
running Tor Browser with a system-wide Tor service, or connecting to a Unix socket rather than a TCP port.

comment:4 in reply to:  3 Changed 3 months ago by cypherpunks

Replying to cypherpunks:

Please don't lock the proxy settings! There are legitimate reasons to change them, for example:
running Tor Browser with a system-wide Tor service, or connecting to a Unix socket rather than a TCP port.

In such cases one should lock prefs that are baked by consensus: everyone agrees that fingerprinting protection and first-party isolation should always be enforced.

Note: See TracTickets for help on using tickets.