Annoyances

Disable firefox intro tabs on the first start

Disable the first run tabs with advertisements for the latest firefox features.

Disable new tab page intro

Disable the intro to the newtab page on the first run

Pocket Reading List Keep Defaults Skip Pocket Intro Disable Pocket

Disable about:config warning.

Do not trim URLs in navigation bar

By default Firefox trims many URLs (hiding the http:// prefix and trailing slash /).

Disable checking if Firefox is the default browser

Disable reset prompt.

When Firefox is not used for a while, it displays a prompt asking if the user wants to reset the profile. (see Bug #955950).

Disable Heartbeat Userrating

With Firefox 37, Mozilla integrated the Heartbeat system to ask users from time to time about their experience with Firefox.

Content of the new tab page Thumbnails of the most visited pages and suggestions from Mozilla Thumbnails of the most visited pages Empty

Disable autoplay of <video> tags. Allow autoplay Disable autoplay Prompt me

Per default, <video> tags are allowed to start automatically. Note: When disabling autoplay, you will have to click pause and play again on some video sites.

save save & next

Browser Features

Disable Telemetry

The telemetry feature sends data about the performance and responsiveness of Firefox to Mozilla.

Disable health report

Disable sending Firefox health reports to Mozilla

Disable shield studies

Mozilla shield studies is a feature which allows mozilla to remotely install experimental addons.

Disable experiments

Telemetry Experiments is a feature that allows Firefox to automatically download and run specially-designed restartless addons based on certain conditions.

Disable Crash Reports

The crash report may contain data that identifies you or is otherwise sensitive to you.

Opt out metadata updates

Firefox sends data about installed addons as metadata updates, so Mozilla is able to recommend you other addons.

Disable google safebrowsing

Google safebrowsing can detect pishing and malware but it also sends informations to google together with an unique id called wrkey.

Disable malware scan

The malware scan sends an unique identifier for each downloaded file to Google.

Disable DNS over HTTPS

DNS over HTTP (DoH), aka. Trusted Recursive Resolver (TRR), uses a server run by Cloudflare to resolve hostnames, even when the system uses another (normal) DNS server. This setting disables it and sets the mode to explicit opt-out (5).

Disable preloading of the new tab page.

By default Firefox preloads the new tab page (with website thumbnails) in the background before it is even opened.

Disable about:addons' Get Add-ons panel

The start page with recommended addons uses google analytics.

Disable check for captive portal.

By default, Firefox checks for the presence of a captive portal on every startup. This involves traffic to Akamai.

Save screenshots locally

Disable uploading screenshots online.

Disables playback of DRM-controlled HTML5 content

if enabled, automatically downloads the Widevine Content Decryption Module provided by Google Inc. Details

Disables the Widevine Content Decryption Module provided by Google Inc.

Used for the playback of DRM-controlled HTML5 content Details

Disable access to device sensor data

Disallow websites to access sensor data (ambient light, motion, device orientation and proximity data).

save save & next

Privacy

Fake another Useragent

Using a popular useragent string avoids attracting attention i.e. with an Iceweasel UA. (keep blank to use the default)

Block Cookies Allow all Cookies Block Cookies, which are not from the site you're visiting. You will rarely notice that something is missing, but it hugely improves your privacy. Block all Cookies. Many sites will not work without cookies.

Block 3rd-Party cookies or even all cookies.

Block Referer Always disable referer Send referer only on the same domain Spoof referer (send the same url) Trim referer to the domain name Allow real referer when clicking a link Always allow real referer

Firefox tells a website, from which site you're coming (the so called referer). You can find more detailed settings in this ghacks article or install the RefControl extension for per domain settings.

Disable DOM storage

Disables DOM storage, which enables so called "supercookies". Some modern sites will not work (i.e. missing "save" functions).

Disable IndexedDB (breaks things)

IndexedDB is a way, websites can store structured data. This can be abused for tracking, too. Disabling causes problems when sites depend on it like Tweetdeck or Reddit and extensions that use it to store their data. Some users reported crashing tabs when IndexedDB is disabled. Only disable it, when you know what you're doing.

Disable the Offline Cache.

Websites can store up to 500 MB of data in an offline cache, to be able to run even when there is no working internet connection. This could possibly be used to store an user id.

Sessionstore Privacy Store extra session data for any site (Default starting with Firefox 4) Store extra session data for unencrypted (non-HTTPS) sites only (Default before Firefox 4) Never store extra session data

This preference controls when to store extra information about a session: contents of forms, scrollbar positions, cookies, and POST data.

Disable Link Prefetching

Firefox prefetches the next site on some links, so the site is loaded even when you never click.

Disable speculative website loading.

In some situations Firefox already starts loading web pages when the mouse pointer is over a link, i. e. before you actually click. This is to speed up the loading of web pages by a few milliseconds.

Use a private container for new tab page thumbnails

Load the pages displayed on the new tab page in a private container when creating thumbnails.

Disable WebGL

Disables the WebGL function, to prevent fingerprinting with WebGL. Another issue is, that websites can (ab)use the full power of the graphics card. WebGL is part of some fingerprinting scripts used in the wild. Some interactive websites will not work, which are mostly games.

Override graphics card vendor and model strings in the WebGL API

Websites can read the graphics card vendor and model using a WebGL API. This setting overrides both with " " without disabling WebGL.

Disable WebRTC

Disables the WebRTC function, which gives away your local ips. Some addons like uBlock origin provide settings to prevent WebRTC from exposing local ips without disabling WebRTC.

Disable the clipboardevents.

Disable that websites can get notifications if you copy, paste, or cut something from a web page, and it lets them know which part of the page had been selected.

Disable Search Suggestions

Firefox suggests search terms in the search field. This will send everything typed or pasted in the search field to the chosen search engine, even when you did not press enter.

Disable Search Keyword

When you mistype some url, Firefox starts a search even from urlbar. This feature is useful for quick searching, but may harm your privacy, when it's unintended.

Disable Fixup URLs

When you type "something" in the urlbar and press enter, Firefox tries "something.com", if Fixup URLs is enabled.

save save & next

Website Tracking

Enable Do-not-Track

With the do not track feature, you tell websites, that you do not want to be tracked. Most websites ignore this, so you need other privacy options as well.

Enable resistFingerprinting

The privacy.resistFingerprinting setting coming from the tor-browser hides some system properties. See Bug #1308340 for more information. This option may interfere with other privacy related settings, see the discussion in our bug tracker.

Enable Mozilla Trackingprotection

Firefox has a builtin tracking protection, which blocks a list of known tracking sites.

Enable firstparty isolation.

FPI works by separating cookies on a per-domain basis. In this way tracking networks won't be able to locate the same cookie on different sites. Note that this might break third-party logins.

Disable Browser Pings

Firefox sends "ping" requests, when a website requests to be informed when a user clicks on a link.

Disable TLS session identifiers

TLS allows for session identifieres, which speed up the session resumption when a connection was lost. These identifiers can be used for tracking.

Disable Beacons

The Beacon feature allows websites to send tracking data after you left the website.

Disable the Battery API

Firefox allows websites to read the charge level of the battery. This may be used for fingerprinting.

Disable media device queries

Prevent websites from accessing information about webcam and microphone (possible fingerprinting).

Disable form autofill

Automatically filled form fields are used for fingerprinting. This setting disables automatic form filling until you click on the field.

Disable webaudio API

Disable webaudio API to prevent browser fingerprinting. See Mozilla Bug #1288359

Disable video statistics

Prevent websites from measuring video performance (possible fingerprinting). See Mozilla Bug 654550.

save save & next

Security

Disable automatic updates.

Updates are no longer installed automatically. You will still be notified when an update is available and can install it. Avoids getting a new (maybe addon incompatible) version.

Disable searching for updates.

Disable searching for updates. This only works with the enterprise policy download..

Disable extension blocklist from mozilla.

The extension blocklist is used by mozilla to deactivate individual addons in the browser, but as a side effect it gives mozilla the ultimate control to disable any extension. Caution: When you disable the blocklist, you may keep using known malware addons.

Show Punycode.

This helps to protect against possible character spoofing.

save save & next

Addons

Install CanvasBlocker extension.

Blocks the JS-API for the <canvas> element to prevent Canvas-Fingerprinting.

Install the HTTPS Everywhere extension.

HTTPS Everywhere is a Firefox extension that enables HTTPS encryption automatically on sites that support it.

Install the Privacy Badger extension.

The Privacy Badger addon automatically detects trackers and blocks them. You can manually block and unblock urls as well.

Install uBlock Origin extension.

Efficient blocker, which does not only block ads, but also supports Anti-Tracking and Anti-Malware Blocklists

Install the Cookie Autodelete extension.

The extension allows you to automatically delete the cookies of a site when you close the tab.

Install uMatrix extension.

A content blocker for advanced users, which blocks requests to thirdparty domains. Big privacy gain, but you will need to configure exception rules for many sites.

Install Decentraleyes extension.

Emulates Content Delivery Networks locally by intercepting requests, finding the required resource, and injecting it into the environment.

Install ClearURLs extension.

This addon will automatically remove tracking elements from URLs to help protect your privacy when browsing through the Internet.

Install Temporary Containers extension.

Allows you to open tabs, websites, and links in automatically managed disposable containers.

Install Firefox Multi-Account Containers extension.

Allow you to create containers for specific websites.

Explicitly disable Greasemonkey user tracking

Greasemonkey has a (currently opt-in) function to submit user stats. This explicitely disables it, in case that it will become opt-out in the future.

save save & next

Enterprise Policies

Disable PDF viewer

(enterprise policy download only)

Disable Firefox accounts

Disable features related to Firefox accounts.
(enterprise policy download only)

Disable form and search history

(enterprise policy download only)

Show the menubar by default

Display the menu bar by default instead of only when the alt key is pressed.
(enterprise policy download only)

Show the bookmarks toolbar by default

(enterprise policy download only)

Disable the new tab page

(enterprise policy download only)

Disable system addon update

Disables installation and updating of system addons by Firefox.
(enterprise policy download only)

save save & next

Download

There are four types of downloads:

profile.zip:

Unzip the file into a fresh profile folder to create a profile with the chosen defaults.

enterprise_policy.zip:

Unzip this in the Firefox installation folder, to reset the defaults every time Firefox starts.

prefs.js:

Preferences file, that can be placed in the Firefox profile folder or appended to existing preferences.

addons.zip:

An archive that only contains the chosen addons.

Download profile.zip Download enterprise_policy.zip
Download only prefs.js Open prefs.js in the browser
Download only addons.zip
When you download only the addons.zip, you need to copy the user_pref("extensions.autoDisableScopes", 14); line into your prefs.js, otherwise firefox won't install the addons.

Start over again

Installing

• Optional: add a new profile to keep the old one
• Run firefox -no-remote -ProfileManager
• Create a new profile
• Type about:support into the url bar.
• Press the open profile folder button.
• Quit Firefox.
• Delete everything from the new profile (you will lose all existing data from the profile).
• unzip the profile.zip file into the folder.
• Start Firefox again. If you made a new profile, you can use it with firefox -no-remote -P profilename.
• Open the addon manager and update the extensions.

Preview

prefs.js:

policies.json:

{
  "policies": {}
}