Parameters
-
Refuse document's fonts:
browser.display.use_document_fonts=0
-
Disable downloads malware checking:
browser.safebrowsing.downloads.enabled=false
-
(What is this?)
browser.safebrowsing.downloads.remote.enabled=false
-
Limit number of entries in history:
browser.sessionhistory.max_entries=12
-
Nomber of recently viewed pages stored in memory:
browser.sessionhistory.max_total_viewers=1
-
Interprocess security checks
(disabled by default per bug 820712):
network.disable.ipc.security=false
-
Allow cookies from originating site only:
network.cookie.cookieBehavior=1
-
Use the configurable lifetime for cookies:
network.cookie.lifetimePolicy=3
-
Enforce the lifetime for accepted cookies:
network.cookie.lifetime.days=5
-
Disable DNS prefetching:
network.dns.disablePrefetch=true
-
Turn off predictive pages loading:
network.predictor.enabled=false
-
Disable links prefetching:
network.prefetch-next=false
-
Apply same-origin policy for referer field:
network.http.referer.XOriginPolicy=1
-
Clear private data when browser exits:
privacy.sanitize.sanitizeOnShutdown=true
-
Block certain domains by a blacklist:
privacy.trackingprotection.enabled=true
-
Block certain domains by a blacklist even in private browsing mode:
privacy.trackingprotection.pbmode.enabled=true
-
Block static insecure content in secure connection:
security.mixed_content.block_display_content=true
-
Use OCSP with GET method:
security.OCSP.GET.enabled=true
-
Require a valid OCSP reply:
security.OCSP.require=true
-
Refuse establishing session with unsafe negotiation:
security.ssl.require_safe_negotiation=true
-
Indicate unsafe negotiation in the establihed session:
security.ssl.treat_unsafe_negotiation_as_broken=true
Per-site permissions: about:permissions
References