Difference between revisions of "Firefox privacy"

From ArchWiki
Jump to: navigation, search
(Added Note to HTTPS Everywhere)
(NoScript)
(6 intermediate revisions by the same user not shown)
Line 11: Line 11:
 
{{Article summary end}}
 
{{Article summary end}}
  
This article overviews some useful plugins which enhance security and privacy while using the Firefox web browser.
+
This article overviews some useful extensions which enhance security and privacy while using the Firefox web browser.
  
 
==HTTPS Everywhere==
 
==HTTPS Everywhere==
  
[https://www.eff.org/https-everywhere HTTPS Everywhere] is a plugin which will force a connection over HTTPS instead of HTTP when available.
+
[https://www.eff.org/https-everywhere HTTPS Everywhere] is an extension which encrypts your communication with a website. It forces a connection over HTTPS instead of HTTP wherever possible.
  
 
HTTPS Everywhere will be automatically configured and enabled upon restarting Firefox. For information on how to set up your own rules for different websites please visit [https://www.eff.org/https-everywhere/rulesets the official website].
 
HTTPS Everywhere will be automatically configured and enabled upon restarting Firefox. For information on how to set up your own rules for different websites please visit [https://www.eff.org/https-everywhere/rulesets the official website].
Line 29: Line 29:
 
EasyList is the primary subscription that removes adverts from English webpages, including unwanted frames, images and objects.
 
EasyList is the primary subscription that removes adverts from English webpages, including unwanted frames, images and objects.
  
EasyPrivacy is a subscription that co mpletely removes all forms of tracking from the internet, including web bugs, tracking scripts and information collectors.
+
EasyPrivacy is a supplementary subscription for EasyList which removes all forms of tracking from the internet, including web bugs, tracking scripts and information collectors.
  
 
==Ghostery==
 
==Ghostery==
  
[https://www.ghostery.com/ Ghostery] is a project to track business which employ the use of website trackers. From the website:
+
[https://www.ghostery.com/ Ghostery] is a project to track businesses which employ the use of website trackers. From the website:
  
 
''Ghostery tracks over 1,000 trackers and gives you a roll-call of the ad networks, behavioral data providers, web publishers, and other companies interested in your activity.
 
''Ghostery tracks over 1,000 trackers and gives you a roll-call of the ad networks, behavioral data providers, web publishers, and other companies interested in your activity.
  
Ghostery can be installed from the [https://www.ghostery.com/download official website]. Once installed the Ghostery can be configured from:
+
Ghostery can be installed from the [https://www.ghostery.com/download official website]. Once installed Ghostery can be configured from:
 
   chrome://ghostery/content/options.html
 
   chrome://ghostery/content/options.html
  
Or by selecting preferences from the add-on manager in Firefox which will bring you to the configuration page.  
+
Or by selecting preferences from the Add-ons Manager in Firefox which will bring you to the configuration page.  
  
From the configuration page you can configure what 3rd party elements(3pes) Ghostery should block. When navigating the catergories you can click on the individual profiles for more information about that specific company. There are also options for enabling/disabling cookies.
+
Alternatively you can configure Ghostery through the included wizard:
 
+
Alternatively you can configue Ghostery through the included wizard:
+
 
   chrome://ghostery/content/wizard.html
 
   chrome://ghostery/content/wizard.html
 +
 +
From the configuration page you can configure what 3rd party elements(3pes) Ghostery should block. When navigating the categories you can click on the individual profiles for more information about that specific company. You can also choose to clear Flash and Silverlight cookies on exit. Also, you can enable the cookie protection feature which prevents selected websites from setting cookies in your browser.
  
 
==NoScript==
 
==NoScript==
  
[http://noscript.net/ NoScript] is a plugin which disables the use of JavaScript, Java, Flash and other plugins on any website not specifically whitelisted by the user. This is a powerful plugin will automatically protect you from exploitation of security vulnerabilities by not letting anything but trusted sites (e.g: your bank, webmail) through.
+
[http://noscript.net/ NoScript] is an extension which disables JavaScript, Java, Flash and other plugins on any website not specifically whitelisted by the user. This extension will protect you from exploitation of security vulnerabilities by not letting anything but trusted sites (e.g: your bank, webmail) serve you executable content.
  
Once installed you can configure settings for NoScript by either clicking its icon on the toolbar or right clicking a page and navigating to NoScript. You will then have the option to enable/disable scripts for the current page, aswell as any third party scripts that the page is linking to. Alternatively you can choose to enable scripts temporarily for that session only.
+
Once installed you can configure settings for NoScript by either clicking its icon on the toolbar or right clicking a page and navigating to NoScript. You will then have the option to enable/disable scripts for the current page, as well as any third party scripts that the page is linking to. Alternatively you can choose to enable scripts temporarily for that session only.
  
 
For more detailed configuration see the [http://noscript.net/faq NoScript FAQ].
 
For more detailed configuration see the [http://noscript.net/faq NoScript FAQ].
Line 57: Line 57:
 
==Cookie Monster==
 
==Cookie Monster==
  
[https://addons.mozilla.org/en-US/firefox/addon/cookie-monster/ Cookie Monster] is a similar plugin to NoScript but will the goal of managing cookies.
+
[https://addons.mozilla.org/en-US/firefox/addon/cookie-monster/ Cookie Monster] is a similar extension to NoScript but will the goal of managing cookies.
  
 
From the preferences for Cookie Monster select "Block All Cookies". Once this is done, just as with NoScript, you can enable the use of cookies for specific pages from either the Cookie Monster icon on the toolbar or by right clicking the page and navigating to Cookie Monster. You have the option to accept cookies from the website in question or alternatively to only temporarily allow cookies for the current session.
 
From the preferences for Cookie Monster select "Block All Cookies". Once this is done, just as with NoScript, you can enable the use of cookies for specific pages from either the Cookie Monster icon on the toolbar or by right clicking the page and navigating to Cookie Monster. You have the option to accept cookies from the website in question or alternatively to only temporarily allow cookies for the current session.
Line 63: Line 63:
 
==RefControl==
 
==RefControl==
  
[http://www.stardrifter.org/refcontrol/ RefControl] is a plugin to control what gets sent as the HTTP Referer. Once installed RefControl can be configured so that no referer gets sent when navigating to a new webpage. This prevents the server from knowing which website you originated from.
+
[http://www.stardrifter.org/refcontrol/ RefControl] is an extension to control what gets sent as the HTTP Referer. Once installed RefControl can be configured so that no referer gets sent when navigating to a new webpage. This prevents the server from knowing which website you originated from.
  
 
To do this open RefControl's preferences and change the setting for "Default for sites not listed:" to <Block>.
 
To do this open RefControl's preferences and change the setting for "Default for sites not listed:" to <Block>.
Line 69: Line 69:
 
== RequestPolicy ==
 
== RequestPolicy ==
  
[https://www.requestpolicy.com/ RequestPolicy] is an addon for Mozilla browsers which lets you have control over cross-site requests. The latest development version lets you blacklist or whitelist requests by default. Disabling unnecessary cross-site requests leads to better privacy, safety and faster browsing.
+
[https://www.requestpolicy.com/ RequestPolicy] is an extension for Mozilla browsers which lets you have control over cross-site requests. The latest development version lets you blacklist or whitelist requests by default. Disabling unnecessary cross-site requests leads to better privacy, safety and faster browsing.
  
 
For more information on cross-site requests and RequestPolicy visit [https://www.requestpolicy.com/faq.html here].
 
For more information on cross-site requests and RequestPolicy visit [https://www.requestpolicy.com/faq.html here].

Revision as of 11:50, 24 November 2012

Template:Article summary start Template:Article summary text Template:Article summary heading Template:Article summary wiki: Installing and troubleshooting the Firefox browser and plugins Template:Article summary heading Template:Article summary wiki: Anonymous proxy network Template:Article summary wiki: Acquiring and installing plugins such as Flash Template:Article summary wiki: Configuration and modifications Template:Article summary wiki: Caching the profile in RAM Template:Article summary end

This article overviews some useful extensions which enhance security and privacy while using the Firefox web browser.

HTTPS Everywhere

HTTPS Everywhere is an extension which encrypts your communication with a website. It forces a connection over HTTPS instead of HTTP wherever possible.

HTTPS Everywhere will be automatically configured and enabled upon restarting Firefox. For information on how to set up your own rules for different websites please visit the official website.

Note: HTTPS Everywhere does not magically enable HTTPS for every site on the internet. The site needs to support HTTPS and HTTPS Everywhere should have a ruleset configured for that site.

Adblock Plus

Adblock Plus can be used to stop intrusive advertisments but it can also be configured to block websites from tracking you.

Once installed visit the Easy List website and add the EasyList and EasyPrivacy lists to your Adblock Plus filter subscriptions. This is done by simply clicking any of the "Add [filter] to Adblock Plus" on the webpage. This will bring up the add filter prompt. Review the details and click "Add Subscription".

EasyList is the primary subscription that removes adverts from English webpages, including unwanted frames, images and objects.

EasyPrivacy is a supplementary subscription for EasyList which removes all forms of tracking from the internet, including web bugs, tracking scripts and information collectors.

Ghostery

Ghostery is a project to track businesses which employ the use of website trackers. From the website:

Ghostery tracks over 1,000 trackers and gives you a roll-call of the ad networks, behavioral data providers, web publishers, and other companies interested in your activity.

Ghostery can be installed from the official website. Once installed Ghostery can be configured from:

 chrome://ghostery/content/options.html

Or by selecting preferences from the Add-ons Manager in Firefox which will bring you to the configuration page.

Alternatively you can configure Ghostery through the included wizard:

 chrome://ghostery/content/wizard.html

From the configuration page you can configure what 3rd party elements(3pes) Ghostery should block. When navigating the categories you can click on the individual profiles for more information about that specific company. You can also choose to clear Flash and Silverlight cookies on exit. Also, you can enable the cookie protection feature which prevents selected websites from setting cookies in your browser.

NoScript

NoScript is an extension which disables JavaScript, Java, Flash and other plugins on any website not specifically whitelisted by the user. This extension will protect you from exploitation of security vulnerabilities by not letting anything but trusted sites (e.g: your bank, webmail) serve you executable content.

Once installed you can configure settings for NoScript by either clicking its icon on the toolbar or right clicking a page and navigating to NoScript. You will then have the option to enable/disable scripts for the current page, as well as any third party scripts that the page is linking to. Alternatively you can choose to enable scripts temporarily for that session only.

For more detailed configuration see the NoScript FAQ.

Cookie Monster

Cookie Monster is a similar extension to NoScript but will the goal of managing cookies.

From the preferences for Cookie Monster select "Block All Cookies". Once this is done, just as with NoScript, you can enable the use of cookies for specific pages from either the Cookie Monster icon on the toolbar or by right clicking the page and navigating to Cookie Monster. You have the option to accept cookies from the website in question or alternatively to only temporarily allow cookies for the current session.

RefControl

RefControl is an extension to control what gets sent as the HTTP Referer. Once installed RefControl can be configured so that no referer gets sent when navigating to a new webpage. This prevents the server from knowing which website you originated from.

To do this open RefControl's preferences and change the setting for "Default for sites not listed:" to <Block>.

RequestPolicy

RequestPolicy is an extension for Mozilla browsers which lets you have control over cross-site requests. The latest development version lets you blacklist or whitelist requests by default. Disabling unnecessary cross-site requests leads to better privacy, safety and faster browsing.

For more information on cross-site requests and RequestPolicy visit here.