[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Firefox configurations for tor with Mac ppc







-----Original Message-----
From: Hanspeter Spalinger <tor@xxxxxxxxx>
To: or-talk@xxxxxxxxxxxxx
Sent: Wed, Apr 21, 2010 6:37 pm
Subject: Re: Firefox configurations for tor with Mac ppc

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Am 21.04.10 02:53, schrieb zzzjethro666@xxxxxxxxxxxx:

> Here's a few more. Hope someone notices them and checks them out. Should I
change my mac?
>
> browser.safebrowsing.enabled false mac is true
> browser.safebrowsing.malware.enabled false mac is true
safebrowsing is checking addresses against known "bad" sites. this list
will be retrieved from google periodicaly. This is the "enumerate
badware" aproach which is inheriently flawed. If you use active blockers
like noscript and alike, you gain much more security (eg, the "whitelist
known good stuff" aproach)
(http://kb.mozillazine.org/Browser.safebrowsing.enabled)
> browser.search.suggest.enabled false mac is true
you may want to turn this off since it may leak information to outside.
(http://kb.mozillazine.org/Browser.search.suggest.enabled)

> extensions.torbutton.locked_node true mac is false
> extensions.torbutton.proxies_applied true mac is false
> extensions.torbutton.restore_tor true mac is false
> extensions.torbutton.settings_applied true mac is false
> extensions.torbutton.tor_enabled true mac is false
Those are state settings for torbutton. i dont think you should change them.
Read http://www.torproject.org/torbutton/design/#id2977751 for details
>
> network.cookie.cookieBehavior 1 mac is 2
cookies disabled on mac. good for privacy. you may want to use a plugin
like cookiesafe to manage cookies in a more controlable way (the "always
off" doesnt work for some sites).
(http://kb.mozillazine.org/Network.cookie.cookieBehavior)
> network.protocol-handler.warn-external.mailto true mac is false
> network.protocol-handler.warn-external.news true mac is false
> network.protocol-handler.warn-external.nntp true mac is false
> network.protocol-handler.warn-external.snews true mac is false
This decides if you get a warning before open urls that will be handled
by external application. Eg, click a mailto://-link and it opens your
mail-application. Your mac will open mail and news without asking if you
click a link.
(http://kb.mozillazine.org/Network.protocol-handler.warn-external-default)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.14 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iF4EAREIAAYFAkvO42oACgkQpjmLjrU66/4ovgEAqCdVGqWP3KetGwUmB43kJe3T
mIqZS8b/BAmykh3k19IA/RYJdeqnt5G3k9BO9aAFKhuXiS3gO5FR2hbj0WSww5cq
=juC6
-----END PGP SIGNATURE-----
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk in the body. http://archives.seul.org/or/talk/

Hi and thanks for your response. I just want to be sure I understand what you are saying so please excuse my denseness.

the extension.torbutton configs I sent above are all different on my Mac so I am assuming you mean I should change my mac to
match the "state settings" as you called them. Is that correct?

And what about "mailto", "news", "nntp" and "snews"? I should I make my mac true for them all?
And of course for the first two, concerned with safebrowsing, should I change my mac?

I had found Firefox configuration settings on the Hidden Wiki, that had recommended that
network.protocol-handler.external-default be set at "false"
and
all subsettings for network.protocol-handler.external-default be set to "false".
There are 16 of them; afp, data, disk, disks, hcp, help, _javascript_, mailto, moz-icon, ms-help, news, nntp, shell, snews, _vbscript_ and vnd.ms.radio.

Subsequently, network.protocol-handler.warn-external-default was to be set at "true", with all subsettings also set to "true".

There are four: mailto, news, nntp and snews.

Thanks for any clarity on this issue for me.