#4 Secure your Data & Privacy on Firefox Browser
Samir Jadhav
Experience Strategy | Governance | Research | Design | Delivery ... ... Lead Experience Strategist@Cognizant, ... ... ... ... ... ... ... ... ... ... ... Ex. TCS, Purple Image Technologies, Deepak Mehta Architects
It is natural for (and naive of) us to trust the operating system and any applications that we have always been using, without knowing the implications of the #data that is constantly leaked to the big corporates without our knowledge.
The consent itself, if included, are usually opt-out, meaning you are opted in by default and the controls are hidden deep inside the interface to make it difficult to access. Most of us do not go through the effort to find it and opt out, essentially serving its own self interest. (Dark UX pattern)
If you are using Firefox browser, here are a few configuration changes that you should do before using the app.
Better still, use the LibreWolf browser which is a hardened fork of Firefox or the Brave browser. A privacy conscious person would avoid Google Chrome like a plague.
?
Settings > Home tab
New Windows and Tab
Set 'Homepage and new windows' - www.duckduckgo.com or https://www.startpage.com/
Unlike Google, these search engines do not associate your search history with your identity and are more privacy focused.
Firefox Home Content
Uncheck 'Shortcuts', 'Pockets', 'Recent activity', 'Snippets'
?
Default Search Engine
Change from 'Google' to 'Duckduckgo'
Uncheck 'Provide search suggestions
Settings > Privacy and Security tab
Enhanced Tracking Protection
Choose between 'Standard', 'Strict' or 'Custom' depending on your comfort level.
It is preferred to keep it on 'Strict' for regular use, and change it to 'Standard' if one loses some necessary functionality on a trusted site.
Choose 'Do not Track' to 'Always'
This only helps if a website respects your request. But there is no harm in stating your preference.
?
Cookies and Site Data
Check 'Delete cookies and site data when Firefox is closed
This will remove any cookies stored on your device, and protect your online activity from being connected across sessions.
Logins and Passwords
Uncheck 'Ask to save logins and passwords'
Uncheck 'Use a Primary Password'
?It is better to use an on-device (not on the cloud) open source password manager like KeepassXC, than trusting your data with a third party password manager provider on the cloud. There is always a risk of servers getting hacked and your priceless credentials getting compromised.
Forms and Autofill
Uncheck 'Autofill credit cards'
The less financial information you provide your browser to manage, the less likely it will get compromised.?It is not worth the risk.
History
领英推荐
Select 'Use custom history'
Uncheck 'Remember browsing and download history'
Uncheck 'Remember search and form history'
Check 'Clear history when Firefox closes'
Uncheck 'Browsing history'
Clearing your search history protects your online behavior from other users on your device. It does not hide it from your ISP. For that you could use a trusted VPN or better still use the TOR browser.
?
Address Bar
Check 'Bookmarks'
Check 'Open tabs'
Uncheck 'Shortcuts'
Uncheck 'Search engines'
?
Permissions
Check 'Block pop-up windows'
Check 'Warn you when web sites try to install add-ons'
?
Firefox Data Collection and Use
Uncheck 'Allow Firefox to send technical and interaction data to Mozilla'
Uncheck 'Allow Firefox to make personalized extension recommendations'
Uncheck 'Allow Firefox to install and run studies'
Uncheck 'Allow Firefox to send backlogged crash reports on your behalf
Can you believe, this is enabled by default?
Settings > Privacy and Security tab > Security
Deceptive Content and Dangerous Software Protection
Check 'Block dangerous and deceptive content'
Check 'Block dangerous downloads'
Check 'Warn you about unwanted and uncommon software
Certificates
Check 'Query OCSP responder servers '
Not sure what this is, but keep it enabled as the default behavior.
?
HTTPS-Only Mode
Check 'Enable HTTPS-Only Mode in all windows
This will prevent the browser from opening unsecured websites using the 'http' protocol. It will automatically redirect it to a 'https' version of the website (if available).
Settings > Sync tab
Preferably do not use #Sync feature, as your data is stored on the cloud.