-
DESKTOP: After careful consideration, Phoenix's default search engine is now DuckDuckGo. While not perfect, we believe DuckDuckGo has a strong track record and solid reputation for protecting user privacy, and we believe it's simply the most trustworthy/reputable privacy-respecting search engine currently available. Brave Search has been removed from Phoenix, though it can still be manually added from Brave's website if desired.
-
DESKTOP: Paid search engines have been removed from Phoenix by default. This includes
Kagi,Kagi HTML,MetaGer,Mullvad Leta (Brave), &Mullvad Leta (Google). Users who pay for these search engines can still manually add them if desired. -
DESKTOP: We now include our own recommended extensions and themes in the
Recommendationstab ofabout:addons! See here for details on what extensions are included, why, and the criteria for inclusion. Feel free to make suggestions if we're missing an extension or theme you'd like to see! -
DESKTOP: We no longer enforce
autoUpdate,autoUpdatePeriod,cnameUncloakEnabled,hyperlinkAuditingDisabled,prefetchingDisabled, &suspendUntilListsAreLoadedfor uBlock Origin in ourpolicies.json, as these settings are already uBlock Origin's defaults, and configuring them like this unfortunately locks the setting and prevents users from overriding if desired. Hopefully uBlock Origin will add support for configuring settings as only the default, rather than only having the option to enforce them (uBlockOrigin/uBlock-issues#3538). - https://codeberg.org/celenity/Phoenix/issues/56 -
Disabled spoofing locale to
en-USfor all configs by default, due to usability concerns for non-English speakers. -privacy.spoof_english->0(We still recommend spoofing your locale if you are fluent in English by settingprivacy.spoof_englishin yourabout:configback to2) -
Added various new granular FPP overrides - see here and here for details.
-
ANDROID: Removed our FPP override for
apple.com, as Apple Maps simply isn't supported on Android, so it's unnecessary. -privacy.fingerprintingProtection.granularOverrides-> -
DESKTOP: uBlock Origin is now enabled in private windows by default, and our search 'extensions' are explicitly disabled in private windows. It should be noted that this currently only works on Nightly.
-
Our search 'extensions' are now explicitly blocked from accessing restricted domains. - https://codeberg.org/celenity/Phoenix/commit/6dd7570be8d7a861995131cae0e0f37f5135d8ea
-
ANDROID: Explicitly enabled SmartBlock -
extensions.webcompat.enable_shims,extensions.webcompat.perform_injections, &extensions.webcompat.perform_ua_overrides->true -
EXTENDED: WebRTC will now only use TURN servers/relays, rather than connecting via peer to peer directly. -
media.peerconnection.ice.relay_only->true -
DESKTOP: WebXR is still blocked by default, but it is now unlocked so that users may use it if desired.
-
Explicitly disabled unprivileged extensions from accessing experimental APIs by default -
extensions.experiments.enabled->false -
Added an additional pref to ensure Early Hints are properly disabled -
network.early-hints.over-http-v1-1.enabled->false -
Enforced the use of Firefox's built-in certificates for installation & updates of extensions -
extensions.install.requireBuiltInCerts&extensions.update.requireBuiltInCerts->true -
Prevented automatic scanning/installation/enabling of extensions in Firefox's application directory -
extensions.installDistroAddons->false -
DESKTOP: Removed superfluous
WebsiteFilterpolicy. -
YOUTUBE SPECIALIZED CONFIG: Disabled WebRTC for attack surface reduction -
media.peerconnection.enabled->false -
SPECIALIZED CONFIGS: Hardened WebRTC and updated the WebRTC overrides where needed to reflect changes described above - See ex. https://codeberg.org/celenity/Phoenix/commit/7a5892bb8da259de6d510347f2d49643f40e169c for details.
-
Other minor tweaks, fixes, and enhancements.
Codeberg: See here for more details.
GitLab: See here for more details.
GitHub: See here for more details.
:)