foxgirl-linux/README.md

LibreWolf: Browse With Freedom

This project is an independent fork of Firefox, with the primary goals of privacy security and user freedom. It is the community run successor to LibreFox

LibreWolf uses more than 500 privacy/security/performance settings, patches, LibreWolf-Addons (optional) and is designed to minimize data collection and telemetry as much as possible (updater, crashreporter and Firefox's integrated addons that don't respect privacy are removed).

LibreWolf is NOT associated with Mozilla or its products.

Features

• Latest Version of Firefox: LibreWolf is compiled directly from the latest build of Firefox Nightly. As a result, you will have the most bleeding edge of features, technologies and security updates. Stable builds are also planned in the future.
• Completely Independent Build: LibreWolf uses a completely independent build from Firefox and has its own settings, profile folder and installation path. As a result, it can be installed alongside Firefox or any other browser.
• Extensions firewall: limit internet access for extensions (firewall-test-feature)
• IJWY (I Just Want You To Shut Up): embedded server links and other calling home functions are removed (zero unauthorized connection by default).
• User settings updates: gHacks/pyllyukko base is kept up to date.
• Settings protection: important settings are enforced/locked within librewolf.cfg and policies.json, those settings cannot be changed by addons/updates/LibreWolf itself or unwanted/accidental manipulation; To change those settings you can easily do it by editing librewolf.cfg and policies.json.
• LibreWolf-addons: set of optional LibreWolf extensions
• Statistics disabled: telemetry and similar functions are disabled
• Tested settings: settings are performance aware
• ESR and Tor version (LibreWolf TBB Beta)
• Tor LibreWolf-addons: adapted LibreWolf extensions for TBB
• Multi-platform (Windows/Linux/Mac/and soon Android)
• Dark theme (classic and advanced)
• Recommended and code reviewed addons list
• Community-Driven
• And much more...

---

Index

• Download
  • Arch
  • Portable/Universal
• Addons
  • Recommended Addons
  • Recommended Addons Settings
  • Reviewing Extensions Code
  • Other Addons
    • Privacy addons
    • Other useful addons
• Installation Instructions
  • Windows
  • Linux
  • Mac
  • Uninstall
• Extensions Firewall
  • Description
  • The Settings
  • Blocking A Domain
  • Blocking The Network
  • More Infos
• IJWY (I Just Want You To Shut Up)
• Edit Locked Settings
• Browser Tests
  • Security/Fingerprint
  • Performances
  • DNS/VPN/Proxy Leak
• About
• LibreWolf Roadmap
  • Objectives for future versions of LibreWolf (this-may-change)
  • Todo for future versions of LibreWolf (this-may-change)
• Settings Index
• Cookies Settings
• Tracking Protection
• Comparing Changes And Updates
• Documentation
• LibreWolf Dark Theme
• Tuning LibreWolf
  • Restart Button
  • Alternative Dark Theme
  • Linux Fix Text Colors
  • LibreWolf Addons For ESR And Tor
• Tor Compatibility
• DRM Compatibility
• LibreWolf ESR
• Building And Packaging
  • Linux
  • Windows
  • Mac

Download

Arch

LibreWolf is available on the AUR in both source code and binary format.

Portable/Universal

LibreWolf will also be available as a binary tarball and an AppImage format. Check out the releases page for downloads.

Addons

Recommended Addons

Recommended addons are not bundled and need to be installed manually

• Cookie Master: Block all cookies and only allow authorized sites
• First Party Isolation: Enable/Disable FPI with the click of a button
• User Agent Platform Spoofer: Spoof a different UserAgent OS Linux/Windows/Mac
• Browser Plugs Privacy Firewall: Sets of settings to prevent fingerprinting and security issues
• uBlock Origin + IDCAC List + Nano-Defender List: Block web advertisement and tracking

Recommended Addons Settings

• uBlock Origin: Additional filters are availables here: https://filterlists.com/ (don't surcharge it to avoid performance loss)
• Browser Plugs Privacy Firewall: Keep settings light to make privacy.resistFingerprinting efficient because too much customization will lead to uniqueness and therefore easy fingerprinting.

  - Privacy / Fingerprint / Fake values for getClientRects
  - Privacy / Fingerprint / Randomize Canvas Fingerprint
  - Privacy / Fingerprint / 100% Randomize ALL Fingerprint Hash
  - Firewall / Experimental / Block SVG getBBox and getComputedTextLength
  - Privacy / Font / Randomize
  - Privacy / Font / Enable protection for font and glyph fingerprinting

Other Addons

Privacy addons

• NoHTTP: Block http traffic and/or redirect it to https (Excellent replacement for the unrecommended https-everywhere)
• Google-Container: Open all Google sites in a container
• Facebook-Container: Open all Facebook sites in a container
• Request-Blocker: Hosts style blocking sites
• Decentraleyes: Makes a lot of web resources available locally to improve privacy
• Dont-Track-Me-Google: Cleaning Google search result links
• Canvas-Blocker: Prevent some fingerprinting techniques (This should not be used with browser plugins addon as it provide similar features)
• Cookie-Quick-Manager: View and edit cookies
• Mozilla-Multi-Account-Containers: Manage containers and assign sites to specific container
• Switch-Containers: Switching container for the current tab easily
• Temporary-Containers: Maximizing and automating container potential
• Smart-Referer: Manage referer with a button (Send referers only when staying on the same domain.)

Other useful addons

• Dormancy: Unload tab after a certain time, useful for performance when opening a lot of tabs
• Add Custom Search Engine: Customize your search engine
• ProxySwitcheroo: Apply proxy settings in a click
• UndoCloseTabButton: Reopen last closed tab
• Advanced Github Notifier: Github notifications
• Shortkeys: Add custom shortkeys
• Tabboo: Session manager

Installation Instructions

Notice: in the current state of the project LibreWolf is a set of configuration files for Firefox (awaiting a correct build of the project), therefore if you already have a Firefox profile, that profile will be used and temporary files will be removed (cookies and current session), make sure to backup your current Firefox's profile before using LibreWolf. Using LibreWolf simultaneously with Firefox is possible through a different profile you can follow this wiki to do so.

Windows

• Download and install the last version of Firefox x32 release or x64 release
• Download LibreWolf zip file and extract it
• Locate Firefox's installation directory (where the firefox.exe is located) C:\Program Files\Mozilla Firefox\ or C:\Program Files (x86)\Mozilla Firefox\ or Tor-Install-Directory\Browser\
• Copy the extracted LibreWolf files to the install directory

Linux

• Download and extract the last version of Firefox x32 release or x64 release
• Download the LibreWolf zip file and extract it
• Copy the extracted LibreWolf files to the newly downloaded firefox directory
• You can use directly LibreWolf by running 'firefox/firefox'
• You can as well create a shortcut to 'firefox/firefox' to open LibreWolf easily.

Mac

• Download and install the last version of Firefox
• Download LibreWolf zip file and extract it
• Locate Firefox's installation directory (Applications/Firefox.app/Contents/Resources/ or Applications/Tor Browser.app/Contents/Resources/)
• Copy the extracted files to the install directory

Uninstall

• To uninstall, just remove the files you added to your Firefox's install directory (to know what are the files to remove just check the downloaded LibreWolf zip file) then restart Firefox.

Extensions Firewall

Description

This is a test experiment feature and it is disabled by default.

A new section Extensions Manager is added to manage addons globally (and addons networking in the subsection Extensions Firewalling). Firewalling the network for addons is doable, but it requires a considerable amount of additional work in LibreWolf to make it usable through a button or in a per addon basis (this may or may not be added in a future version, it also could be abandoned as it is a test feature). Currently you can block a list of domains or block the whole network for all the extensions.

The Settings

Available native network restriction settings for addons:

• Restricted domains list: extensions.webextensions.restrictedDomains this is a list of restricted domains that will be used to block some hosts for all the extensions, Firefox uses this setting to block extensions from accessing mozilla's domains/sites, by default in LibreWolf this setting is set to allow extensions to access all the web (You can edit that list to match your needs or to block a specific domain, note that the domain name has to be 'exact' (for instance facebook.com will only block facebook.com not mobile.facebook.com)
• Content security policy: extensions.webextensions.base-content-security-policy and extensions.webextensions.default-content-security-policy the later settings can be redefined/changed within an extension so it's not efficient for a firewall purpose. CSP settings are used in Firefox as an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement to distribution of malware; In short: CSP settings block and allow certain domains under certain circumstances and thus could be used to firewall the extensions (CSP Documentations, its sources code and implementation)

Blocking A Domain

Edit the restricted domains setting as follow under the about:config page:

• Restricted Domains Setting: extensions.webextensions.restrictedDomains Value: ExactDomains1,ExactDomains2,ExactDomains3 etc.

Blocking The Network

To enable the feature and block the network for all the extensions open librewolf.cfg search for Enable-Firewall-Feature-In-The-Next-Line and remove the // in the next line.

Note that this will block the network access for all the extensions and a lot of extensions needs to be connected in order to work. In the current version of LibreWolf you can block the network for all the extensions or allow it for all of them, a future version may provide additional features like "per addon" setting (By default LibreWolf allows networking for extensions).

More Infos

Check debug-notes.log for additional info about future version and researches about the subject. Also check CSP Documentations, its sources code and implementation.

IJWY (I Just Want You To Shut Up)

This is a set of settings that aim to remove all the server links embedded in Firefox and other calling home functions in the purpose of blocking un-needed connections. The objective is zero unauthorized connection (ping/telemetry/Mozilla/Google...).

Edit Locked Settings

Just edit librewolf.cfg, save and restart LibreWolf.

Browser Tests

Security/Fingerprint

Firefox 60 and privacy.resistFingerprinting are relatively new, please give it some time to be more widely used and thus less finger-printable; If you are using a different site to analyze your browser make sure to read and understand what the test is about.

• SSLLabs
• AmiUnique
• BrowserLeaks
• BrowserPlugs
• FingerPrintJS2
• Third-Party-Cookies
• Testing-Notifications
• Browser-Storage-Abuser
• Service-Workers-Push-Test

Performances

Performance tests can be done here LVP Octane, it needs to be launched alone with other applications closed and with no other activity but the benchmark, also it's recommended to launch it many times and then calculate the average.

DNS/VPN/Proxy Leak

• IPLeak
• Tenta-Test
• IP-Browserleaks

About

License: Mozilla Public License 2.0

Inspired from: ungoogled-chromium

Based on: Librefox, whose development seems to have halted.

Acknowledgement, special thanks to:

• @intika for putting Librefox together
• The Mozilla team for their amazing work on Firefox
• The gHacks-User team for allowing the usage of their work
• All the stargazers (users that are encouraging this project by starring it)
• Icon was created with images by OpenClipart-Vectors from Pixabay
• Icons made by Vaadin from www.flaticon.com is licensed by CC 3.0 BY

LibreWolf Roadmap

See https://gitlab.com/librewolf-community/librewolf/issues

Settings Index

librewolf.cfg:

Section	Bench Diff
User settings	+0 / 5000
Defaulting Settings	+0 / 5000
Controversial	+0 / 5000
Firefox Fingerprint	+0 / 5000
Locale/Time	+0 / 5000
Ghacks-user Selection	+100 / 5000
Extensions Manager	+0 / 5000
IJWY To Shut Up	+0 / 5000
Microsoft Windows	+0 / 5000
Firefox ESR60.x	+0 / 5000
Security 1/3	+0 / 5000
Security 2/3	+0 / 5000
Security 3/3 (Cipher)	+0 / 5000
Performance 1/5	+650 / 5000
Performance 2/5	-800 / 5000
Performance 3/5	-1720 / 5000
Performance 4/5	-200 / 5000
Performance 5/5	-50 / 5000
General Settings 1/3	+100 / 5000
General Settings 2/3	+0 / 5000
General Settings 3/3	-40 / 5000
Disabled - ON/OFF	+0 / 5000
Disabled - Deprecated Active	+0 / 5000
Disabled - Deprecated Inactive	+0 / 5000

local-settings.js:

Section	Bench Diff
General settings	++ / 5000

Cookies Settings

Using different web services without cookies is impossible and cookie settings in a browser are very important when it come to privacy, in LibreWolf the settings are locked to avoid unwanted changes in such an important setting, but they can be easily changed in librewolf.cfg under User Settings: Cookies settings.

Tracking Protection

Firefox now integrates a tracking protection feature (based on disconnect.me) it's a small content blocking list, the listing can not be edited, this feature is disabled in LibreWolf. It's recommended to use uBlock Origin instead. This feature is disabled:

• Until it evolves and integrates at least list editing.
• Because double filtering (this + ublock) is not suitable for performance.

You can however easily enable this feature in librewolf.cfg under User Settings: Track Protection (just comment active lines with // or remove the entire section).

Comparing Changes And Updates

If you want to compare changes over updates or if you already have a user.js/librewolf.cfg/policies.json. consider using Compare-UserJS, it's an amazing tool to compare user.js files and output the diffs in detailed breakdown, developed by gHack's very own resident cat, claustromaniac 🐱

Usage: If not on windows install PowerShell then (for example) pwsh Compare-UserJS.ps1 librewolf.cfg user.js (Warning that PowerShell connects to Microsoft sometimes).

Documentation

librewolf.cfg: Locking and defaulting LibreWolf settings for security, privacy and performance.

Policies.json: Policies for enterprise environments (the settings available with policies.json are limited right now because this is a new feature of Firefox).

Bench diff: Impact on the performance of LibreWolf, it can be a gain or a loss of performance +100/5000 stand for 2% gained performance and -1500/5000 stand for -30% performance loss.

lockPref: Locked preference can not be changed by extensions or updates, they can only be changed in librewolf.cfg.

Defaulting VS Enforcing: Defaulted settings can be changed by the user or an extension if permitted within the browser while enforced settings are locked and can not be changed within the browser, enforced settings can be changed in librewolf.cfg.

About:config: http://kb.mozillazine.org/About:config_entries.

LibreWolf Dark Theme

LibreWolf provides a classic dark theme extension (LibreWolf Dark Theme).

Tuning LibreWolf

Restart Button

One simple solution is to bookmark about:restartrequired or about:profiles. When restart is needed open that page and click "normal restart". You can even go further and add the bookmarks links to your icons bar and rename the link to an empty text (you will then have a direct icon to about:profiles and a 2 clicks restart).

...

Alternative Dark Theme

Linux Fix Text Colors

On Linux when using a dark desktop theme LibreWolf could display white text over white background or black text on black input on some sites or addons, this is fixed in LibreWolf with lockPref("ui.use_standins_for_native_colors", true);.

If ui.use_standins_for_native_colors is not enough to fix everything you can fix this issue with an other additional solution by using the following values in about:config (you need to have Adwaita theme installed) more details (Note that this is not needed with the default LibreWolf settings as it is already fixed)

widget.content.allow-gtk-dark-theme;false
widget.chrome.allow-gtk-dark-theme;false
widget.content.gtk-theme-override;Adwaita:light

LibreWolf Addons For ESR And Tor

• LibreWolf HTTP Watcher ESR - Tor MoD: Change the url bar color on http and onion sites (to green/red)
• LibreWolf NoHTTP - Tor MoD: Block http traffic and/or redirect it to https (Excellent replacement for the unrecommended https-everywhere)

Tor Compatibility

We do not recommend connecting over Tor on LibreWolf classic version (because of the missing LibreWolf-Tor-Addons, they are only included in the tor version for obvious reasons), use instead LibreWolf-Tor version if your threat model calls for it, or for accessing hidden services (Thus said tor settings have been enabled since v2 on all LibreWolf versions for user toriffying/proxifying their entire connection).

Currently LibreWolf-TBB is in beta test, Tor compatibility may change.

DRM Compatibility

Digital rights management (DRM) is enforced off by default (this is needed for Netflix and similar); you can enable it with the following instructions:

• Open librewolf.cfg
• Under the section Section: User Settings
• Comment the active lines with // under the subsection User Settings: DRM/CDM - Main
• Comment the active lines with // under the subsection User Settings: DRM/CDM - Widevine
• Restart Firefox then open about:preferences and enable Play DRM... under general section
• Firefox will download Widevine and enable it (under about:addons plugins section) you can force the download by clicking Check for updates under the tools button

LibreWolf ESR

For ESR users if you opt for LibreWolf HTTP Watcher you need to use this version LibreWolf HTTP Watcher ESR - Tor MoD

Building And Packaging

Linux

• Build instruction will be updated soon

Windows

• Build instruction will be updated soon

Mac

• Build instruction will be updated soon