hardening the firefox browser
play

Hardening the Firefox browser Preventing unwanted background traffic - PowerPoint PPT Presentation

Jan 02, 2024 •327 likes •470 views

Hardening the Firefox browser Preventing unwanted background traffic to Google, Pocket and hidden telemetry to Mozilla Per Foyer per@foyer.se 10 10 Cryptoparty 201911-R1 Hardening Firefox: Method To harden Firefox we need to: 1. Adjust

  1. Hardening the Firefox browser Preventing unwanted background traffic to Google, Pocket and hidden telemetry to Mozilla Per Foyer per@foyer.se 10 10 Cryptoparty 201911-R1

  2. Hardening Firefox: Method To harden Firefox we need to: 1. Adjust visible configurations in Options / Preferences 2. Do a fair amount of changes to parameters hidden in the about:config settings (behind the scene): • Disabling Pocket • Disabling WebRTC (notorious for leaking) • Disabling sending of crash dumps • Combat telemetry settings • Remove all references to Google First, let’s have a look what’s going on the network interface when using a stock installation of Firefox… 11 per@foyer.se Cryptoparty 201911-R1

  3. Firefox - stock install (1) Wireshark monitoring host’s NIC Firefox started… (outgoing traffic) Not touching the browser! 12 Per@Foyer.se Cryptoparty 201911-R1

  4. Firefox - stock install (2) Not touching the browser! Massive amounts of requests being done… 13 per@foyer.se Cryptoparty 201911-R1

  5. Firefox - stock install (3) Not touching the browser! Say hello to Google… 14 per@foyer.se Cryptoparty 201911-R1

  6. Firefox - stock install (4) Still not touching the browser! Probable telemetry sent to Mozilla 15 per@foyer.se Cryptoparty 201911-R1

  7. Firefox – Hardened! Just started A short initial burst of (unknown) connections to one single Akamai server Then, silence… 16 per@foyer.se Cryptoparty 201911-R1

  8. Hardening Firefox: Step 1 Visible settings Step 0: Backup your bookmarks!!! (Follow me) 17 per@foyer.se Cryptoparty 201911-R1

  9. Hardening Firefox: Step 2 about:config: Pocket (Follow me) 18 per@foyer.se Cryptoparty 201911-R1

  10. Hardening Firefox: Step 3 (Follow me) about:config: WebRTC 19 per@foyer.se Cryptoparty 201911-R1

  11. Hardening Firefox: Step 4 (Follow me) about:config: Crash dumps 20 per@foyer.se Cryptoparty 201911-R1

  12. Hardening Firefox: Step 5 (Follow me) about:config: Telemetry 21 per@foyer.se Cryptoparty 201911-R1

  13. Hardening Firefox: Step 6 about:config: Google… (Done!) 22 per@foyer.se Cryptoparty 201911-R1

  14. Finito!  23 per@foyer.se Cryptoparty 201911-R1

Recommend

By JoseeAntonioR INDEX OF CONTENTS 1.- What is Firefox? 2.- Uses of Firefox 3.- How To:

By JoseeAntonioR INDEX OF CONTENTS 1.- What is Firefox? 2.- Uses of Firefox 3.- How To:

Introduction to Firefox By JoseeAntonioR INDEX OF CONTENTS 1.- What is Firefox? 2.- Uses of Firefox 3.- How To: Download Files 4.- How To: History 5.- How To: Tabbing 6.- How To: App Tabs 7.- How To: Set Homepage 8.- How To: Block

557 views • 16 slides
Firefox Security Sid Stamm <sid@mozilla.com> Browser as a Protector Protect Site

Firefox Security Sid Stamm <sid@mozilla.com> Browser as a Protector Protect Site

Firefox Security Sid Stamm <sid@mozilla.com> Browser as a Protector Protect Site Content Safe Platform Third-Party Features Keeping your Secrets Content Restrictions Content Security Policy Content Restrictions Document

560 views • 43 slides
Mastering Astronomy Tips A. Having problems with the website? 1. Update your browser The most

Mastering Astronomy Tips A. Having problems with the website? 1. Update your browser The most

Mastering Astronomy Tips A. Having problems with the website? 1. Update your browser The most recent versions of Microsoft IE, Firefox, and Safari all work with the website. 2. Update your Flash video browser plugin Search for Adobe Flash

372 views • 13 slides
Performant Security Hardening Steve Rutherford (srutherford@google.com) Googles

Performant Security Hardening Steve Rutherford (srutherford@google.com) Googles

Performant Security Hardening Steve Rutherford (srutherford@google.com) Googles Virtualization Security Team 1 Preface This talk is x86 and KVM centric 2 Outline Background Current Hardening Split Irqchip, PIT Prototype Hardening

884 views • 41 slides
To view this event we advise you to use the following browsers. DESKTOP: we support Chrome,

To view this event we advise you to use the following browsers. DESKTOP: we support Chrome,

To view this event we advise you to use the following browsers. DESKTOP: we support Chrome, Firefox, Safari and Edge. Here are the minimum version requirements for each browser: Chrome 55+, Firefox 53+, Safari 12.1+, Edge 42 MOBILE: we have native

882 views • 51 slides
Continuous Localization Agenda Brief History Q&A 1. 4. How we shipped Firefox Continuous

Continuous Localization Agenda Brief History Q&A 1. 4. How we shipped Firefox Continuous

Continuous Localization Agenda Brief History Q&A 1. 4. How we shipped Firefox Continuous L10n 2. Localizing Firefox Nightly 3. Android Analysis of our Android Apps Public 2 Shipping Localized Firefox over time Public 3 The

212 views • 18 slides
Firefox POCs BUG 612029: Remote denial of Service POC Actual POC comes from: BUG 833874 Eats

Firefox POCs BUG 612029: Remote denial of Service POC Actual POC comes from: BUG 833874 Eats

Firefox POCs BUG 612029: Remote denial of Service POC Actual POC comes from: BUG 833874 Eats up memory! Notice no unresponsive script dialogue Firefox version 13 In current firefox version -- warning + debug option, no

254 views • 12 slides
Firefox quality Mozilla Paris | FOSDEM | Feb 3rd 2018 Bonjour ! Je suis Sylvestre Ledru Je

Firefox quality Mozilla Paris | FOSDEM | Feb 3rd 2018 Bonjour ! Je suis Sylvestre Ledru Je

Firefox quality Mozilla Paris | FOSDEM | Feb 3rd 2018 Bonjour ! Je suis Sylvestre Ledru Je parle de Firefox Quality Twitter @SylvestreLedru 2 Bonjour ! 3 Bonjour ! 4 Bonjour ! 5 The Firefox scale About:Firefox We release every 6

775 views • 41 slides
Python for Informatics Database Handout Download and install FireFox and the SQLite Manager

Python for Informatics Database Handout Download and install FireFox and the SQLite Manager

Python for Informatics Database Handout Download and install FireFox and the SQLite Manager http://www.mozilla.org/enUS/firefox/new/ https://addons.mozilla.org/enUS/firefox/addon/sqlitemanager/ Queries insert into Users (name, email) values

503 views • 3 slides
CSN11121 System Administration and Forensics Web Browser Forensic r.ludwiniak@napier.ac.uk

CSN11121 System Administration and Forensics Web Browser Forensic r.ludwiniak@napier.ac.uk

CSN11121 System Administration and Forensics Web Browser Forensic r.ludwiniak@napier.ac.uk Overview Forensics on Internet Explorer and Firefox Structure Information storage Access to the Information storage Tools used to

1.04k views • 40 slides
A new version of Firefox is available Rapid Release of Quality Firefox Products Lukas Blakk

A new version of Firefox is available Rapid Release of Quality Firefox Products Lukas Blakk

A new version of Firefox is available Rapid Release of Quality Firefox Products Lukas Blakk & Sylvestre Ledru Who are we ? Sylvestre Lukas Has been at Mozilla for a year Mozillian since 2006 Debian Developer Release

462 views • 30 slides
Hurricane Hardening Hurricane Hardening Research Research Presentation to the Louisiana Public

Hurricane Hardening Hurricane Hardening Research Research Presentation to the Louisiana Public

Hurricane Hardening Hurricane Hardening Research Research Presentation to the Louisiana Public Service Commission May 4, 2007 Mark A. Jamison, PURC Director Leadership in Infrastructure Policy Leadership in Infrastructure Policy

487 views • 45 slides
Variable values are shown in layers even while authoring (e.g. the actual project/document

Variable values are shown in layers even while authoring (e.g. the actual project/document

COMPOSICA 6 Your Content Anywhere Desktop, Smartphone, or Tablet. Windows, Android, iOS, or Mac. Internet Explorer, Chrome, Firefox, or Safari. Whatever device, platform, and browser combination users may choose is no longer a challenge.

316 views • 3 slides
Cordova and Firefox OS HTML5 for the Mobile Web Jason Weathersby Cordova and Firefox OS

Cordova and Firefox OS HTML5 for the Mobile Web Jason Weathersby Cordova and Firefox OS

Cordova and Firefox OS HTML5 for the Mobile Web Jason Weathersby Cordova and Firefox OS Click Here For Presentation 11/13/14 2 Title Here

190 views • 3 slides
Single Event Upset Hardening Single Event Upset Hardening by 'hijacking' the multi-VT by

Single Event Upset Hardening Single Event Upset Hardening by 'hijacking' the multi-VT by

Single Event Upset Hardening Single Event Upset Hardening by 'hijacking' the multi-VT by 'hijacking' the multi-VT flow during synthesis flow during synthesis Roland Weigand February 04, 2013 Design Automation Conference User Track European

394 views • 17 slides
Hardening Windows Applications Hardening Windows Applications olleB olle@toolcrypt.org The

Hardening Windows Applications Hardening Windows Applications olleB olle@toolcrypt.org The

www.toolcrypt.org Standing on the shoulders of the Blue Monster: Hardening Windows Applications Hardening Windows Applications olleB olle@toolcrypt.org The Toolcrypt Group www.toolcrypt.org www.toolcrypt.org Agenda Agenda Introduction

532 views • 32 slides
Anil Kurmus kur@zurich.ibm.com IBM Research - Zurich Outline 1. Background Hardening Kernel

Anil Kurmus kur@zurich.ibm.com IBM Research - Zurich Outline 1. Background Hardening Kernel

September 2016 BalCCon 2k16 Kernel Exploitation and Hardening Why we could have nice things! (using Split Kernel) Anil Kurmus kur@zurich.ibm.com IBM Research - Zurich Outline 1. Background Hardening Kernel Vulnerabilities Kernel

1.07k views • 39 slides
Inside Firefox Robert O'Callahan robert@ocallahan.org Mozilla An open Internet An open Web A

Inside Firefox Robert O'Callahan robert@ocallahan.org Mozilla An open Internet An open Web A

Inside Firefox Robert O'Callahan robert@ocallahan.org Mozilla An open Internet An open Web A level playing field Our tool: Firefox Overview Why Web browsers are hard Mozilla development processes and tools Running a successful

350 views • 33 slides
Course Surveys: SFI URL Link Link: https://p1.courseval.net/etw/ets/et.asp?nxa

Course Surveys: SFI URL Link Link: https://p1.courseval.net/etw/ets/et.asp?nxa

Course Surveys: SFI URL Link Link: https://p1.courseval.net/etw/ets/et.asp?nxa ppid=1N2&nxmid=start Click on the link or copy and paste into URL address window in your browser (Internet Explorer, Firefox, Google Grome, etc. Sign

258 views • 11 slides
Agenda Linux security 1. System hardening 2. Technical audits 3. Automation 2 Michael Boelen

Agenda Linux security 1. System hardening 2. Technical audits 3. Automation 2 Michael Boelen

Agenda Linux security 1. System hardening 2. Technical audits 3. Automation 2 Michael Boelen 3 Linux security Areas Core Resources Services Environment System Hardening Boot Process Accounting Database Forensics Containers

821 views • 34 slides
Firefox OS Open source mobile OS (Apache 2.0) 14 operators / 28+ countries Built by

Firefox OS Open source mobile OS (Apache 2.0) 14 operators / 28+ countries Built by

Sam Foster sfoster@mozilla.com samfosteriam sfoster Firefox OS Open source mobile OS (Apache 2.0) 14 operators / 28+ countries Built by Mozilla + partners + contributors Why Firefox OS? Web under threat from parallel

453 views • 13 slides
A Firefox cluster driven by JavaScript, Perl, and PL/PgSQL A Firefox cluster driven by JavaScript

A Firefox cluster driven by JavaScript, Perl, and PL/PgSQL A Firefox cluster driven by JavaScript

A Firefox cluster driven by JavaScript, Perl, and PL/PgSQL A Firefox cluster driven by JavaScript , Perl , & PL/PgSQL agentzh@yahoo.cn (agentzh) 2009.2 "How about using Firefox in a crawler cluster ?" "Man,

647 views • 52 slides
Browser and Network request Browser website CS 4803 reply Network OS Computer and Network

Browser and Network request Browser website CS 4803 reply Network OS Computer and Network

Browser and Network request Browser website CS 4803 reply Network OS Computer and Network Security Hardware Alexandra (Sasha) Boldyreva Browser sends requests May reveal private information (in forms, cookies) Web security.

517 views • 7 slides
Hardening WordPress (or, How Not To Get Hacked And What To Do When You Are) Gregory Ray dot

Hardening WordPress (or, How Not To Get Hacked And What To Do When You Are) Gregory Ray dot

Hardening WordPress (or, How Not To Get Hacked And What To Do When You Are) Gregory Ray dot gray inc. @dotgray Sunday, March 15, 15 Resources Codex.WordPress.org / Hardening_WordPress Blog.Sucuri.net / WordPress Security WPSecure.net /

608 views • 32 slides

More recommend