Firefox Community Forum

Hi!

First of all, mods, if I chose the wrong category and this had to go in "customize settings and preferences" feel free to move it :)

So, for several reasons I decided to completely disable SSL and the old TLS 1.0 and 1.1. I still didn't decide if TLS 1.2 is still important or it's enough with 1.3 so for now I am leaving them both. I did this system wide, with PowerShell, following the instructions in THIS THIS article.

But then there's Firefox. I don't know if Firefox can establish SSL (or old TLS) connections despite the system "ban". But I came across THIS THIS article about how to enable TLS 1.3 in Firefox and when I went in about:config and I typed "security" I saw that there are a lot of voices with SSL and a lot more about TLS than just the security.tls.version.max mentioned in that article, so I am here to ask you what to do to be 1000% sure that all SSL and older TLS are completely disabled in Firefox, and that only TLS 1.3 is enabled.

If you have reasons to believe that disabling TLS 1.2 is not a good idea, let me know, but in THIS THIS article I've read that 1.3 is much better and it's anyway backwards compatible with 1.2 in case some server only supports 1.2, so I decided to leave only 1.3.

Thanks!

Hi again,

so, in my other question I was reminded about Browserleaks and while I was there testing TLS I also tested Canvas and it said 100% unique which I was surprised because I have the Enhance Protection in FF in "Custom" with both fingerprinting options selected and in "in all windows", plus CanvasBlocker.

100% unique is not good, right? That's what I thought at first. But then I remembered, CanvasBlocker rotates settings all the time, so even if my fingerprint is 100% unique it's also changing all the time which means "they" can't identify me (supposedly). Then I also thought "actually it might be better than not 100% unique because in that case I might have more issues with websites thinking that it's someone else trying to access my account". But then I thought "although if it's 100% unique changing all the time it's also like if it was a different person".

I deactivated CanvasBlocker and tested again and it was also 100% unique. Then I reactivated CanvasBlocker and I deactivated FF's anti-fingerprint. Again 100% unique. In other words, I don't see a way to see what is the difference between using CanvasBlocker on top of the native FF anti-fingerprint. That's where you can help :)

So, questions.

1) can you tell me what exactly does FF block about fingerprinting? And, does it rotate settings like CanvasBlocker so that this "100% unique" is not actually a real issue because it's different every time? Or is it a bad kind of 100% unique in that case?

2) what would create less issues of websites thinking that I am not me? A rotating 100% unique, or a not 100% unique (in which case, how to I achieve that, considering that neither CanvasBlocker nor FF's anti-fingerprint nor both together can do that?).

Would you say that having a VPN with own DNS which block tracking on a domain level, plus AdGuard with all possible filters, plus FF's Enhanced Protection in "Custom" with all at max, plus CanvasBlocker, is a good combo? Or what could I improve to reach a good balance of not being tracked/fingerprinted, not being blocked "because I am not me", reasonably light resources usage, and reasonable browsing speeds?

I used uBlock Origin previously because it's lighter on resources and it triggers my laptop's fans much less than AdGuard but it doesn't block (not even with element picker) some annoying things of websites that I visit often. In case you wanted to recommend that :)

Thanks!

This message is to inform you that my email is being leaked from my Firefox browser, in hopes that Mozilla will provide a fix ASAP (if it hasn’t already done so in the latest version?). This leak was made known to me after visiting several websites (sites I've visited previously and sites I’ve NEVER visited before!), where I will receive an email very shortly, if not immediately after visiting and closing the browser tab for the website. (These are legitimate sites that are selling a product and, typically, very politely asking if I need more information, etc. ).

After noticing this, I got in the habit of clearing Firefox memory frequently, if not after every site I visit; but especially when my email is required to login. However, today I just notice that my email address is “permanently” located within the Firefox browser; and have to wonder if this could be how websites are getting my email… The email is located in the Firefox addon Video DownloadHelper app. The Companion App within Video DownloadHelper requires a payment, license #, and email to install. And, when looking thru its new menu today, I noticed my email (the same one I get messages from after visiting sites) is right there within the Video DownloadHelper menu (click on VDH icon, click on gear icon, click on More settings…).

So, I don’t know for certain whether my email is being compromised after logging in to a website and not immediately clearing memory after leaving the website OR if the compromise is from the Companion App within the Firefox Video DownloadHelper app, OR possibly both(?). If it is being leaked from Video DownloadHelper, I would greatly appreciate it if Mozilla would implore upon the VDH crew to remove it from the app.

And, if you can, I would greatly appreciate an email letting me know if/when this has been fixed! Thanks! Regards, Dave

I got 3 popups from Malwarebytes stating- Blocked Website, event details- riskware.

c:\program files\mozilla firefox\firefox.exe

Outbound connection With a IP and Domain