From 19d9673b635fe34448846e90ede8cbdab0f2cea1 Mon Sep 17 00:00:00 2001
From: HJ <11689349+yokoffing@users.noreply.github.com>
Date: Fri, 18 Aug 2023 17:54:59 -0400
Subject: [PATCH] Created Optional Hardening (markdown)

---
 Optional-Hardening.md | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 Optional-Hardening.md

diff --git a/Optional-Hardening.md b/Optional-Hardening.md
new file mode 100644
index 0000000..07b85d3
--- /dev/null
+++ b/Optional-Hardening.md
@@ -0,0 +1,14 @@
+1) Change your **default search engine**.
+   * Alternatively, select a different search engine just for [Private Browsing](https://support.mozilla.org/en-US/kb/private-browsing-use-firefox-without-history) windows.
+      1) Go to *Settings → Search → Default Search Engine*
+      2) Change your default search engine to DuckDuckGo, or [add](https://github.com/yokoffing/Betterfox/blob/04c3184359c83d7b58411c3b68f40f3e9d95c373/Securefox.js#L600-L604) a premium search engine like [Kagi](https://kagi.com/).
+2) **Clear browsing data** on shutdown ([sanitize on close](https://github.com/yokoffing/Betterfox/blob/99f2e860633f307781ddb73d792358ad1bec6af5/Securefox.js#L409-L434)).
+   * You can **allow exceptions** if you want to stay logged in to some sites:
+      1) Go to *Settings → Privacy & Security → Cookies and Site Data → Manage Exceptions*
+      2) Check *Delete cookies and site data when Firefox is closed*.
+3) Apply preferences from the [common overrides](https://github.com/yokoffing/Betterfox/issues/87) sticky to enforce the following behavior:
+   * Enable **HTTPS-Only Mode** outside of [Private Browsing](https://support.mozilla.org/en-US/kb/private-browsing-use-firefox-without-history) windows.
+   * Block embedded **tweets, tiktoks, Instagram and Reddit posts** from loading on third-party sites.
+   * **Hide the referrer** from different domains.
+
+We do not use [`privacy.resistFingerprinting`](https://old.reddit.com/r/firefox/comments/wuqpgi/are_there_any_aboutconfig_tweaks_to_get_smooth/ile3whx/?context=3). Fingerprinting is a high [threat model](https://thenewoil.org/en/guides/prologue/threatmodel/) issue that is only [addressed](https://github.com/arkenfox/user.js/wiki/3.3-Overrides-%5BTo-RFP-or-Not%5D#-fingerprinting) reasonably by Tor.<sup>[1](https://youtu.be/5NrbdO4yWek?t=4334)</sup> Please use the [Tor Browser](https://www.torproject.org) if your context calls for **anonymity** and not just reasonable **privacy**.<sup>^[*what's the difference?*](https://thenewoil.org/en/guides/prologue/secprivanon/)</sup>
\ No newline at end of file