Skip to content
IronFox
⌘+K

Privacy Patches

This category includes patches that protect against various forms of tracking, as well as patches that limit data exposure and reduce the browser’s required permissions.

Patches

Section titled “Patches”

Add DNS over HTTPS Providers

Section titled “Add DNS over HTTPS Providers”

Adds the following DoH providers to the browser’s built-in list:

  • Quad9
  • AdGuard
  • AdGuard (Unfiltered)
  • Cloudflare (Malware Protection)
  • DNS4EU (Ad Blocking)
  • DNS4EU (Protective)
  • DNS4EU (Unfiltered)
  • Mullvad (Base)
  • Mullvad (Unfiltered)
  • Wikimedia
Reason
To add support for multiple secure DNS providers in the UI settings.
Effect
Adds a selection of carefully selected DoH providers for the users to choose from.

Enable DNS over HTTPS (via Quad9) by default

Section titled “Enable DNS over HTTPS (via Quad9) by default”

Enables DNS over HTTPS without fallback by default, and sets Quad9 as the default provider.

Reason
To harden DoH out of the box.
Effect
Improves DNS privacy and security by strengthening DoH’s default protection level.

Disable Autocomplete

Section titled “Disable Autocomplete”

Disables URL autocomplete by default.

Reason
To prevent accidental navigation to incorrect/undesired websites.
Effect
Provides users with more control over the URL bar, and ensures that users only navigate to their intended location.

Disable Password Manager and Address/Credit Card Autofill

Section titled “Disable Password Manager and Address/Credit Card Autofill”

Disables password manager and address/credit card autofill by default. Using the built-in password manager in a browser is discouraged. Prefer using external, more secure password managers, such as Bitwarden.

Reason
To prevent automatic storage of sensitive credentials in the browser.
Effect
Reduces risk of credential exposure.
Section titled “Disable Trending Search Suggestions”

Disables trending search suggestions by default.

Reason
Reduces unwanted network activity and connections to third party services.
Effect
Cleaner, more private address bar experience, without trending search suggestions.

Disable Search Suggestions

Section titled “Disable Search Suggestions”

Disables search suggestions by default.

Reason
To prevent automatic submission of text entered in the URL bar to search providers.
Effect
Improves privacy by reducing data shared with search engines.

Sanitize Data on Exit

Section titled “Sanitize Data on Exit”

Clears browsing data on exit by default

Reason
Protects privacy between browser sessions.
Effect
Automatically clears tabs, history, cache, and download list when browser closes.

Custom Search Engines

Section titled “Custom Search Engines”

Adds custom privacy-focused search engines.

Reason
To provide alternatives to tracking-heavy default search engines.
Effect
Users can easily use privacy-respecting search engines.

Enable ETP Strict

Section titled “Enable ETP Strict”

Sets Enhanced Tracking Protection to Strict mode by default.

Reason
To provide stronger protection against tracking without user configuration.
Effect
Blocks more trackers and fingerprinting scripts out of the box, strengthens state partitioning, and enables protection against various other methods of cross-site tracking.

Enable Local Network Access Restrictions

Section titled “Enable Local Network Access Restrictions”

Enables Local Network Access Restrictions by default.

Reason
To provide websites from accessing local network resources, to reduce fingerprintability, and to prevent unauthorized access to the local network.
Effect
Improves privacy and security for users.
Section titled “Block Cookie Banners in Private Browsing by default, and expose the UI to enable/disable it.”

Blocks cookie consent banners in Private Browsing windows by default, enables a UI setting to enable or disable blocking of cookie consent banners in Private Browsing, and allows users to enable or disable cookie banner blocking per-site (in both standard and Private Browsing windows).

Reason
Improves privacy by preventing websites from co-ercing users to enable/agree to tracking, and improves the browsing experience by removing annoying consent pop-ups.
Effect
Cleaner websites without cookie banners, while automatically opting users out of tracking where possible.

Configure uBlock Origin

Section titled “Configure uBlock Origin”

Sets uBlock Origin to use a custom/enhanced config, and changes certain settings by default.

Reason
To provide stronger out-of-box content blocking.
Effect
Better ad and tracker blocking with optimized filter lists.

Disable Network Connectivity Status Monitoring (Fenix)

Section titled “Disable Network Connectivity Status Monitoring (Fenix)”

Prevents Firefox for Android from monitoring the status of the user’s internet connection.

Reason
To prevent the browser from accessing network information (with the ACCESS_NETWORK_STATE permission).
Effect
Reduces required permissions and limits data exposed to the browser.

Disable Network Connectivity Status Monitoring (GeckoView)

Section titled “Disable Network Connectivity Status Monitoring (GeckoView)”

Prevents GeckoView from monitoring the status of the user’s internet connection.

Reason
To prevent the browser from accessing network information (with the ACCESS_NETWORK_STATE permission).
Effect
Reduces required permissions and limits data exposed to the browser.

Disable Network ID generation

Section titled “Disable Network ID generation”

Prevents Firefox from generating an internal network ID that could potentially be used to track users (https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/4c548fa04b668a310c90c0e783ec404420f06257).

Reason
To prevent the browser from generating an ID that could be used for tracking/fingerprinting.
Effect
Protects users against tracking/fingerprinting.

Disable Speculative Connections

Section titled “Disable Speculative Connections”

Prevents GeckoView from generating speculative/predictive connections.

Reason
To prevent unwanted/unsolicited network traffic (In Fenix, this is currently used for certain URL bar suggestions).
Effect
Prevents the browser from connecting to third parties without explicit user consent, and provides users with more control over their network activity.

Stub the Beacon API (navigator.sendBeacon)

Section titled “Stub the Beacon API (navigator.sendBeacon)”

To prevent tracking and the submission of analytics, without aiding fingerprinting and causing undesired breakage.

Reason
The Beacon API (navigator.sendBeacon)‘s explicit, stated purpose/use case is for analytics/tracking (https://developer.mozilla.org/docs/Web/API/Beacon_API). However, disabling it entirely (like standard Firefox allows) is undesired, as it causes breakage, aids fingerprinting, and can allow trackers to fallback to other mechanisms for submitting data (as they can tell it’s disabled/unavailable). Stubbing the API instead fixes these issues.
Effect
Users are protected against tracking, and benefit from added attack surface reduction, without causing breakage and having to deal with the usual side effects that appear when the Beacon API is disabled.

Prevent exposing branding resources to websites

Section titled “Prevent exposing branding resources to websites”

Prevents exposing branding assets and certain other internal resources to websites (https://gitlab.torproject.org/tpo/applications/tor-browser/-/commit/ecb798d066b039329223b4c31133e2f917ca477d).

Reason
Improves privacy by preventing websites from determining whether a user is on IronFox, and improves compatibility, as we have reason to believe websites might be using this to block LibreWolf/IronFox users.
Effect
Users are protected against additional fingerprinting vectors, and websites work as expected.

Prevent exposing the browser name and vendor to extensions

Section titled “Prevent exposing the browser name and vendor to extensions”

Prevents exposing the browser name and vendor to extensions via getBrowserInfo (https://developer.mozilla.org/docs/Mozilla/Add-ons/WebExtensions/API/runtime/getBrowserInfo).

Reason
Improves privacy by preventing extensions from determining whether a user is on IronFox, and improves compatibility with certain older extensions (ex. https://codeberg.org/librewolf/issues/issues/2492).
Effect
Extensions work as expected, and users are protected against added fingerprinting opportunities.

Disable unsolicited favicon fetching

Section titled “Disable unsolicited favicon fetching”

Prevents Firefox from automatically fetching favicons for websites pinned to the browser homepage.

Reason
To prevent unwanted network activity and connections to third parties.
Effect
Reduces network activity, provides users with more control, and provides a faster browser homepage.

Do not allow built-in add-ons to access private browsing windows unconditionally

Section titled “Do not allow built-in add-ons to access private browsing windows unconditionally”

Prevents built-in add-ons from always being able to access private browsing windows, even if they don’t request or need access.

Reason
To improve privacy and security for users by limiting the amount of access built-in add-ons have to the browser.
Effect
Users are provided with a more private and secure browsing experience.

Fix Canvas Randomization

Section titled “Fix Canvas Randomization”

Backports a fix for an upstream bug that prevents Canvas randomization from working for getImageData and WebGL image hash: https://bugzilla.mozilla.org/show_bug.cgi?id=2013976, and enables Canvas randomization for solid colors.

Reason
To protect against fingerprinting by ensuring that canvas data is fully randomized.
Effect
Users are provided with fingerprinting protection that works as expected.

Remove OpenAI Backend

Section titled “Remove OpenAI Backend”

Removes the OpenAI backend from Mozilla’s ML (machine learning) component.

Reason
To improve privacy for users (and reduce attack surface) by removing integration with a privacy-invasive/unwanted LLM.
Effect
Users are provided with a more private browsing experience.