This configuration will improve the security of Firefox.
https://trac.torproject.org/projects/tor/ticket/28168
https://bugzilla.mozilla.org/show_bug.cgi?id=1540618
1- open firefox
2- In the address bar, type about:config and press Return
3- Seach and edit the following settings:
=========== Level 1 - Comfortable Protection ===========
security.pki.distrust_ca_policy;2
security.tls.version.min;3
security.tls.version.max;4
security.mixed_content.block_display_content;true
security.mixed_content.block_object_subrequest;true
security.pki.crlite_mode;2
security.remote_settings.crlite_filters.enabled;true
security.ssl.require_safe_negotiation;true
security.webauthn.ctap2;true
security.webauth.webauthn_enable_usbtoken;true
network.trr.mode;3
network.odoh.configs_uri;https://odoh.cloudflare-dns.com/.well-known/odohconfigs
network.trr.odoh.enabled;true
network.trr.odoh.proxy_uri;https://odoh-se.alekberg.net/proxy
network.trr.odoh.target_host;https://odoh.cloudflare-dns.com/
network.trr.odoh.target_path;dns-query
security.OCSP.enabled;0
network.dns.echconfig.enabled;true
network.dns.use_https_rr_as_altsvc;true
network.dns.echconfig.fallback_to_origin;false
network.IDN_show_punycode;true
toolkit.telemetry.enabled;false
fission.autostart;true
security.sandbox.gpu.level;1
security.sandbox.content.level;3
#security.sandbox.socket.process.level
=========== Level 2 - High Protection ===========
security.ssl3.rsa_des_ede3_sha;false
security.ssl3.rsa_aes_128_sha;false
security.ssl3.rsa_aes_256_sha;false
security.ssl3.rsa_aes_128_gcm_sha256;false
security.ssl3.rsa_aes_256_gcm_sha384;false
security.OCSP.require;true
security.ssl.treat_unsafe_negotiation_as_broken;true
privacy.resistFingerprinting;false //The backgroung image in the captcha where we need to move a piece of a puzzle to the correct position will not be showed
privacy.firstparty.isolate;true
privacy.trackingprotection.fingerprinting.enabled;true
privacy.trackingprotection.cryptomining.enabled;true
webgl.disabled;true
browser.send_pings;false
browser.cache.offline.enable;false
browser.safebrowsing.malware.enabled;false
browser.safebrowsing.phishing.enabled;false
browser.privatebrowsing.autostart;true
browser.safebrowsing.downloads.remote.enabled;false
browser.urlbar.autocomplete.enabled;false
media.eme.enabled;false
media.mediadrm-widevinecdm.visible;false
=========== Level 3 - Paranoid Protection ===========
browser.sessionstore.max_tabs_undo;0
dom.event.clipboardevents.enabled;false //Disable copy/paste
dom.serviceWorkers.enabled;false //about:serviceworkers
media.peerconnection.enabled;false
media.navigator.enabled;false
privacy.firstparty.isolate.restrict_opener_access;false
dom.battery.enabled;false
dom.enable_performance;false
dom.enable_resource_timing;false
network.cookie.thirdparty.sessionOnly;true
network.cookie.thirdparty.nonsecureSessionOnly;true
network.cookie.lifetimePolicy;2
network.cookie.cookieBehavior;4 //May also break the functionality of some websites
network.http.referer.trimmingPolicy;1 //Some websites login will not work anymore
network.http.referer.XOriginPolicy;2 //Some websites login will not work anymore
network.http.referer.XOriginTrimmingPolicy;2 //Some websites login will not work anymore
browser.sessionstore.privacy_level;2
browser.search.suggest.enabled;false
breakpad.reportURL;
geo.enabled;false
network.dnsCacheEntries;0
network.http.redirection-limit;6
beacon.enabled;false
media.video_stats.enabled;false
security.ssl3.dhe_rsa_aes_128_sha;false
security.ssl3.dhe_rsa_aes_256_sha;false
security.ssl3.ecdhe_ecdsa_aes_128_sha;false
security.ssl3.ecdhe_ecdsa_aes_256_sha;false
security.ssl3.ecdhe_rsa_aes_128_sha;false
security.ssl3.ecdhe_rsa_aes_256_sha;false