X-Git-Url: https://git.p6c8.net/policy-templates.git/blobdiff_plain/88ca0c4977fa3052fa154d9e1db715d532f0c3c1..027b186296e38d63ce7ced48a17e17aa379a8d49:/README.md?ds=sidebyside
diff --git a/README.md b/README.md
index 712a26e..75a7cb7 100644
--- a/README.md
+++ b/README.md
@@ -117,7 +117,7 @@ Configure sites that support integrated authentication.
See https://developer.mozilla.org/en-US/docs/Mozilla/Integrated_authentication for more information.
-**Compatibility:** Firefox 60, Firefox ESR 60 (AllowNonFQDN added in 62/60.2, AllowProxies added in 70/68.2)\
+**Compatibility:** Firefox 60, Firefox ESR 60 (AllowNonFQDN added in 62/60.2, AllowProxies added in 70/68.2, Locked added in 71/68.3)\
**CCK2 Equivalent:** N/A\
**Preferences Affected:** `network.negotiate-auth.trusted-uris`,`network.negotiate-auth.delegation-uris`,`network.automatic-ntlm-auth.trusted-uris`,`network.automatic-ntlm-auth.allow-non-fqdn`,`network.negotiate-auth.allow-non-fqdn`,`network.automatic-ntlm-auth.allow-proxies`,`network.negotiate-auth.allow-proxies`
@@ -133,6 +133,7 @@ Software\Policies\Mozilla\Firefox\Authentication\AllowNonFQDN\SPNEGO = 0x1 | 0x0
Software\Policies\Mozilla\Firefox\Authentication\AllowNonFQDN\NTLM = 0x1 | 0x0
Software\Policies\Mozilla\Firefox\Authentication\AllowProxies\SPNEGO = 0x1 | 0x0
Software\Policies\Mozilla\Firefox\Authentication\AllowProxies\NTLM = 0x1 | 0x0
+Software\Policies\Mozilla\Firefox\Authentication\Locked = 0x1 | 0x0
```
#### macOS
```
@@ -168,6 +169,8 @@ Software\Policies\Mozilla\Firefox\Authentication\AllowProxies\NTLM = 0x1 | 0x0
NTLM
|
+ Locked
+ |
```
@@ -186,7 +189,8 @@ Software\Policies\Mozilla\Firefox\Authentication\AllowProxies\NTLM = 0x1 | 0x0
"AllowProxies": {
"SPNEGO": true | false,
"NTLM": true | false
- }
+ },
+ "Locked": true | false
}
}
}
@@ -533,7 +537,7 @@ Software\Policies\Mozilla\Firefox\Cookies\Locked = 0x1 | 0x0
"Allow": ["http://example.org/"],
"Block": ["http://example.edu/"],
"Default": true | false,
- "AcceptThirdParty": "always" | "never" | "from-visited"],
+ "AcceptThirdParty": "always" | "never" | "from-visited",
"ExpireAtSessionEnd": true | false,
"RejectTracker": true | false,
"Locked": true | false
@@ -831,6 +835,33 @@ Software\Policies\Mozilla\Firefox\DisableFormHistory = 0x1 | 0x0
}
}
```
+### DisablePasswordReveal
+Do not allow passwords to be shown in saved logins
+
+**Compatibility:** Firefox 71, Firefox ESR 68.3\
+**CCK2 Equivalent:** N/A
+**Preferences Affected:** N/A
+
+#### Windows (GPO)
+```
+Software\Policies\Mozilla\Firefox\DisablePasswordReveal = 0x1 | 0x0
+```
+
+#### macOS
+```
+
+ DisablePasswordReveal
+ |
+
+```
+#### policies.json
+```
+{
+ "policies": {
+ "DisablePasswordReveal": true | false
+ }
+}
+```
### DisablePocket
Remove Pocket in the Firefox UI. It does not remove it from the new tab page.
@@ -1397,7 +1428,8 @@ Software\Policies\Mozilla\Firefox\ExtensionSettings (REG_MULTI_SZ) =
"*": {
"blocked_install_message": "Custom error message.",
"install_sources": ["https://addons.mozilla.org/"],
- "installation_mode": "blocked"
+ "installation_mode": "blocked",
+ "allowed_types": ["extension"]
},
"uBlock0@raymondhill.net": {
"installation_mode": "force_installed",
@@ -1420,6 +1452,10 @@ Software\Policies\Mozilla\Firefox\ExtensionSettings (REG_MULTI_SZ) =
installation_mode
blocked
+ allowed_types
+
+ extension
+
uBlock0@raymondhill.net
@@ -1439,7 +1475,8 @@ Software\Policies\Mozilla\Firefox\ExtensionSettings (REG_MULTI_SZ) =
"*": {
"blocked_install_message": "Custom error message.",
"install_sources": ["https://addons.mozilla.org/"],
- "installation_mode": "blocked"
+ "installation_mode": "blocked",
+ "allowed_types": ["extension"]
},
"uBlock0@raymondhill.net": {
"installation_mode": "force_installed",
@@ -2167,10 +2204,12 @@ Set and lock certain preferences.
| If true, bookmarks are restored to their defaults.
| browser.cache.disk.enable | boolean | Firefox 68, Firefox ESR 68 | true
| If false, don't store cache on the hard drive.
-| browser.cache.disk.parent_directory | string | Firefox 68, Firefox ESR 68 | Profile temporary directory
-| If set, changes the location of the disk cache.
+| ~browser.cache.disk.parent_directory~ | string | Firefox 68, Firefox ESR 68 | Profile temporary directory
+| ~If set, changes the location of the disk cache.~ This policy doesn't work. It's being worked on.
| browser.fixup.dns_first_for_single_words | boolean | Firefox 68, Firefox ESR 68 | false
| If true, single words are sent to DNS, not directly to search.
+| browser.newtabpage.activity-stream.default.sites | string | Firefox 72, ESR 68.4 | Locale dependent
+| If set, a list of URLs to use as the default top sites on the new tab page.
| browser.places.importBookmarksHTML | string | Firefox 70, Firefox ESR 68.2
| If true, bookmarks are always imported on startup.
| browser.safebrowsing.phishing.enabled | string | Firefox 70, Firefox ESR 68.2 | true
@@ -2209,16 +2248,23 @@ Set and lock certain preferences.
| If false, the extensions blocklist is not used (Not recommended)
| extensions.getAddons.showPane | boolean | Firefox 68, Firefox ESR 68 | N/A
| If false, the Recommendations tab is not displayed in the Add-ons Manager.
+| extensions.htmlaboutaddons.recommendations.enabled | boolean | Firefox 72, Firefox ESR 68.4 | true
+| If false, recommendations are not shown on the Extensions tab in the Add-ons Manager.
| geo.enabled | string | Firefox 70, Firefox ESR 68.2 | true
| If false, the geolocation API is disabled. | Language dependent
| intl.accept_languages | string | Firefox 70, Firefox ESR 68.2
| If set, preferred language for web pages.
-| media.eme.enabled | string | Firefox 70, Firefox ESR 68.2 | true
+| media.eme.enabled | boolean | Firefox 70, Firefox ESR 68.2 | true
| If false, Encrypted Media Extensions are not enabled.
| media.gmp-gmpopenh264.enabled | boolean | Firefox 68, Firefox ESR 68 | true
| If false, the OpenH264 plugin is not downloaded.
| media.gmp-widevinecdm.enabled | boolean | Firefox 68, Firefox ESR 68 | true
| If false, the Widevine plugin is not downloaded.
+| media.peerconnection.enabled | boolean | Firefox 72, Firefox ESR 68.4 | true
+| If false, WebRTC is disabled
+| media.peerconnection.ice.obfuscate_host_addresses.whitelist | string | Firefox 72, Firefox ESR 68.4 | N/A
+| If set, a list of domains for which mDNS hostname obfuscation is
+disabled
| network.dns.disableIPv6 | boolean | Firefox 68, Firefox ESR 68 | false
| If true, IPv6 DNS lokoups are disabled.
| network.IDN_show_punycode | boolean | Firefox 68, Firefox ESR 68 | false
@@ -2231,10 +2277,16 @@ Set and lock certain preferences.
| If set to Select Automatically, Firefox automatically chooses the default personal certificate.
| security.mixed_content.block_active_content | string | Firefox 70, Firefox ESR 68.2 | true
| If false, mixed active content (HTTP and HTTPS) is not blocked.
+| security.osclientcerts.autoload | boolean | Firefox 72, Firefox ESR 68.4 (Windows only) | false
+| If true, client certificates are loaded from the operating system certificate store.
| security.ssl.errorReporting.enabled | boolean | Firefox 68, Firefox ESR 68 | true
| If false, SSL errors cannot be sent to Mozilla.
+| security.tls.hello_downgrade_check | boolean | Firefox 72, Firefox ESR 68.4 | true
+| If false, the TLS 1.3 downgrade check is disabled.
| ui.key.menuAccessKeyFocuses | boolean | Firefox 68, Firefox ESR 68 | true
| If false, the Alt key doesn't show the menubar on Windows.
+| widget.content.gtk-theme-override | string | Firefox 72, Firefox ESR 68.4 (Linux only) | N/A
+| If set, overrides the GTK theme for widgets.
#### Windows (GPO)
```
Software\Policies\Mozilla\Firefox\Preferences\boolean_preference_name = 0x1 | 0x0