From: Michael Kaply <345868+mkaply@users.noreply.github.com>
Date: Fri, 25 Apr 2025 19:09:14 +0000 (-0400)
Subject: Merge pull request #1212 from cpeterso/patch-1
X-Git-Tag: v6.10~6
X-Git-Url: https://git.p6c8.net/policy-templates.git/commitdiff_plain/b0a6fa211c4feaf0794f9e037514289e9e8b4019?ds=inline;hp=-c

Merge pull request #1212 from cpeterso/patch-1

Document the `SkipTermsOfUse` policy
---

b0a6fa211c4feaf0794f9e037514289e9e8b4019
diff --combined docs/index.md
index f1aa8b9,5c9e486..1ffecb1
--- a/docs/index.md
+++ b/docs/index.md
@@@ -123,6 -123,7 +123,7 @@@ Note: The `policies.json` must use the 
  | **[`SearchSuggestEnabled`](#searchsuggestenabled)** | Enable search suggestions.
  | **[`SecurityDevices`](#securitydevices)** | Install PKCS #11 modules.
  | **[`ShowHomeButton`](#showhomebutton)** | Show the home button on the toolbar.
+ | **[`SkipTermsOfUse`](#skiptermsofuse)** | Don't display the Firefox [Terms of Use](https://www.mozilla.org/about/legal/terms/firefox/) and [Privacy Notice](https://www.mozilla.org/privacy/firefox/) upon startup. You represent that you accept and have the authority to accept the Terms of Use on behalf of all individuals to whom you provide access to this browser.
  | **[`SSLVersionMax`](#sslversionmax)** | Set and lock the maximum version of TLS.
  | **[`SSLVersionMin`](#sslversionmin)** | Set and lock the minimum version of TLS.
  | **[`StartDownloadsInTempDirectory`](#startdownloadsintempdirectory)** | Force downloads to start off in a local, temporary location rather than the default download directory.
@@@ -1776,29 -1777,26 +1777,29 @@@ Value (string)
  Disable specific cryptographic ciphers, listed below.
  
  ```
 -TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
 -TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
 -TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
 -TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
 -TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
 -TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
 -TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
 -TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
 -TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
 -TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
  TLS_DHE_RSA_WITH_AES_128_CBC_SHA
  TLS_DHE_RSA_WITH_AES_256_CBC_SHA
 -TLS_RSA_WITH_AES_128_GCM_SHA256
 -TLS_RSA_WITH_AES_256_GCM_SHA384
  TLS_RSA_WITH_AES_128_CBC_SHA
  TLS_RSA_WITH_AES_256_CBC_SHA
 +TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
 +TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
 +TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
 +TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
  TLS_RSA_WITH_3DES_EDE_CBC_SHA
 +TLS_RSA_WITH_AES_128_GCM_SHA256 (Firefox 78)
 +TLS_RSA_WITH_AES_256_GCM_SHA384 (Firefox 78)
 +TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 (Firefox 97 and Firefox ESR 91.6)
 +TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 (Firefox 97 and Firefox ESR 91.6)
 +TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 (Firefox 97 and Firefox ESR 91.6)
 +TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Firefox 97 and Firefox ESR 91.6)
 +TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA (Firefox 97 and Firefox ESR 91.6)
 +TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA (Firefox 97 and Firefox ESR 91.6)
 +TLS_CHACHA20_POLY1305_SHA256 (Firefox 138, Firefox ESR 128.10)
 +TLS_AES_128_GCM_SHA256 (Firefox 138, Firefox ESR 128.10)
 +TLS_AES_256_GCM_SHA384 (Firefox 138, Firefox ESR 128.10)
  ```
  
 -**Preferences Affected:** `security.ssl3.ecdhe_rsa_aes_128_gcm_sha256`, `security.ssl3.ecdhe_ecdsa_aes_128_gcm_sha256`, `security.ssl3.ecdhe_ecdsa_chacha20_poly1305_sha256`, `security.ssl3.ecdhe_rsa_chacha20_poly1305_sha256`, `security.ssl3.ecdhe_ecdsa_aes_256_gcm_sha384`, `security.ssl3.ecdhe_rsa_aes_256_gcm_sha384`, `security.ssl3.ecdhe_rsa_aes_128_sha`, `security.ssl3.ecdhe_ecdsa_aes_128_sha`, `security.ssl3.ecdhe_rsa_aes_256_sha`, `security.ssl3.ecdhe_ecdsa_aes_256_sha`, `security.ssl3.dhe_rsa_aes_128_sha`, `security.ssl3.dhe_rsa_aes_256_sha`, `security.ssl3.rsa_aes_128_gcm_sha256`, `security.ssl3.rsa_aes_256_gcm_sha384`, `security.ssl3.rsa_aes_128_sha`, `security.ssl3.rsa_aes_256_sha`, `security.ssl3.deprecated.rsa_des_ede3_sha`
 +**Preferences Affected:** `security.ssl3.ecdhe_rsa_aes_128_gcm_sha256`, `security.ssl3.ecdhe_ecdsa_aes_128_gcm_sha256`, `security.ssl3.ecdhe_ecdsa_chacha20_poly1305_sha256`, `security.ssl3.ecdhe_rsa_chacha20_poly1305_sha256`, `security.ssl3.ecdhe_ecdsa_aes_256_gcm_sha384`, `security.ssl3.ecdhe_rsa_aes_256_gcm_sha384`, `security.ssl3.ecdhe_rsa_aes_128_sha`, `security.ssl3.ecdhe_ecdsa_aes_128_sha`, `security.ssl3.ecdhe_rsa_aes_256_sha`, `security.ssl3.ecdhe_ecdsa_aes_256_sha`, `security.ssl3.dhe_rsa_aes_128_sha`, `security.ssl3.dhe_rsa_aes_256_sha`, `security.ssl3.rsa_aes_128_gcm_sha256`, `security.ssl3.rsa_aes_256_gcm_sha384`, `security.ssl3.rsa_aes_128_sha`, `security.ssl3.rsa_aes_256_sha`, `security.ssl3.deprecated.rsa_des_ede3_sha`, `security.tls13.chacha20_poly1305_sha256`, `security.tls13.aes_128_gcm_sha256`, `security.tls13.aes_256_gcm_sha384`
  
  ---
  **Note:**
@@@ -1806,7 -1804,7 +1807,7 @@@
  This policy was updated in Firefox 78 to allow enabling ciphers as well. Setting the value to true disables the cipher, setting the value to false enables the cipher. Previously setting the value to true or false disabled the cipher.
  
  ---
 -**Compatibility:** Firefox 76, Firefox ESR 68.8 (TLS_RSA_WITH_AES_128_GCM_SHA256 and TLS_RSA_WITH_AES_256_GCM_SHA384 were added in Firefox 78, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA38, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, and TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 were added in Firefox 97 and Firefox 91.6)\
 +**Compatibility:** Firefox 76, Firefox ESR 68.8\
  **CCK2 Equivalent:** N/A\
  **Preferences Affected:** N/A
  
@@@ -6626,6 -6624,41 +6627,41 @@@ Value (string)
    }
  }
  ```
+ ### SkipTermsOfUse
+ If true, don't display the Firefox [Terms of Use](https://www.mozilla.org/about/legal/terms/firefox/) and [Privacy Notice](https://www.mozilla.org/privacy/firefox/) upon startup. You represent that you accept and have the authority to accept the Terms of Use on behalf of all individuals to whom you provide access to this browser.
+ 
+ **Compatibility:** Firefox 138, Firefox ESR 140\
+ **CCK2 Equivalent:** N/A\
+ **Preferences Affected:** N/A
+ 
+ #### Windows (GPO)
+ ```
+ Software\Policies\Mozilla\Firefox\SkipTermsOfUse = 0x1 | 0x0
+ ```
+ #### Windows (Intune)
+ OMA-URI:
+ ```
+ FIXME
+ ```
+ Value (string):
+ ```
+ <enabled/> or <disabled/>
+ ```
+ #### macOS
+ ```
+ <dict>
+   <key>SkipTermsOfUse</key>
+   <true/> | <false/>
+ </dict>
+ ```
+ #### policies.json
+ ```
+ {
+   "policies": {
+     "SkipTermsOfUse": true | false
+   }
+ }
+ ```
  ### SSLVersionMax
  
  Set and lock the maximum version of TLS. (Firefox defaults to a maximum of TLS 1.3.)
@@@ -6836,7 -6869,7 +6872,7 @@@ Prevent Firefox from messaging the use
  
  `FeatureRecommendations` If false, don't recommend browser features.
  
- `UrlbarInterventions` If false, Don't offer Firefox specific suggestions in the URL bar.
+ `UrlbarInterventions` If false,don't offer Firefox specific suggestions in the URL bar.
  
  `SkipOnboarding` If true, don't show onboarding messages on the new tab page.
  
@@@ -6844,8 -6877,6 +6880,8 @@@
  
  `FirefoxLabs` If false, don't show the "Firefox Labs" section in Preferences. (Firefox 130.0.1)
  
 +Note: Firefox Labs is now controlled by Nimbus, our testing platform, so disabling telemetry also disables Firefox Labs.
 +
  `Locked` prevents the user from changing user messaging preferences.
  
  **Compatibility:** Firefox 75, Firefox ESR 68.7\