Security in browsers

WebRTC (Web Real Time Communications)

WebRTC can unintentionally reveal private information like your internal IP address and computer configuration.

You can test if your browser supports WebRTC at this link: https://browserleaks.com/webrtc

Disabling WebRTC in Firefox

  1. In the Firefox address bar, type: about:config
  2. Make sure these settings are applied:
1
2

media.peerconnection.enabled = false
media.peerconnection.use_document_iceservers = false

Track Protection

This setting lets your browser inform websites that you prefer not to be tracked.

How to enable in Firefox:

  1. Go to about:config in the address bar.
  2. Ensure these settings are active:
1
2
3

privacy.donottrackheader.enabled=true 
privacy.trackingprotection.enabled=true 
privacy.trackingprotection.pbmode=true

CIS Benchmark

CIS Mozilla Firefox 38 ESR Benchmark v1.0.0

CIS Google Chrome Benchmark v1.2.0

Browser Security News from June 2018

Chrome And Firefox Leaking User Facebook Data For Over A Year

Typical Browser File Locations

Firefox

  • Bookmarks, Downloads, and Browsing History: C:\Users\USERNAME\AppData\Roaming\Mozilla\Firefox\Profiles\PROFILE\places.sqlite
  • Passwords: C:\Users\USERNAME\AppData\Roaming\Mozilla\Firefox\Profiles\PROFILE\key4.db, C:\Users\USERNAME\AppData\Roaming\Mozilla\Firefox\Profiles\PROFILE\logins.json
  • Autocomplete history: C:\Users\USERNAME\AppData\Roaming\Mozilla\Firefox\Profiles\PROFILE\formhistory.sqlite

Chrome

  • Bookmarks: C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Bookmarks
  • Browsing/Download History: C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\History
  • Passwords: C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Login Data
  • Autocomplete history: C:\Users\USERNAME\AppData\Local\Google\Chrome\User Data\Default\Web Data
Licensed under CC BY-NC-SA 4.0
Last updated on Jul 03, 2024 20:58 +0100