From 61ccdad0f8ee66c7bf8ca3e15e06c54fa2c43007 Mon Sep 17 00:00:00 2001 From: Thorin-Oakenpants Date: Tue, 15 May 2018 16:15:06 +0000 Subject: [PATCH] Updated 4.2.2 uBlock Origin (markdown) --- 4.2.2-uBlock-Origin.md | 16 +++++++++++++--- 1 file changed, 13 insertions(+), 3 deletions(-) diff --git a/4.2.2-uBlock-Origin.md b/4.2.2-uBlock-Origin.md index 66c5977..acef06a 100644 --- a/4.2.2-uBlock-Origin.md +++ b/4.2.2-uBlock-Origin.md @@ -1,6 +1,6 @@ Best practice is to default deny-all, then whitelist. -### :small_orange_diamond: Rules +### :large_orange_diamond: Rules - block all remote fonts. This is the bottom right panel option (the symbol is an A). Now any site you REALLY need to see the icons (it's usually pretty clear without them), you can set an exception. ``` @@ -14,7 +14,7 @@ no-remote-fonts: * true * * 3p-script block ``` -### :small_orange_diamond: Filters +### :large_orange_diamond: Filters
what appear to be tracking images on startpage and ixquick - click to expand

@@ -31,4 +31,14 @@ no-remote-fonts: * true ||/english/web/$image,important,domain=ixquick.com|ixquick.eu|startpage.com ||/tix2/$image,important,domain=ixquick.com|ixquick.eu|startpage.com ||/tst2/*$image,important,domain=ixquick.com|ixquick.eu|startpage.com -``` \ No newline at end of file +``` + +- Workers + * If you have uMatrix [1.2.0+](https://github.com/gorhill/uMatrix/releases/tag/1.2.0) on [FF58+](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/worker-src), there is a new switch: "Forbid web workers" + * `dom.workers.enabled` was [deprecated](https://bugzilla.mozilla.org/1434934) in FF60 + * Prevent workers everywhere (first line below) + * Exception, do not prevent workers on `example.org` (second line below) +``` +*$csp=worker-src 'none' +@@||example.org^$csp=worker-src 'none' +```