[Mozilla Enterprise] Policies.json: EnableTrackingProtection

Eddie Rowe eddie.rowe at tdhca.state.tx.us
Thu Oct 24 19:03:02 UTC 2019 

Thank you so much for sharing this as I know it is not just me who is confused by the settings!  We have reports of issues with Firefox 70 due to the different user interface, but the issue impacts 69 as well.  I am still confused on why https://github.com/mozilla/policy-templates/blob/master/README.md#enabletrackingprotection states that tracking is turned off without this policy, but the Firefox 69 and 70 have the radio set to Standard which has some tracking protection.  Am I overlooking a policy to flip the setting to Standard by default until we can sort out what we really want?

Reviewing http://kb.mozillazine.org/Network.cookie.cookieBehavior shows no info for value of 4. In the pulldown menu in Options – Privacy & Security I see 4 options, but the logic is the reverse of the Mozillazine.org site.  I have network.cookie.cookiebehavior set to 2 with my option set to Custom.


·        Cross-site and social media trackers

·        Cookies from unvisited websites

·        All third-party cookies (may cause websites to break)

·        All cookies (will cause websites to break)


From: Enterprise <enterprise-bounces at mozilla.org> On Behalf Of marius.tarlo at orange.com
Sent: Thursday, September 19, 2019 4:54 AM
To: Kris Lou <klou at themusiclink.net>
Cc: Mozilla.org <enterprise at mozilla.org>
Subject: Re: [Mozilla Enterprise] Policies.json: EnableTrackingProtection

Hello Kris,

I’ve analyzed the differences between Standard, Strict and Custom :

For the about:config parameters:


Standard

Strict

Custom

privacy.trackingprotection.cryptomining.enabled

false

true

true if Cryptominers is checked

privacy.trackingprotection.enabled

false

true

true if Trackers --> In all windows is checked

privacy.trackingprotection.fingerprinting.enabled

false

true

true if Fingerprinters is checked

privacy.trackingprotection.pbmode.enabled

true

true

false if Cookies is checked

network.cookie.cookieBehavior

0

4

4 if Cookies --> Third-party trackers
3 if Cookies --> Cookies from unvisited websites
1 if Cookies --> All third-party cookies
2 if Cookies --> All cookies


The GPO only toggles EnableTrackingProtection:
If it’s enabled, it sets in Custom mode with only Trackers --> In all windows checked
If it’s disabled, it sets in Custom mode with Trackers unchecked (and no possibility to check it)

So if the existing toggle in the GPO is not thin enough for you, you can still modify the parameters (for example in a .cfg file called by the autoconfig.js)

Cordialement / Best regards,
[http://www.orange.com/sirius/logos_mail/orange_logo.gif]<https://urldefense.proofpoint.com/v2/url?u=http-3A__www.orange.com_&d=DwMGaQ&c=2WwxlqHD_9GeHFEUsOHZXg&r=a0pF-r4VjZCyzB4zxbRDcONPyw-KRRoDiBPd4lDRky8&m=vPf7cQT_FGW7OI_Q4QfcLWaVS6t_bi7ZF2D1lpc_Rks&s=FT-vCnKh5vHX1XBjUdRwTvF7usWro4KTpsOGyHEVMIA&e=>
Marius TARLO
Maintenance e-buro
FT/SCE/G2S/NRS/NEOCLES
tél. +33 1 42 75 34 25
marius.tarlo at orange.com<mailto:marius.tarlo at orange.com>

De : Enterprise [mailto:enterprise-bounces at mozilla.org] De la part de Mike Kaply
Envoyé : vendredi 13 septembre 2019 22:41
À : Kris Lou
Cc : Mozilla.org
Objet : Re: [Mozilla Enterprise] Policies.json: EnableTrackingProtection

It's mostly the same as standard protection, but you would also need to make some cookie changes.

Cryptomining and fingerprinting policies should be in the next major ESR update in October (and in Firefox 70)

Mike

On Fri, Sep 13, 2019 at 12:52 PM Kris Lou via Enterprise <enterprise at mozilla.org<mailto:enterprise at mozilla.org>> wrote:
When I configure this (68ESR), it looks like it changes the Browser Privacy -> Content Blocking to Custom (block Trackers _only_).

1) How is this different from the "Standard" protection setting (block Known trackers in all windows)?

2) Is there any known toggle for Cryptominers and Fingerprinters as well?

Kris Lou
klou at themusiclink.net<mailto:klou at themusiclink.net>

_______________________________________________
Enterprise mailing list
Enterprise at mozilla.org<mailto:Enterprise at mozilla.org>
https://mail.mozilla.org/listinfo/enterprise<https://urldefense.proofpoint.com/v2/url?u=https-3A__mail.mozilla.org_listinfo_enterprise&d=DwMGaQ&c=2WwxlqHD_9GeHFEUsOHZXg&r=a0pF-r4VjZCyzB4zxbRDcONPyw-KRRoDiBPd4lDRky8&m=vPf7cQT_FGW7OI_Q4QfcLWaVS6t_bi7ZF2D1lpc_Rks&s=rASfOCrY-5QK5cbB384zgvoIs4gHTZhmIIY_yWs3ZPw&e=>

To unsubscribe from this list, please visit https://mail.mozilla.org/listinfo/enterprise<https://urldefense.proofpoint.com/v2/url?u=https-3A__mail.mozilla.org_listinfo_enterprise&d=DwMGaQ&c=2WwxlqHD_9GeHFEUsOHZXg&r=a0pF-r4VjZCyzB4zxbRDcONPyw-KRRoDiBPd4lDRky8&m=vPf7cQT_FGW7OI_Q4QfcLWaVS6t_bi7ZF2D1lpc_Rks&s=rASfOCrY-5QK5cbB384zgvoIs4gHTZhmIIY_yWs3ZPw&e=> or send an email to enterprise-request at mozilla.org<mailto:enterprise-request at mozilla.org> with a subject of "unsubscribe"

_________________________________________________________________________________________________________________________



Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc

pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler

a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,

Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.



This message and its attachments may contain confidential or privileged information that may be protected by law;

they should not be distributed, used or copied without authorisation.

If you have received this email in error, please notify the sender and delete this message and its attachments.

As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.

Thank you.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.mozilla.org/pipermail/enterprise/attachments/20191024/54037611/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.jpg
Type: image/jpeg
Size: 785 bytes
Desc: image001.jpg
URL: <http://mail.mozilla.org/pipermail/enterprise/attachments/20191024/54037611/attachment.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.jpg
Type: image/jpeg
Size: 332 bytes
Desc: image002.jpg
URL: <http://mail.mozilla.org/pipermail/enterprise/attachments/20191024/54037611/attachment-0001.jpg>

More information about the Enterprise mailing list