Releases: celenityy/Phoenix
20241211-1
Notes
- There is now a single, unified installer script for installing Phoenix on GNU/Linux distributions & macOS (as well as an uninstaller script to compliment it). Huge thanks to @Modaresisofthard for their work and contribution. 💜
- Heavily improved macOS install & uninstall scripts.
- Updated our uBlock Origin config to match latest upstream changes.
- Our uBlock Origin config now includes BadBlock - Ethical Whitelist as an optional whitelist, not enabled by default. See the introduction here for more details.
- Enabled the use of our custom uBlock Origin config on LibreWolf & forks. We currently don't support LibreWolf, but this is useful for if we decide to in the future.
Amazon,Bing, &Googlebuilt-in search engines will now be fully removed for users on Firefox ESR releases.- Our macOS Homebrew Tap has changed from
celenity/Phoenix-Policies-macOSto simplycelenity/tap. No action is required for existing macOS installations, due to Codeberg's automatic redirects. - If the user configures a proxy, we prevent the browser from bypassing it by default.
- Changed certain proxy preferences we set from
lockedtodefault, so that the user may change them if they choose to do so. - Prompts for users to 'refresh' their Firefox profile have been disabled, as it could cause severe issues with Phoenix users (especially those using one of our
user.jsfiles. - Post Quantum Encryption is further enforced where possible.
- Several important preferences have been added to our policies (in addition to our
.cfgfiles) for defense in depth. (See specifics here) - Users may now install the FMHY SafeGuard extension directly from GitHub at their own discretion.
- Added policies for defense in depth against dangerous 'Data Loss Prevention'/'ContentAnalysis' functionality. (See specifics here)
- Disabled Mozilla feedback prompts & Mozilla's
Web Compatibility Reporter- We don't want users bothering Mozilla due to our customizations; feedback & issues should be filed with us directly. Additionally, in the case of theWeb Compatibility Reporter, disabling it also decreases attack surface & potentially improves performance. - Other minor tweaks & enhancements
Codeberg: See here for more details.
GitHub: See here for more details.
:)
Contributors
Assets 2
20241204-1
Release
Lots of updates here:
-
Hardened Phoenix's local and remote config files to prevent us or an attacker (if we ever compromised) from having the ability to override the user's homepage. Downside is that users will no longer be able to easily set a different browser homepage via
about:preferences, however they can still set an override via editing their local 'phoenix.cfg', which will persist as we don't remotely update it. See here: https://codeberg.org/celenity/Phoenix/issues/18#issuecomment-2490737 for more details on Phoenix's approach to security and protecting users, even in the worst case scenarios, and even from ourselves. Due to these updates, you are HIGHLY recommend to re-install Phoenix (specifically, the local 'phoenix.cfg' file and 'phoenix.js' files should be updated). -
Placed further restrictions on the installation of extensions, to ensure that we're only granting this capability to websites (with user permission) where it's absolutely necessary.
-
Fixed a strange bug that prevented users from installing extensions from the GitHub repos we allow in certain instances (primarily if the .xpi was file was on a past page of releases)
-
Heavy consolidated policies. There are no longer separate policies for Windows/macOS & Linux. 'Personal-Dev-Nightly-Policies' have also been fully deprecated. Users can now choose from either our Standard Policies, or 'No-Sync' (or my Personal policies at their own discretion....).
-
Added policies to ensure that the user can always access about:addons, about:config, about:profiles, & about:support.
-
Added a policy to always display the bookmark toolbar by default. Can be overriden by users depending on their preference.
-
Added a policy to ensure that users are always notified if there is an attempt to activate dangerous, invasive 'Content Analysis' functionality.
-
Firefox will no longer offer to save passwords for users by default. Can be overriden, though users are highly recommended to use secure password managers instead, such as Bitwarden or Proton Pass.
-
Fully disabled Password Manager on my Personal Policies & set to install Bitwarden by default
-
Disabled the annoying 'Profile Import' functionality on my Personal Policies
-
Added a 'Phoenix Policies Initialized' policy, as well as 'Phoenix Initialized' & 'Phoenix Applied' prefs, to make Phoenix easier to debug & confirm whether it is working as expected.
-
Various other minor tweaks & enhancements
See https://github.com/celenityy/Phoenix/commits/pages for more details
:)
20241203-1
Release
-
Various tweaks, changes, and enhancements, as well as hardening. Users are recommended to re-install Phoenix if possible for their platform of choice.
-
See https://github.com/celenityy/Phoenix/commits/pages/ for more details - future releases will have full notes and more information.
:)