List of Firefox Add-ons for privacy…add yours!

**HTTPSEverywhere** is available for Firefox, it asks websites for a HTTPS encrypted connection, provided the site can deliver it or else it defaults to HTTP. Doesn't break sites.

https://www.eff.org/https-everywhere

**TrackMeNot** is a add-on that will send obfuscated search terms to various search engines that are recording everyone's data. It's designed to defeat profiling based upon IP addresses. Doesn't break sites.

https://addons.mozilla.org/en-US/firefox/addon/trackmenot/

**Ghostery** will block annoying tracking and web bugs, make sure to set it to delete Flash and Silverlight cookies on exit also. Auto-updating and to tell them of new ones it finds as to help others. May break some sites, but I haven't experienced any.

https://addons.mozilla.org/en-US/firefox/addon/ghostery/

**AdBlockPlus**, enable as many block lists as possible, also uncheck the "allow some non-intrusive advertising" in ABP preferences, as any advertising can be used to spy, track and install malware, including the decent advertisers who make non-annoying ads. May break some sites, but I haven't experienced any.

https://adblockplus.org/en/firefox

https://easylist.adblockplus.org/en/

**Click&Clean**, set it to remove all data when exiting the browser to defeat Evercookies. Doesn't break sites, but may require one to log in each time to websites (more secure actually).

https://addons.mozilla.org/en-US/firefox/addon/clickclean/

http://samy.pl/evercookie/

**FF to private mode**, no History as that can be sniffed when you enable JavaScript. If you like a site, drag the little URL icon to a Bookmark toolbar folder, you can always remove them later. Also all plug-ins should be "Ask to Activate" in Add-ons. As Flash and Silverlight cookies are used to track you across the web. Flash is also a security issue, so only run it on stuff you trust.

If you have Java installed and don't use it, then Control Panel >Uninstall. Java is bad news and has a lot of power to spy on you if enabled all the time. Keep it off unless needed.

**Add iXQuick** to your search engines, it's based in the Netherlands and doesn't store your IP or info. It's search is very good, uses multiple engines. As good as Google however you can't misspell things like you can in Google.

https://www.ixquick.com/

**DuckDuckGo** is another private search engine, however it's based in the US.

https://duckduckgo.com/

**PrivateLee** also based in the US.

https://privatelee.com/

**NoScript** - drag a Temp Allow All button to the Firefox toolbar to enable only on sites you trust. I would also enable the iFrame blocking feature, it's been used to spy and install malware. NoScript will allow all scripts to run on sites you bookmark. Doesn't break sites,it reloads with all the crap going. JavaScript is especially bad, but nearly every site uses it. JavaScript can be used to track the mouse, sniff history, make fake popup windows that look real and do other nasty things like finding out what other plugins you have enabled to exploit them next, then your machine. So NoScript turns off everything in scripts until you click the button on the toolbar. A little hassle, a lot of security. Sites can be white listed.

Hands down, the best web browser security one can get. Web sites can be very malicious and devious.

http://noscript.net/

**FlagFox**, although not a privacy thing, it's more a security feature and a utility. Adds the country of the server your visiting to the URL, so you know if your possibly in a country with lax enforcement/rule of law. Also right clicking on it will give a wealth of tools, even GeoTool which will give the location of the server on Google Maps. Doesn't break sites.

https://addons.mozilla.org/en-US/firefox/addon/flagfox/

Self-Destructing Cookies , this causes cookies to expire during a browsing session so there is less ability for other sites to use them. Can break sites if the time is set too short.

https://addons.mozilla.org/en-US/firefox/addon/self-destructing-cookies/?src=search

**WOT** - although not a privacy tool, it sends many possible links you could click on to check if they have a bad community rating and warns you before you click. Doesn't break sites. Malicious domains can skew WOT ratings, so before downloading something, make sure you read through all the comments.

https://www.mywot.com/

**Click to play**. In Firefox there is a option to enable it for all plugins, before it wasn't enabled for Flash but should have been. Flash is bad for malware (update your Flash now!) and for tracking purposes between websites. Doesn't break sites, but it can be a slight hassle on Google Maps which assume your going to run Flash all the time like Chrome foolishly does.

http://www.howtogeek.com/123986/how-to-enable-click-to-play-plugins-in-firefox/

**PublicFox** This add-on can lock down portions or Firefox itself from downloads and changes.

https://addons.mozilla.org/en-US/firefox/addon/public-fox/

**Check the status of your plug-ins here**

https://www.mozilla.org/en-US/plugincheck/

There is a add-on that will strip the referrer heading when you click a link on a website, so it can't tell the second site where you came from. This obviously messes with their statistics, but provides privacy. I forget the name of it. 😛

**Other options**

Installing **Hostsman** into Windows and subscribing to various domain blocking lists, also **Peerblock** and subscribing to various IP blocking lists. These two softwares + lists will actually prevent your computer from connecting to those sites on the lists, regardless of what program is used (unless it's a guest OS in a virtual machine).

Can break sites, but nearly all sites are coded to assume a outside server is down, ones that tend to break require other sites servers to be working to verify something to operate or to continue. PeerBlock and Hostsman can be easily toggled on/off to make those troublesome sites work.

http://www.abelhadigital.com/hostsman

http://peerblock.com/

The lists contain known malware, advertisers, spammers, cp, filthy, tracking and just other general scum of the Internet. There are also adult site lists and other lists (like those against P2P or government/school sites) as other optional lists.

Hostman and PeerBlock lists require a weekly update, which has to be manual due to needing UAC approval.

Some of the PeerBlock lists are payware, as it's a lot of effort and they also want to avoid providing the enemy with their lists information.

My Hostsman list is blocking about 900,000 hostile sites, it can be toggled on/off easily a well can PeerBlock in case on good site and it's not working or loading. (The PeerBlock anti-P2P list sometimes does this)

Here is a **list of working Hostsman lists** (malware, trackers, ads, shock, spammers) as they are scattered all over the Internet. Adult content blocking is not included in these lists (shock sites are though).

http://winhelp2002.mvps.org/hosts.zip

http://hosts-file.net/download/hosts.zip

http://hosts-file.net/hphosts-partial.asp

http://hosts-file.net/ad_servers.asp

http://pgl.yoyo.org/as/serverlist.php?hostformat=hosts&showintro=1&mimetype=plaintext

http://sysctl.org/cameleon/hosts.win

http://www.malwaredomainlist.com/hostslist/hosts.txt

https://zeustracker.abuse.ch/blocklist.php?download=hostfile

https://spyeyetracker.abuse.ch/blocklist.php?download=hostfile

http://someonewhocares.org/hosts/zero/hosts

http://www.securemecca.com/Downloads/hosts.txt

http://www.joewein.net/dl/bl/dom-bl-base.txt

http://www.joewein.net/dl/bl/from-bl.txt

http://issviews.com/hphosts/hosts.zip

**Also MalwareBytes has a nice list of hosts files**

http://hosts-file.net/?s=Download

Enable Hostsman preferences to turn 127.0.0.1 to 0.0.0.0, remove duplicates/comments and overwrite (replace, not add to hosts file). Put the max entries per line to 9. Update once a week or so.

YES you can add your own domain blocking lists to Hostsman. Like so **0.0.0.0 www.facebook.com** and save as a text file it will accept.

**Opt out your WiFi from being part of Google's location tracking database**, add "_nomap" to the end of your SSID.

Google Announces “_nomap” WiFi Opt-out Option, Wants Other Location Providers To Go Along

Note: All the above methods I give provide some measure of malware/privacy protection from everyone else but the government(s). The only sure method for privacy is not to use their compromised from the factory/backdoored machines/system at all.

[**See a BIG EXAMPLE HERE**](http://tech.slashdot.org/story/14/04/22/001239/intentional-backdoor-in-consumer-routers-found)

Windows Users, see this for malware software/repair advice etc.

need help with jollywallet virus. from techsupport

2 thoughts on “List of Firefox Add-ons for privacy…add yours!”

  1. The addon for controlling references is [RefControl](http://www.stardrifter.org/refcontrol/). It works fine with most sites, but some third-party content requests may be denied because they require a certain reference to be allowed through (Typekit, for example, won’t deliver fonts unless it receives a valid reference). However, the addon has adjustable per site settings that allow to circumvent this.

    Reply
  2. Disclaimer: I use palemoon so I can’t promise all of those addons work under Australis. Still, I’ve been a privacy nerd for a few years so I thought I’d share a few addons I tried that aren’t on the list.

    You could add Disconnect to that list as an alternative to ghostery https://addons.mozilla.org/en-US/firefox/addon/disconnect/?src=search I’d classify as useful

    EFF’s privacy badger wich I have not tried yet. https://addons.mozilla.org/en-US/firefox/addon/privacy-badger-firefox/?src=search Can’t give a review as I’ve only read about it.

    Not really a privacy addon but it can be useful, pluggin togger. It allows to turn plugins on and off with one click. https://addons.mozilla.org/en-US/firefox/addon/plugins-toggler/?src=ss It’s simple and not in the way, recommended.

    Change referer button, because keeping “network.http.sendRefererHeader” at 0 at all times tends to break the internet. You can change the value of that variable with one click. https://addons.mozilla.org/en-US/firefox/addon/change-referer-button/?src=ss This one is really only useful if you care about sending or not a referer header. If you have no idea what I’m talking about, skip.

    User Agent Switcher is another good one. Does exactly what the title says, masks your user agent to whatever you want it to be. https://addons.mozilla.org/en-US/firefox/addon/user-agent-switcher/?src=ss Because websites can still read things like installed fonts and installed addons, the usefullness of this is dubious at best. Still, it can be fun if you wanna trick websites into thinking you’re using another browser or OS.

    Better Privacy is a must have imo, it manages and deletes flash cookies. I have it set to delete them every hour and whenever the browser closes. https://addons.mozilla.org/en-US/firefox/addon/betterprivacy/?src=ss As I said, this is a must have for any privacy oriented user. It’s fairly easy to setup and you can just let it do it’s thing while forgetting about it.

    Calomel SSL is a little button that tells the strenght of the encryption used. https://addons.mozilla.org/en-US/firefox/addon/calomel-ssl-validation/?src=ss It’s more of a fun toy then anything, although it can give info on how secure a website is. All it does is give info though, it won’t protect your data by itself.

    Speaking of SSL, this is a useful link. https://www.howsmyssl.com/ It rates your SSL and will tell you what problems you might have. If you’re looking to fix something though it won’t tell you how, you’ll have to research it if you’re not comfortable with about:config.

    And that’s pretty much what I can think of right now, hope it helps.

    Reply

Leave a Comment