Recommended firefox plugins

From Notes_Wiki
Revision as of 14:37, 21 November 2013 by Saurabh (talk | contribs)

<yambe:breadcrumb>Security tips</yambe:breadcrumb> <yambe:breadcrumb>Firefox</yambe:breadcrumb>

Recommended firefox plugins

Firefox plugins which should be installed:

  1. Ad block plus - https://addons.mozilla.org/en-US/firefox/addon/adblock-plus/
    Helps in blocking adds. It also supports adding custom filters and option for exporting / importing filters.
  2. Ghostery - http://www.ghostery.com/
    It prevents well known tracking websites from tracking user activities and co-relating different actions performed by same user on various websites.
  3. Xmarks - http://download.xmarks.com/download
    It allows synchronization of bookmarks. Newer versions also support synchronization of passwords and tabs. We can open site http://www.xmarks.com/ from anywhere to access our bookmarks on other machines.
  4. Better privacy - https://addons.mozilla.org/en-US/firefox/addon/betterprivacy/
    Better privacy helps in clearing cookies saved by various sites that can be used to recognize same user.
  5. Web of trust (WOT) - https://addons.mozilla.org/en-US/firefox/addon/wot-safe-browsing-tool/
    It helps in giving reputation information about domains. We can also give our inputs for good / bad domains.
  6. NoScript - https://addons.mozilla.org/en-US/firefox/addon/noscript/
    It helps in blocking javascript by default on all websites. We can enable scripts temporarily for a page or for a domain. We can also create permanent exceptions. It also disables scripts from internet pages from accessing intranet content (ABE).
    Considerable patience and practice is required to use NoScript. But privacy has a price. Noscript is also capable of saving configuration in form of bookmark. Hence using NoScript with XMarks allows synchronization of NoScript rules across machines seemlessly.
  7. Refcontorl - https://addons.mozilla.org/en-US/firefox/addon/refcontrol/
    It helps in changing HTTP referrer value sent to many websites which help in discovering from where we clicked link to visit particular website. It disables tracking of how we go from one website to another.
    This would cause banking websites which are paranoid (as they should be) to stop working. Hence exception should be created for bank websites to work properly.
  8. Disconnect - https://disconnect.me/
    Similar to ghostery. Installed for additional protection against giants like google, facebook and twitter
  9. RequestPolicy - https://addons.mozilla.org/en/firefox/addon/requestpolicy/
    Protects from Cross Site Request Forgery (CSRF) attacks
  10. CsFire - https://addons.mozilla.org/en-us/firefox/addon/csfire/
    Protects from Cross Site Request Forgery (CSRF) attacks
  11. HTTPS Everywhere - https://www.eff.org/https-everywhere
    Converts normal requests to HTTPS requests using complex rulesets. It is always not as simple as changing protocol, as sometimes URL needs to be changed. For example http://en.wikipedia.org/wiki/World_Wide_Web was for a while changed to https://secure.wikimedia.org/wikipedia/en/wiki/World_Wide_Web
  12. HTTPS Finder - https://addons.mozilla.org/en-us/firefox/addon/https-finder/
    Searches for HTTPS option on browsed website and adds appropriate rules to HTTPS Everywhere so that rules do not need to be added manually.


Plugins not related to security

  1. Add to search bar - https://addons.mozilla.org/en-US/firefox/addon/add-to-search-bar/
    Allows to add search box option of any website to search toolbox. Can be used to create search for imdb, notes_wiki, etc.
  2. Imdb search - https://addons.mozilla.org/en-US/firefox/addon/imdb/?src=search
    Allows searching at imdb directly from search toolbar



Other useful plugins

  1. Tamperdata - https://addons.mozilla.org/en-US/firefox/addon/tamper-data/
    This allow modifying HTTP post values and other heads for complete control on requests that go to web server.

Also refer to Disable use of iframes in firefox for securing firefox from iFrame based Clickjacking attacks.



<yambe:breadcrumb>Security tips</yambe:breadcrumb> <yambe:breadcrumb>Firefox</yambe:breadcrumb>