Important
This requires Advanced Mode to be enabled
AKA "User Types"
For privileged (Administrator) accounts. These are the only users with (partial) root
/System
access, so they need ABSOLUTELY MAXIMUM SECURITY at the cost of convenience. Since admins don't need to browse many websites, the strict-blocking doesn't affect them much.
Tip
remember to disable JIT-compilation:
- MS Edge: Go to "Enhanced Security" (
edge://settings/privacy#SecureMode
) - Moz Firefox:
about:config
, then search "jit".- As a bonus, disable Ion and Wasm
- G Chrome: CLI arg
--js-flags="--jitless"
.- Not persistent, unless added to the desktop shortcut: This can be done on Windows (Properties -> Shortcut -> Target) and any system that supports the FD spec
An arbitrary average human user. They shouldn't be using "Hard-Mode", because literally any site they visit could break, and that's an inconvenience.
Most rules are "just-in-case", for the sake of future-proofing, and lack of information about the behavior of sites.
My own personal rule-set. Designed for my needs, desires, and convictions.
Stands for "standard". It's meant to be used with minimal modifications, as it allows most of the typical content that the user will need.
Minimal noop
, max restriction. Meant to be modified in an additive way (by adding rules to "Temporary"), which gives more control to the user.