Switch to a more secure work-around

2022-04-10 11:03:33 +02:00 · 2022-04-10 11:03:33 +02:00 · 11221f7f6f
commit 11221f7f6f
parent 51a0970065
1 changed files with 1 additions and 4 deletions
--- a/modules/graphical/firefox/default.nix
+++ b/modules/graphical/firefox/default.nix
@ -66,10 +66,6 @@ in
      { path = ".cache/mozilla"; type = "cache"; }
    ];
    home-manager.users.charlotte = { ... }: {
-      home.sessionVariables = {
-        # This is like, really insecure. Disable ASAP.
-        MOZ_DISABLE_CONTENT_SANDBOX = "1";
-      };
      programs = {
        browserpass = {
          enable = true;
@ -105,6 +101,7 @@ in
            "privacy.trackingprotection.enabled" = true;
            "privacy.trackingprotection.socialtracking.enabled" = true;
            "security.identityblock.show_extended_validation" = true;
+            "security.sandbox.content.level" = 3;
          };
        };
      };