cancel
Showing results forย 
Showย ย onlyย  | Search instead forย 
Did you mean:ย 
fireQ
New member
Status: New idea

Having Https only mode on by default can really give more security on the web to those who are not "tech savvy" or do not know how to enable it in settings. it is also pretty recommended to have it enabled at least in 2026 i agree that a lot of websites already have https and use it but having it on by default can reduce chance of MitM (man in the middle) Http downgrade attacks and overally make the web better and safer for everyone using Firefox .

even having it on in private browsing mode can be a improvement but it would be great if we have it on with normal tabs too.

for everyone liking this idea please give kudos to this idea for it to be seen.

3 Comments
Status changed to: New idea
Jon
Community Manager
Community Manager

Thanks for submitting an idea to the Mozilla Connect community! Your idea is now open to votes (aka kudos) and comments.

Horus_Sirius
Making moves

Feature Request: Per-Domain Data Clearing and In-Window Private Tabs

I would like to submit a feature request to introduce more granular, domain-specific privacy and data management controls in Firefox. My proposal consists of two main features that would be highly beneficial for both regular users and developers:

1. Automated Data Deletion on Tab Close (Per-Domain)
Implement a setting that automatically clears all site-related data when closing a tab for a specific domain. Support wildcard configurations for subdomains (e.g., *.example.com). Allow users to choose exactly which data points are deleted (e.g., selectively clearing browsing history, session data, or cache).

2. In-Window Private Tabs and Domain-Specific Private Modes
Introduce a "New Private Tab" option that opens within the current browsing window, removing the need to open a completely separate Private Browsing window. Allow users to configure specific domains to automatically open in this "Private Tab" mode. Provide detailed settings for these domains regarding the handling of local data structures, such as IndexedDB.

These enhancements would be a significant step forward for customizable privacy and provide excellent debugging tools for web development.

Thank you for your time and your continued great work on Firefox.

https://connect.mozilla.org/t5/ideas/feature-request-per-domain-data-clearing-and-in-window-private/...

hackel
Making moves

The number of domains that don't serve their "domain.com -> www.domain.com" 302 redirect over HTTPS is still embarrassingly high.  I would 100% like to shame these domains/companies 

I think we need a third option besides strict HTTPS enforcement, that still permits 302 redirects on port 80, but otherwise enforces HTTPS for all content presented to the user.  This should absolutely be the new default.