Custom System Settings

Table of Contents

• Router
• Webbrowser Configuration Changes
• Webrowser Addons
• Windows 10 Advanced Modifications
• Windows 10 Stuff to Think About
• Zoom

Router

DNS Provider	Unencrypted	Encrypted (DoT)	Encrypted (DoH)	Reference
Cloudflare	1.1.1.1, 1.0.0.1, 2606:4700:4700::1111, 2606:4700:4700::1001	one.one.one.one (by IP: 1.1.1.1, 1.0.0.1)	https://1.1.1.1/dns-query, https://1.0.0.1/dns-query	1.1.1.1
Quad9	9.9.9.9, 149.112.112.112, 2620:fe::fe, 2620:fe::9	dns.quad9.net	https://dns.quad9.net/dns-query	https://quad9.net/service/service-addresses-and-features
Mullvad	n/a	dns.mullvad.net	https://dns.mullvad.net/dns-query	mullvad.net
Deutsche Telekom	automatic	dns.telekom.de	??	n/a

Currently I use Cloudflare and Quad9 with DoT (no fallback to unencrypted DNS).

Other settings regarding DNS:

• Fallback: Cloudflare DNS 1.1.1.1 and 1.0.0.1, if wanted

Further info:

• Status of some DNS servers and their response times
• Find the fastest DNS server using DoH not DoT (runs in your browser and does not share info it says)

Webbrowser Configuration Changes

All browsers
Feature	Preference	Value	Reference
Set the preferred default search engine	n/a	n/a	none

Mozilla Firefox
Feature	Preference	Value	Reference
Enable Firefox Sync	n/a	n/a	none
Disable cache	browser.cache.check doc frequency	1	mozillazine.org
Disable media keys	media.hardwaremediakeys.enabled	false	mozillazine.org
Disable internal PDF viewer	pdfjs.disabled	true	none

Chromium-like browsers (Chromium, Vivaldi, Chrome, …)
Feature	Preference	Value	Reference
Disable media keys	chrome://flags/#global-media-controls > #hardware-media-key-handling	disabled	none
Allow mixed HTTP vs. HTTPS content	vivaldi://flags/#unsafely-treat-insecure-origin-as-secure	http://subdomain.domain.com:1234	specified URLs only (ports matter!)

Microsoft Edge
Feature	Preference	Value	Reference
Disable media keys	edge://flags/#global-media-controls > #global-media-controls	disabled	none

Webrowser Addons

Mozilla Firefox
Addon	Settings	Reference
Add custom search engine	Add https://www.qwant.com/?... as Qwant en-DE	mozilla.org
Facebook Container	none	mozilla.org
Firefox Multi-Account Containers	none	mozilla.org

Windows 10 Advanced Modifications

Feature	Instructions	Reference
Disable auto mic adjustment	Open sound controls and for each mic disable exclusive control
Enable auto tuning for network	as admin run: netsh int tcp set global autotuninglevel=normal
Disable web search	see ghacks article	ghacks.net
Disable Windows telemetry services	Regedit: Computer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DiagTrack\Start = 4: Start = 4 Regedit: Computer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\WMI\Autologger\Diagtrack-Listener: Startr = 0 PowerShell: Remove-Item “LogFiles\WMI\Diagtrack-Listener.etl*” Reboot Windows	bsi.bund.de (German)
Disable download of manufaturer apps	A broken URL in Windows 10 (and Windows 11?) causes an error that seems to affect some devices. As a temporary fix one can disable automatically downloading manufacturers’ apps and custom icons via the advanced system settings. Hit the Windows icon in the taskbar and search for advanced system settings. Open them and go to the tab called Hardware. There select Device Installation Settings and change that setting to No. Save the changes and reboot the computer.	Microsoft Answers

Windows 10 Stuff to Think About

• long paths: https://learn.microsoft.com/en-us/windows/win32/fileio/maximum-file-path-limitation?tabs=registry#enable-long-paths-in-windows-10-version-1607-and-later

Zoom

Feature	Preference	Value	Reference
Do not change window size when screen is shared	Keep current size	check	none