This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Firefox ESR (Windows) Policy Wildcards - Is it possible?

more options

Good afternoon,

We're currently trying to set up a Hardening Guide for Firefox ESR but are struggling with a few policies and setting wildcards.

For example, we're trying to set an origin in Cookies > Block Settings to something like "*", and we get the error "Ignoring parameter "*" - not a valid origin."

In Chrome / Edge you can set a wildcard like this: [*.]google.com for example - we receive the same error message for this.

Can you do such a thing for Firefox ESR without having to list every site you want to block?

ESR Version: 115.6.0esr (64-bit)

Kind Regards, Ethan Jerrum

Good afternoon, We're currently trying to set up a Hardening Guide for Firefox ESR but are struggling with a few policies and setting wildcards. For example, we're trying to set an origin in Cookies > Block Settings to something like "*", and we get the error "Ignoring parameter "*" - not a valid origin." In Chrome / Edge you can set a wildcard like this: [*.]google.com for example - we receive the same error message for this. Can you do such a thing for Firefox ESR without having to list ''every'' site you want to block? ESR Version: 115.6.0esr (64-bit) Kind Regards, Ethan Jerrum

Chosen solution

Are you using Firefox policies?

With the cookie policy:

https://mozilla.github.io/policy-templates/#cookies

You set it to reject all cookies ("reject") and then specify the sites to allow.

I've attached a screenshot of where this is in the Firefox UI.

Read this answer in context 👍 0

All Replies (4)

more options

If you say https://google.com and http://google.com permissions, it will block subdomains as well.

more options

Hi Mike,

Yes this is good but we want to Block all sites from setting cookies apart from those in the Allowed Sites list, does this make sense?

Kind Regards, Ethan

more options

Chosen Solution

Are you using Firefox policies?

With the cookie policy:

https://mozilla.github.io/policy-templates/#cookies

You set it to reject all cookies ("reject") and then specify the sites to allow.

I've attached a screenshot of where this is in the Firefox UI.

more options

Thank you Mike,

This makes sense now.

Kind Regards, Ethan