I want clone the whonix-ws-15 template and install uBlock Origin and change a few about:config entries in the clone. I know add-ons can deanonymize the user, but pretty much everyone uses uBlock Origin (ads are annoying and bad for privacy and potentially for security) and I almost always install it when browsing anyway.
I know I can’t and shouldn’t run Tor Browser in the template VM (whonix-15-ws), so how should I add uBlock Origin? Are there identifying data, such as inadvertently creating a unique browser profile or unique IDs of add-ons that I have to worry about?
What about uBlock Origin version fingerprinting? I don’t want to be the only one with a current Tor Browser version and an old uBlock Origin version. If I somehow install uBlock Origin in the template, how can I make sure it’s always up to date? One solution is to have the add-ons update automatically every time I start the disp VM with Tor Browser, but that would be slow and kinda fingerprintable. Another solution is to somehow keep uBlock Origin updated in the template VM, but how would that work exactly? I can’t just start Tor Browser there every hour and try to download a new version of the add-on. Is there anything more elegant?
As for the about:config settings - I can manually edit some files, so that’s not really a problem.
I remember reading some guides, but I couldn’t find them this time.