"webgl.disabled = true
WebGL is a potential security risk.
"I noticed that in Tor Browser, that line is "true". Could it be that the NoScript addon handles that issue? Anyway, I would encourage anyone to use NoScript. Even if you set it to allow all by default, it will protect you from XSS attacks and clickjacking. How about adding an AppArmor profile to restrict browser access to the system? :)
