All Products Support Forum

Hi Everyone,

I run Windows 7 Ultimate SP1 and Firefox version 72.0.2, with DuckDuckGo Privacy Essentials and search engine, and New Tab version 1 by Leigh Brenecki.

All works well, other than, having opened Firefox with the first "Tab" available, when I click the "+" sign for a New Tab, the error message "Blocked by Content Security Policy" and "An error occurred during a connection to duckduckgo.com" is displayed.

However, if I click on the Firefox Home Page "House" icon, or select any of my Bookmarks Toolbar icons, the message goes away and all works well again -- at least until I try opening another New Tab when the cycle starts again.

I realise this might be a "New Tab" or "DuckDuckGo" problem, and will seek their support accordingly - I just wondered if anyone on here had experienced the same?

Thank you,

Ian

Hi, My institution has stopped allowing mail to be sent via Thunderbird using OAuth2 because of security concerns. They write:

"While Thunderbird uses Oauth2, it doesn't use/support it fully for sending mail. As such you can authenticate with oauth2 and download/receive mail on Thunderbird, but you can't send mail. Despite saying Outgoing mail uses oAuth2, Thunderbird still requires SMTP to be turned on to use it. This negates the security benefit from the decision to end legacy authentication, and is the change we are not able to do from the new policy. If Thunderbird were to fully support/use oauth2 for sending and receiving it should work. However, while thunderbird - or other mail clients - require SMTP in order to send mail, they will not be able to properly send mail."

Does / will Thunderbird address this and update? Is there an existing solution or explanation?

I'm running Linux Mint 20 and have installed a free version of ProtonVPN. My firefox browser has a banner at the top stating "Your Browser is Being Managed by Your Organization". Not sure how this happened, but I am unable to update the browser because of this. I read some of the previous posts and they all appear to reference a Microsoft OS and Avast.

I used to be able to send emails using Thunderbird to Office365 using SMTP, but it is no longer working, although I'm still receiving emails.

Getting the following error: Login to server smtp.office365.com with username ***@*** failed

Settings Server: smtp.office365.com Port: 587 Encryption: STARTTLS

The problem occurs with Windows and also Mac OS (I installed Thunderbird to help troubleshoot).

I'm using Office 365 Family, so there is no option to manage the users, as there is in the business version, and which has been suggested by others with the same problem.

It's unclear to me if the problem lies with Thunderbird or Microsoft (I suspect the latter). Any advice would be very welcome.

There's a web site I use very frequently that I suddenly cannot access any longer. I got the error message, "404 Bad Request," followed by "Request Header Or Cookie Too Large," and then "openresty/1.15.8.2." This only appears with Firefox. Microsoft Edge loads the sight just fine. What's going on here?

I'm trying to disable some pop-up blockers but I can't even find where "tools" are.

I like to ] further comment if this is going to Firefox Support. This is the most complicated mess I've ever dealt with.

Hello I'm referencing the topic where TLS 1.0 and 1.1 support was removed but rolled back to accommodate some government agencies / sites and support for COVID-19 data

https://support.mozilla.org/en-US/questions/1290040#:~:text=Mozilla%20and%20other%20browser%20makers,and%20performance%20of%20Internet%20connections.

Quoted answer "Right, support for TLS 1.0 and TLS 1.1 has been removed few months ago, but we reverted the change for an undetermined amount of time to better enable access to critical government sites sharing COVID19 information."

Since it was referenced as "undermined amount of time", is there anything currently on your roadmap/release schedule in regards to removing support again? I have some cutover decisions I need to make and knowing if ESR for example will remove this support in 2 months may effect the direction of those. If you have anything to share, i'd really appreciate it.

Regards,

-Chad

I am trying to get S/MIME set up properly. I have my personal certificate set up and installed - I can send signed messages. However, when I try to send an ecrypted message to a recipent with a DOD certificate, I run into an error that the certificate is not valid. I have installed the DOD root certificates, trusted them for email/websites, and imported the individual's signature cert into the store.

How do I change the settings / trust on the individual's certificate to trust it? It is within the valid date range.

How do I create a TLS 1.0, 1.1 exception in Firefox 100.0+ for my legacy devices (NAS), that no longer get firmware updates from the manufacture, that are on my private network and thier configuration is done through a web browser?

 I have been using Firefox browser for a long time, since it was called Mozilla browser.  An answer such as "I'm out of luck." means I will have to look for a new browser.  I prefer not to do that.  I trust the Mozilla brand and like you products and recommend them to my friends and customers.

The import of the logins and passwords does not work on new Firefox 88.0.1. I've switched to new PC and I installed the same Firefox 88.0.1 as on old PC. I tried several times to sync old PC and new PC without success.

I exported logins to a file on old PC and I enabled import from the .CSV files on new PC. That does not work neither as I got almost all imports errors. I attached the print-screen.

On new PC even when I enter manually login and password on page the password is never saved. It looks like Lockwise is completely busted. Please let me know when could you fix this critical error ?

First of this issue is atleast 4 years old. I found various different people having this problem. https://bugzilla.mozilla.org/show_bug.cgi?id=1432644 It should be a P5 not a P3. This official Mozilla article: https://support.mozilla.org/en-US/kb/add-trusted-websites-your-allow-list-firefox-focus Does NOT work.

I am trying to add an expection to tracking protection but there is no such option, as descriped at Bugzilla. In the adress bar i removed the tracking protection for a website. But it was NOT added to the exception list. I dont allow 3rd party cookies and auto delete cookies when closing Fox. I think that is the reason why it's not working, if this is the case it's a bug.

What i actually tried to do, using dark-theme from duckduckgo permanently. Because as right now, i must change the theme every single time i reopen Firefox. This is Bull**** honestly. Even when i add duckduckgo as an addon, it does not save the dark theme!

When I enter my SMS code as part of SSL/TLS security OAuth2 authentication method (see my account5 below) I get the following: __________________________________________________ Need admin approval Thunderbird www.thunderbird.net

Thunderbird needs permission to access resources in your organisation that only an admin can grant. Please ask an admin to grant permission to this app before you can use it. Have an admin account? Sign in with that account Return to the application without granting consent __________________________________________________

I don't know what app is being refered to in the above message but I am the administrator of my account and have given full permissions for Thunderbird to cross Windows Firewall etc. etc.

Since this problem started this morning I get the busy rotating symbol when accessing my account5 mail directories and their contents do not appear to be updating.

Some of the copious troubleshooting information provided from Thunderbire Help follows: ____________________________________________________

 Application Basics

   Name: Thunderbird
   Version: 91.4.1
   Build ID: 20211216022855
   Distribution ID:

   Update Channel: release
   User Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:91.0) Gecko/20100101 Thunderbird/91.4.1
   OS: Windows_NT 6.1 7601

   Launcher Process: Enabled
   Multiprocess Windows: 0/0
   Fission Windows: 0/0
             Disabled by default
   Remote Processes: 4
   Enterprise Policies: Inactive
   Google Location Service Key: Missing
   Google Safebrowsing Key: Missing
   Mozilla Location Service Key: Missing
   Safe Mode: false

 Mail and News Accounts
   account1:
     INCOMING: account1, , (imap) outlook.office365.com:993, SSL, 3
     OUTGOING: , smtp.office365.com:587, 2, 3, true

   account2:
     INCOMING: account2, , (none) Local Folders, 0, 3

   account5:
     INCOMING: account5, , (imap) outlook.office365.com:993, SSL, 10
     OUTGOING: , smtp.office365.com:587, 2, 10, true

 Crash Reports for the Last 3 Days

 Remote Processes

   Type: Count

     Web Content: 3 / 8
     Extension: 1

 Security Software

   Type: Name

     Antivirus:
     Antispyware:
     Firewall:

 Environment Variables

   MOZ_CRASHREPORTER_DATA_DIRECTORY: C:\Users\re\AppData\Roaming\Thunderbird\Crash Reports
   MOZ_CRASHREPORTER_EVENTS_DIRECTORY: C:\Users\re\AppData\Roaming\Thunderbird\Profiles\fwghi177.IETimport\crashes\events
   MOZ_CRASHREPORTER_PING_DIRECTORY: C:\Users\re\AppData\Roaming\Thunderbird\Pending Pings
   MOZ_CRASHREPORTER_RESTART_ARG_0: C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
   MOZ_CRASHREPORTER_STRINGS_OVERRIDE: C:\Program Files (x86)\Mozilla Thunderbird\crashreporter-override.ini
   MOZ_LAUNCHER_PROCESS: 1

 Important Modified Preferences

   accessibility.typeaheadfind.flashBar: 0
   browser.cache.disk.amount_written: 849303
   browser.cache.disk.capacity: 1048576
   browser.cache.disk.filesystem_reported: 1
   browser.search.region: AU
   extensions.lastAppVersion: 91.4.1
   font.internaluseonly.changed: true
   font.name.monospace.el: Consolas
   font.name.monospace.x-cyrillic: Consolas
   font.name.monospace.x-unicode: Consolas
   font.name.monospace.x-western: Consolas
   font.name.sans-serif.el: Calibri
   font.name.sans-serif.x-cyrillic: Calibri
   font.name.sans-serif.x-unicode: Calibri
   font.name.sans-serif.x-western: Times New Roman
   font.name.serif.el: Cambria
   font.name.serif.x-cyrillic: Cambria
   font.name.serif.x-unicode: Cambria
   font.name.serif.x-western: Cambria
   font.size.monospace.el: 14
   font.size.monospace.x-cyrillic: 14
   font.size.monospace.x-unicode: 14
   font.size.monospace.x-western: 14
   font.size.variable.el: 17
   font.size.variable.x-cyrillic: 17
   font.size.variable.x-unicode: 17
   gfx.crash-guard.d3d11layers.appVersion: 91.4.1
   gfx.crash-guard.d3d11layers.deviceID: 0x0659
   gfx.crash-guard.d3d11layers.driverVersion: 8.17.12.7628
   gfx.crash-guard.d3d11layers.feature-d2d: true
   gfx.crash-guard.d3d11layers.feature-d3d11: true
   gfx.crash-guard.d3d9video.appVersion: 78.14.0
   gfx.crash-guard.d3d9video.deviceID: 0x0659
   gfx.crash-guard.d3d9video.driverVersion: 8.17.12.7628
   gfx.crash-guard.status.d3d11layers: 2
   gfx.crash-guard.status.d3d9video: 2
   gfx.crash-guard.status.wmfvpxvideo: 2
   gfx.crash-guard.wmfvpxvideo.appVersion: 78.14.0
   gfx.crash-guard.wmfvpxvideo.deviceID: 0x0659
   gfx.crash-guard.wmfvpxvideo.driverVersion: 8.17.12.7628
   idle.lastDailyNotification: 1641365785
   layers.mlgpu.sanity-test-failed: false
   media.gmp.storage.version.observed: 1
   media.hardware-video-decoding.failed: false
   network.predictor.cleaned-up: true
   network.trr.blocklist_cleanup_done: true
   places.database.lastMaintenance: 1641185870
   places.history.expiration.transient_current_max_pages: 112348
   privacy.purge_trackers.date_in_cookie_database: 0
   security.disable_button.openCertManager: false
   security.disable_button.openDeviceManager: false
   security.remote_settings.crlite_filters.checked: 1635390021
   security.remote_settings.intermediates.checked: 1635390021
   security.sandbox.content.tempDirSuffix: {bfda8a1a-634b-4d7e-8fe6-b8b6bfbd896c}
   security.sandbox.plugin.tempDirSuffix: {65f21b5f-d21c-40f9-9190-e19dcdf55ea8}
   signon.importedFromSqlite: true
   storage.vacuum.last.index: 1
   storage.vacuum.last.places.sqlite: 1641272744

 Important Locked Preferences

 fission.autostart.session: false

 Places Database

 Accessibility

   Activated: false
   Prevent Accessibility: 0
   Accessible Handler Used: true
   Accessibility Instantiator:

 Library Versions

     Expected minimum version
     Version in use

     NSPR
     4.32
     4.32

     NSS
     3.68.2
     3.68.2

     NSSSMIME
     3.68.2
     3.68.2

     NSSSSL
     3.68.2
     3.68.2

     NSSUTIL
     3.68.2
     3.68.2

 Sandbox

   Content Process Sandbox Level: 0
   Effective Content Process Sandbox Level: 1
   Win32k Lockdown State for Content Process: Win32k Lockdown disabled -- Operating system not supported

 Startup Cache

   Disk Cache Path: C:\Users\re\AppData\Local\Thunderbird\Profiles\fwghi177.IETimport\startupCache\startupCache.8.little
   Ignore Disk Cache: false
   Found Disk Cache on Init: false
   Wrote to Disk Cache: true

 Internationalisation & Localisation

     Application Settings
     Requested Locales: ["en-GB","fr"]
     Available Locales: ["en-GB","en-US","fr"]
     App Locales: ["en-GB","en-US","fr"]
     Regional Preferences: ["en-AU"]
     Default Locale: "en-GB"

     Operating System
     System Locales: ["en-US"]
     Regional Preferences: ["en-AU"]

 Remote Debugging (Chromium Protocol)

   Accepting Connections: false
   URL:

Hello, I received a Yubikey 5 and all is working fine using GPG with it, except integration with Thunderbird on Windows.

I followed this guide: https://wiki.mozilla.org/Thunderbird:OpenPGP:Smartcards including 64 windows section

I was able to successfully send mail to myself, but then thunderbird failed at decrypting this message: Thunderbird is indicating that key is not available and I see no prompt from gpg-agent. Key is correctly declared as GPG external.

If I try to decrypt tis email by storing it on file and using gpg in command line, it works fine: agent is asking for Yubikey PIN and gpg is decrypting the message. But this is an awful workaround, not user friendly at all.

I also did sanity check by sending to myself a message encrypted with a key generated by Thunderbird: all is working fine, the message is decrypted within Thunderbird.

=> How do you make Thunderbird decrypt message encrypted with key stored in Yubikey? How do you make the gpg-agent called by thunderbird?

Greetings from North-East of France, since a few weeks ago I'm seeing a (sort of) pop-up window suggesting to login with a Google account (see the screenshot attached). I've done some internet search to find out how to get rid of it, but the only suggestion I get is to modify an option in a Google account. However, I do not have a Google account! How to get rid of this disturbing pop-up? I already use Adblock Plus and uBlock Origin, yet Google passes through them! Thank you in advance for any help you may provide.

defaultPref("privacy.window.maxInnerWidth", 1000); defaultPref("privacy.window.maxInnerHeight", 1000);

Instead of 1000 what is the default value Firefox uses?

Hi!

I want to dump/debug http traffic with mitm proxy: https://github.com/ganskef/LittleProxy-mitm . This proxy generates it's own root certificate which i manually imported to Firefox from about:preferences#privacy > View Certificates > Authorities > Import. I verified that cert shows up after importing it. But I get errors despite of that:

Secure Connection Failed

An error occurred during a connection to www.youtube.com. Peer’s certificate has an invalid signature.

Error code: SEC_ERROR_BAD_SIGNATURE

Is there a way to bypass it?

Hi. Starting somewhat recently, Firefox has been getting in the way of me downloading certain PDFs which I know to be fine but which it thinks are insecure or a security hazard. I'd like to disable this security "feature" permanently. How can I do this? Thanks!

I need to be able to temporarily disable my ad blocker: I keep getting popups saying that an ad blocker has prevented me from accessing a certain site, or that it's interfering with a site's fraud protection settings. I'm running Windows 10 and Windows Security, and also MalwareBytes...but neither of them appear to contain an ad blocker. Is it Firefox?

When I surf Youtube, Google, Facebook and anything on Firefox this following error happen every time. Please help me.

Firefox detected a potential security threat and did not continue to www.youtube.com because this website requires a secure connection.

What can you do about it?

www.youtube.com has a security policy called HTTP Strict Transport Security (HSTS), which means that Firefox can only connect to it securely. You can’t add an exception to visit this site.

The issue is most likely with the website, and there is nothing you can do to resolve it.

If you are on a corporate network or using anti-virus software, you can reach out to the support teams for assistance. You can also notify the website’s administrator about the problem.