All Products Community Forum

From Sept-16-2024 Microsoft will deprecate Normal Password and require OAuth2 authentication on its email accounts accessed from Thunderbird and other clients.

I'm trying to convert my hotmail accounts on Thunderbird to OAuth2 authentication.

Server Settings Authentication can be set to OAuth2 because OAuth2 is an option in that menu.

But SMTP Server Authentication cannot be set to OAuth2 because OAuth2 is not an option in that menu.

Both Connection Security methods ( Inbound and SMTP ), are set to STARTTLS.

See screenshots, thank you.

I am running Firefox 126.0-1 on an Arch Linux system. Most websites are failing to connect for security reasons.

Some sites, including google.com and nytimes.com, fail with an "SEC_ERROR_UNKNOWN_ISSUER" error, and their certificates confirm that they are respectively issued by Google Trust Services LLC and DigiCert Inc.

The website archlinux.org errors with "MOZILLA_PKIX_ERROR_MITM_DETECTED", stating that "Software is Preventing Firefox From Safely Connecting to This Site", citing in particular ISRG Root X1 as the problem. The certificate confirms that it is issued by Let's Encrypt.

The website duckduckgo.com simply errors with "SEC_ERROR_PATH_LEN_CONSTRAINT_INVALID" and states "Secure Connection Failed"

I have confirmed in preferences that my proxy settings are set to "No proxy" and the problem persists across troubleshooting mode and making a new profile. I have also tried removing the cert9.db file in a given profile folder.

I use a privoxy hosted on my home server to route Firefox traffic through a VPN. It usually works fine, but I am trying to set a few services to bypass the proxy using the "No proxy for" box in the Firefox connection settings - specifically streaming sites like netflix, hulu, and plex. Despite putting these domains in the "no proxy for" box, the proxy still seems to be applied - ie. Netflix fails to stream as it would if I were connecting through the VPN.

To test, I also tried adding "whatismyipaddress.com" to the "no proxy for" box, and this did successfully bypass the vpn (showing my real IP), so it is working to some degree. I can also confirm that that site shows my vpn IP when it is not on the whitelist.

I assume that these streaming services are connecting to a different domain when streaming video, which is not on the whitelist to bypass the proxy because I have not added them. Does anyone know if this is the case, and if so, how I could fix the issue?

Thanks.

I have been watching YouTube for years, issue free. This week I was blocked, as my computer may be blocking ads and thus violating You Tubes policy. How can I find and disable ad block programs/ extensions, thus allowing me to get back on You tube. I can recognize an outright program, but do not knew if extensions are in play that are not obvious to me. THANKS

I come, trying to manage my disappointment and anger, to say only one thing: I love Firefox, it (still) has the best UX of any modern browser. And part of that is that it has NO AI malware built into it. The recent statements from the CEO regarding the implementation of AI into the browser is extremely disappointing, to the point of it feeling like a personal betrayal, and will only make me (and a lot of other people) just completely abandon it. And don't kid yourselves, your user base never was so low, and that user base only like this browser specifically because it has no malware built into it, because of the privacy and open nature you had before this debacle. You're shooting yourselves on booth feet and an arm with a shotgun. I don't trust you as a company anymore at all; you just achieved the complete opposite of what you said you wanted. If you just made use of reverse psychology and was that's your actual goal, congrats. This company quite literally couldn't have elected a worse person to be chief executive.

I've appreciated using Thunderbird for an ad-free Hotmail experience for quite some time. I've changed my Hotmail password every few weeks lately and Thunderbird worked fine when I entered the new password at the prompt when Thunderbird started.

Just now however, I needed to get into my Microsoft account that uses the same password as my Hotmail account. My login to Microsoft failed. Trying to understand why, I looked in Thunderbird at the saved password for Hotmail's server:

oauth://login.microsoftonline.com (https://outlook.office.com/IMAP.AccessAsUser.All

https://outlook.office.com/POP.AccessAsUser.All 
https://outlook.office.com/SMTP.Send offline_access)

The saved password was a 464 character long ASCII string totally irrelevant to the password I'd selected for Hotmail and Microsoft.

I went through the password change process for Hotmail, was then able to get into my Microsoft account and restarted Thunderbird. As usual, Thunderbird asked for the new password. I entered it and was then able to receive new mail from the Hotmail server in Thunderbird. However, again, the saved password in Thunderbird for Hotmail was not the password I'd entered.

Next, I deleted the saved passwords in Thunderbird, restarted it and this time it prompted me to be sure I'd downloaded it from a reliable source. I've never seen that prompt before. It came with my Linux Mint installation, so I thought it would be safe, but again there's an irrelevant password saved for my Hotmail account.

It's like it eventually changes my password for Hotmail and Microsoft since I can get mail through Thunderbird with the odd password it saves, but if I use what should be my password for Hotmail or my Microsoft account via a web page interface, the password doesn't work.

I'll have to stop using Thunderbird if this continues.

I have tried the suggestions as described in the following article: https://support.mozilla.org/bm/questions/1273784 However, am still having the issue. It's as if the settings are totally ignored. I am using version 108.0a1 of Firefox developer edition. Ideally what am trying to achieve is away to disable all features of ETP. I figured setting it to custom with all values unchecked would have done the trick but it's not working. What works is if I add the site to the list of Exceptions for Enhanced Tracking Protection, then I will see all Ads loaded just fine on the page. However, this is not viable for me as I have a large list of sites that I visit, and I need to see the ads on them.

Does anyone know of a way to get around this feature in FF?

Is there another setting am missing from the previous article?

I am very disappointed to learn that Firefox is moving forward with AI integration. I use this browser specifically because there is no AI. AI tools are a drain on public resources such as clean water and electricity, and the data centers that host the AI servers are a burden in many ways on the communities where they're built.

Additionally, I am concerned that the AI will turn all of our browser history into an AI slop ad factory where our data is more easily collected and sent off to generate more ads.

If AI is integrated into FireFox, I will no longer use this browser, even if the AI can be "turned off".

Is there any way to keep AI out of FireFox?

bsky.app cookie continues to be loaded on computer even after I continually delete it, privacy set to strict and blocked under "managed exceptions, why is it being reloaded when I don't access the site. None of the sites I access are linked to it, only visited once and if this alternative to x continues to set cookies, how can I permanently block it, thought the exceptions list was supposed to keep blocking it. So far it's come back three times, I'll screenshot it next time and attach.

Hi there!

I'm a long time user of Firefox, on and off since roughly 2004.

I just saw the Mozilla blog post about Anthony Enzor-Demeo taking over as Mozilla's CEO this morning and am writing here in an attempt to find a way to reach out to anyone within the Mozilla Foundation regarding the direction the Firefox application has been headed, and try to make myself and similar minds within the Firefox community heard about the changes that Mozilla has made to its policies and direction.

In February 27th of this year, Mozilla changed Firefox's ToS and Privacy Notices to incorporate legally binding policies for the application and strip it of its original privacy-first, open-source nature. This, while not a deterministic factor in how the application operates; illustrates a sudden, outward and hostile stance towards its existing user-base who is most commonly comprised of users dissatisfied with the lack of secure and private browser options available. Personally, I refuse to use Chromium-based web engines wherever possible and Firefox has been my one and only way to break from this "monopoly" of web engines.

Beginning to harvest user data for use by Mozilla and claiming ownership of any user content is immediately a massive breach of trust and contradicts what Mozilla as an organization has stood for since its inception. Going a step further to utilize this data to either be sold to advertisers as an asset, or to be used to train LLM's is exactly what I DON'T want to have happen with my data. I hate that this change happened and it massively reduced my trust in Mozilla and Firefox as a platform.

I never asked for this, Mozilla promised that it would never happen, and now I'm left betrayed by broken promises made with the express intent to turn a profit on my behalf as a user.

In Anthony's blog post, he mentions how AI has reshaped how people search, shop and make decisions in ways that were hard to see or understand. I outwardly disagree with this statement and feel as though AI has "infected" its way through society by brute force, being put in front of every user and shoved in every application. LLM's are not a catchall solution, do not help resolve issues in new and innovative ways, and are massively misused, causing excessive resource usage, gutting consumer markets, and decimating the tech industry by causing excessive amounts of data centers and global tech inventories to be purchased and built with no promise of delivery.

While I may want a fast, modern browser that is honest about what it does- I want that with no obscurity. I want a web engine that is open source, as lightweight and minimal in its design and coding as possible; and with no bureaucracy. I want to know how the engine works, to have the option to review its codebase front to back, to have my data stay as my data on my own local machine without providing it to a third party simply by using an application. Mozilla with its changes since February of this year have removed this as a possibility from their entire application suite.

I don't want AI in my browser- AT ALL. I have disabled it in every capacity that I can (frustratingly too, as these are all enabled by default and FORCE me to provide you my data without express consent.) and with every advancement Mozilla makes towards calling it "the future" and "the focal point", I lose trust. I don't want AI, I want the old privacy policy put back, and I really, well and truly and wholly, DO NOT WANT AI.

I NEVER ASKED FOR THIS, IT'S RUINING OUR LIVES, OUR SOCIETY, OUR PLANET, AND I WANT IT GONE.

Unless Mozilla stops this direction today, I will be seeking out new options, disallowing Firefox usage in any corporate environments within my jurisdiction, and actively informing friends, family and acquaintances of Mozilla and Firefox's fall from grace, and to utilize other user-centric options.

Thank you for your attention, have a great day, and I hope Mozilla can create action that will allow its users to trust it once again.

I look at porn on my Android phone. I use Private Browsing to do so. Why are my Private Browsing addresses appearing as Firefox Suggest results that appear outside of Private Browsing as well? And why does Pornhub show me a personalized home page when I'm using Private Browsing? None of these pages are in my browser history because I've only accessed them via Private Browsing. But these "features" sort of defeat the purpose of it don't you think?

I've just switched from Chrome to Firefox and never had this issue with Chrome.

Hello all,

I had been using firefox as the standard browser for years, but since the DNS-over-HTTPS feature I have had trouble with protecting my family on the web via DNS filtering. Currently the only solution that has worked is to use a different browser (the Spin browser, for whoever is interested). I have Firefox blocked using the Android family link feature (and they can't install new apps without permission). Personally, I would love to move everyone back to Firefox, but I can't find a way to do it safely. Is there a way to effectively disable DNS-over-HTTPS such that it can't be changed (kids are pretty quick at figuring out that they can just go to the settings and figuring out that they can turn the feautre back on). A parental control feature would be ideal, so I can just set the DNS-over-HTTPS to use the family DNS filter in a way they can't turn it off. Does anyone have an helpful solution, or is Firefox dead for family protection?

Respectfully, Andrew

Anthony Enzor-DeMeo wants to push way more AI onto Firefox. I originally became a Firefox user for the customizability, privacy, and security it offered in comparison to other browsers. How does Mozilla Firefox intend to maintain these features with so much AI slop? Will there continue to be versions of Firefox available without the AI components? I'm sick of having to turn off new data-stealing AI settings all the time on a browser I once trusted. I hate that I am now looking for other options.

This isn't so much a question as a complaint, I guess. Get your shit together, Firefox!!!

Bing says my browser is the one to set my SafeSearch on strict by default, but I can't find the option to turn it off. Is there even an option or is this a Bing issue?

When will Gecko-based Firefox Android increase the number of default search engines in 2025?

Currently it hosts only Big Tech namely Google and Microsoft Bing and DuckDuckGo, which is Bing and MSN results in DuckDuckGo and Qwant (same Bing results) latter which works only in the UK.

I'm using Gecko-based browsers like Fenix and Mull and Iceraven, and they all come with like 5 to 10 search engine options.

Adding new search engines is a mess and doesn't sync with Firefox account settings, so futile efforts.

Even Chrome allows us to select our search engine, if we are visiting it too much.

Is Firefox really privacy based browser or just Big Tech in Firefox like Google as default search engine out of the box, no asking which the XYZ user wants?

https://connect.mozilla.org/t5/discussions/when-will-gecko-based-firefox-android-increase-the-number-of/m-p/75977#M29155

I use firefox as my browser of choice because it seems to be the only large browser not yet completely flooded with AI slop and bloatware. I'm incredibly disappointed that the new direction seems to be "becoming a modern AI browser". I don't care if I can opt-in or opt-out of AI tools for my personal browser experience - simply their presence presents a safety, efficiency, ethical and privacy concern.

The ONE THING that puts firefox above other browsers and why it is gaining more users recently is because it hasn't jumped into the AI-toilet along with Chrome etc. Yet. If Firefox moves forward with the implementation of more AI tools, regardless of individual opt-in options, I will have no choice but to stop using firefox. I am simply not interested in wading through excrement.

I just want to say that if Firefox goes through with this AI bs, I will promptly be finding a new browser. The whole point of me using Firefox is it is the best browser for privacy, which I care about greatly. AI integration and personal privacy are mutually exclusive; they can't exist without each other. So do not become an "AI browser," or whatever the CEO called it. It is only going to kill a great product that is basically the only thing stopping google from having a web browser monopoly.