All Products Support Forum

Hello. Having spent many hours ( and about a hundred quid ! ) trying to sort out problems with my Thunderbird E-mail settings a couple of months ago, I am still getting problems when attempting to send E-mails. Recently I get a message which says Error Code TT602 Please Check Your E-mail Settings. But I have checked them all and re-set them to the correct settings as recommended by Talk Talk. OUTGOING SERVER according to Talk Talk should be smtp.tiscali.co.uk with outgoing port number 587. However, although connection security is supposed to be SSL/TLS ( according to Talk Talk settings page ! ) this will not synchronise with the outgoing port number 587. Instead, uf I enter outgoing port 587 as recommended, the " connection security " setting automatically defaults to STARTTLS. I have the " authentication method " set to " normal password " since it does not work with anything else.

Can someone help me out please ?

Hi, we have encountered with the CSP issue in Firefox:

We have the following CSP <meta> tag in our application:

<meta http-equiv="Content-Security-Policy" content="default-src 'self';

                  script-src  'self' 'unsafe-eval';
                  style-src 'self' 'unsafe-inline';
                  base-uri 'self';
                  frame-src 'self';
                  media-src 'self';
                  navigate-to 'self';
                  form-action 'self';
                  object-src 'none';
                  connect-src 'self'">

As you see, we did not specified 'unsafe-inline' nor in script-src, nor in default-src. Which means that inline scripts like <script>alert(1)</script> should not be allowed to execute. But it still works in Firefox and we get an alert popup.

In Chrome and Edge the policy works fine, and blocks the script execution.

Please assist on the issue.

With respect, Victorz

Can anyone tell me, or teach me how to tell, what's happening on the website 'http://www.syscodiscountfoodcenter.com' on the "Products" button? Whenever I click on it, the address bar just becomes 'http://www.syscodiscountfoodcenter.com/#' but nothing happens. I suspect that this is being blocked by some type of security or protection blocker, but I don't know how to determine what.

Ultimately, what I'd like to do is determine exactly what protection is being violated, then turn off this specific protection for just this website, so that I could order products. Can anyone show me a link or page that would describe how to determine what's happening?

Thank you for your help and advice.

-Kevin

Hi,

I'm using Firefox on Linux with i3wm. For some reason the whole autofill section is missing in Preferences/Privacy & Security section. I'm using version 84 of Firefox. I presume I'm missing some dependency, but I'm not sure what it is. Can someone suggest what this feature depends on to work.

Thanks

I've been trying to access some resources hosted locally with a web extension for testing, but I've been encountering CORS errors. I've added localhost to the permissions field of the extension's manifest.json, but I still encounter the CORS errors. I saw that bugs 1220810 and 1488740 addressed similar bugs in FF84, but Firefox still won't let me send the requests. If it helps at all, I've been trying to access the resources hosted on localhost from an https context, but I was under the impression that those bugs should have fixed that issue?

Ideally I wouldn't need to implement having the server respond with the CORS headers since it only seems to be a problem with Firefox in a local context. Accessing the local resources through Chrome works, and accessing the resources through the internet with the domain name in the permissions field of a production build of the extension's manifest.json works in Firefox. Is there a way to make Firefox disregard CORS enforcement for localhost for temporary extensions?

Within the last few weeks, Microsoft changed how they handled oauth2 in thunderbird popups. I have an account at cornell.edu, managed by Microsoft and that has used thunderbird for a very long time. I've updated firefox and thunderbird to the latest on Windows and this problem remains:

Passwords and account IDs proven correct via access through web browser interfaces. Oauth2 / IMAP / StartTLS Click "Get messages". Pop up appears asking for 'netid' (email address) which is pre-populated and correct, and a blank square for password. Enter the password. Click 'sign in'. The password immediately erases to a blank. No other confirmation or notice or detail appears. Entering the password and 'signing in' many times does not change anything. The popup never disappears, it just stays there asking for the password, then erasing it.

The 'help desk' people at the universities have no idea about thunderbird, they offer to change the password which they do, then the web interface validates the use with the new password, but the thunderbird experience is the same. Tried the 'useragent compat' true setting suggested on the web -- no change. Tried 'safe mode' no change. Tried deleting all the stored passwords, no change. Help?

I know that private browsing means nothing is recorded. Data is stored in the RAM during that session. When Firefox is closed, the RAM is flushed. Why does cache and data grow during a private browsing in the android settings?

Recently I logged out from Firefox my account, and when I tried to login it asked me to enter the 6 digit verification code from my authentication application. It looks like this comes from the 2-steps authentication method. I don't remember I used this procedure before, and I don't know what is the authentication app. I have this account since 2014 and now I am not able to login to it. Is there is any way to reset the sitting through email? Please help. Note: I created another account in order to be able to ask this question.

I tried to play a program on the CBS site; I've done this two or three times a year for many years with no problems, but this time the site said it could not load its ads (error 113), and therefore would not play the show. I've always watched the ads before, never a problem until now. I checked the icon for Adblock Plus, and it said that something had caused it to reset to default; it said I could fix this by removing and reinstalling Adblock Plus, which I did, but that made no difference. I don't know what default is, or what I had before (a friend set up my computer for me, so I don't know details), but I just want the CBS site to be able to load its ads so I can watch the program. What do I do? Thanks.

Currently on Firefox Version 85.0 (64-bit) using with Windows 10 Pro

Until recently (before Firefox updated versions) my cookies, cache and history, were automatically deleted on exit from Firefox with no problem. Now I can not delete them for some reason. Even when I try manually to "Clear Data" and also manually clear all History (all sub-menus checked to be cleared). When I restart and open an online newsletter, normally I have to sign in. I don NOT have passwords checked to be saved in FF options and never did. But now with the new version it just auto signs me into that website. I do NOT want my passwords saved/remembered, nor any of my other info, etc! It is really annoying and not secure if FF is now saving information we don't want it to! What is going on here? How do I resolve and get back the way I had it before the update? Please advise. Thanks in advance!

NOTE: I don't want to start from scratch by clearing out Firefox totally or messing with my profile. I have too much customization to start over from scratch. (That would be like asking somebody to reinstall Windows entirely when something minor goes haywire!)

I am trying to get through captcha. Have been for 2 hours. Google says I now have to allow third party spyware in able to access the site I need to get to. This does not sound safe. Any thoughts.

Firefox 86.0b2, Windows 10 build 19041

I browse in permanent private mode, strict enhanced security.

When I logout of gmail, the permissions icon appears in the Site Info panel, image attached. When I choose X, the icon disappears; it says "a refresh might be necessary". When i refresh, the icon is back. No google cookie is listed in "Cookies and site data"

I refreshed firefox, reapplied my preferences. Problem persists.

I first noticed it this afternoon; it does not happen with Firefox 85, same privacy settings.

Is there something I can do to change this behaviour?

Thanks.

-merina

I’d appreciate an explanation from someone who knows the background about what happens when websites pass information to each another.

I am using Vanguard’s website, which is the only one (out of those that I use) that prevents me from blocking tracking content and which also forces me to allow social media tracking. If I do not allow this, the website doesn’t work.

I attached two files: a capture of content tracking and a capture of the social media tracking shown by Firefox when I use Vanguard's website.

I would like to understand the following:

1. Is Vanguard the one enabling all of this tracking? If so, do they program it into their website? 2. Is there usually some kind of agreement between Vanguard and the 3rd parties and social media companies that Vanguard passes information to? 3. Is there any financial benefit to a company like Vanguard to do this?

Thanks.

Does anyone know of a work around to enable clipboard API functionality over a local intranet without a public domain name?

• I use a local server application with a http interface on my home Intranet, accessed via FireFox (a web browser). I do not want the program to be accessed from the internet, and don't have and don't think I want a public domain for my local Intranet server. In the past I have been accessing it from Firefox by book marking the IP address and port.
• The program has recently changed from using Document.execCommand() method to the modern asynchronous Clipboard API.
• The clipboard API in Firefox defaults to requiring the host is accessed via https (appropriate for public facing internet access) or the host server is run on the same machine as the web browser (127.0.0.1 or localhost).
• From a security perspective I'm not convinced I need encryption between computer in my home networks (if that traffic is being intercepted without my knowledge to modify or spy on or modify my clipboard then my private network has already been severely compromised).

As a result the program's clipboard functionality no longer works for me. I have tried

• looking for Firefox exception settings, to enable clipboard API functionally over http (vs https) for specific local IP, but could not find how to do that in FireFox
• I have tried installing Caddy but without a domain name I couldn't get it to reverse-proxy to https

Am I missing an easy solution or do local servers need public addresses now.