Hello if i enter proxy and ip address in firefox in Manual proxy configuration section then when i open a website its asks for username and password my question is can pr… (read more)
Hello if i enter proxy and ip address in firefox in Manual proxy configuration section then when i open a website its asks for username and password my question is can proxy owner see my data and i am using https websites like post data ?
Hello community, I'm an embedded systems developer and we have a ressource constraint IOT device which is using TLS1.2. When we use https:// to access the internal websit… (read more)
Hello community, I'm an embedded systems developer and we have a ressource constraint IOT device which is using TLS1.2. When we use https:// to access the internal website of the device, Firefox does a complete TLS handshake for each asset to download which renders https:// almost unusable. This happens despite session resumption using session IDs is offered by the device. When accessing the device with Chrome or Edge there's only one handshake and all the following TLS sessions are resumed with the ID of the first handshake. In Firefox security.ssl.disable_session_identifiers is set to false.
Is it intended behaviour that Firefox ignores session IDs for TLS1.2?
Used Firefox version: 142.0 (64-Bit) Windows 11
Thanks in advance.
Johannes
I've finished setting up the S/MIME encryption in Thunderbird, and imported all the certificates needed. When people with the certificates emailed me, I could receive and… (read more)
I've finished setting up the S/MIME encryption in Thunderbird, and imported all the certificates needed. When people with the certificates emailed me, I could receive and read all the emails. However, when I replied to the same people, I got the error message saying 'End-to-end encryption requires resolving cerficiate issues'. My colleagues imported the same certificates without any issues. Do you have any suggestions for me to solve the issue? Thank you very much!
I need help with fixing certs I beleive were changed by an application. I found some files in an application I installed through another without fully looking at the extr… (read more)
I need help with fixing certs I beleive were changed by an application. I found some files in an application I installed through another without fully looking at the extra packaged material. One seems to be a configuration file for CA certs and the other is a list of SSL certs taken from Mozilla that were included with the intent of editing trusted user certs. I now see the evidence of a Linux device using my Firefox. To me, that is pretty clear evidence that Shell was used for some connection. So, with that, I'm assuming the certs on my device are not correct, and need to be fixed. Please let me know what I can do for this and if there is any other information you can give me on how to find out more about what to do. Unfortunately, there are also files that seem to also change user to a fake user while they gain root as guest. Any additional information including removing and replacing all certs wouldbe very helpful. Im trying to get to a certain point of restricting access and making a move to alert the correct people in Github and a couple of others with/towards some of the files before I do any kind of reset as I am not fully sure how tainted the restore might be.
I ask a person to send me a signed email so that i can send them an encrypted email. How is this process supposed to work in thunderbird? I receive a signed email, what n… (read more)
I ask a person to send me a signed email so that i can send them an encrypted email. How is this process supposed to work in thunderbird? I receive a signed email, what next? Clearly, thunderbird sees the signature but does not add the public key to the contact. This is in contradiction with [page] that states: The standard way of distributing a person's certificate is to send a digitally signed email. If you have received a signed email from your correspondent, click the email to view it. If Thunderbird considers the email's signature and the sender's certificate valid, it will automatically be imported and available when you attempt to encrypt an email to that correspondent using the S/MIME technology. If you don't have a signed email from your correspondent yet, you could ask them to send a digitally signed email to you.
Note that certificates issued by CAs may have a short validity period. Certificates are no longer usable after the validity period has expired. In that case your correspondent will have to obtain a new certificate. Once that happened they will be able to send you a new digitally signed email with a valid certificate.
Organizations that operate an LDAP server may configure their server to store S/MIME certificates. If an LDAP server is configured, Thunderbird may automatically query the LDAP server if it needs to obtain a S/MIME certificate.
To review the list of S/MIME certificates that you already have, you can use Thunderbird's Certificate Manager.
The certificate shows that it is valid, yet, clicking reply gives "key issues" which shows no key available. Similarly, if I sign an email with pgp key and send it, thunderbird sees that it is signed but tells me that i need to obtain public pgp key. So it seems that signatures and encryption are completely unusable.
I have read the support page https://support.mozilla.org/en-US/kb/configure-dns-over-https-protection-... but under my Settings -> Privacy & Security section there… (read more)
I have read the support page https://support.mozilla.org/en-US/kb/configure-dns-over-https-protection-... but under my Settings -> Privacy & Security section there is no "DNS over HTTPS" option. I have Firefox for Android version : 142.0.1 (Build #2016110943), 179e4da8d58fdece16dcbf164c80199917a5946e GV: 142.0.1-20250827004350 AS: 142.0.1 OS: Android 15 How can I get that option enabled?
Hello. I have added a new account to Thunderbird, and it is not syncing to show new messages. I am getting a pop-up from Tbird saying "The certificate for mail.newcreat… (read more)
Hello.
I have added a new account to Thunderbird, and it is not syncing to show new messages. I am getting a pop-up from Tbird saying "The certificate for mail.newcreationloughborough.uk is not valid for that server ..." etc. I have gone through the procedure titled 'Troubleshooting email client warnings about invalid server certificates' to add Norton's certificate to my email app (as directed by the 'resolve' link in the 'Resolve email sync issues caused by certificate warnings' from the Norton EE Cyber Security add-on), and it tells me that the certificate is already installed.
What can I do next to get it to sync?
I'm trying to send encrypted email to a recipient who I have a certificate for, but Thunderbird states: End-to-end encryption requires resolving certificate issues for ..… (read more)
I'm trying to send encrypted email to a recipient who I have a certificate for, but Thunderbird states:
End-to-end encryption requires resolving certificate issues for ....
That's rather unhelpful - what issues exactly? I've imported the CA certs into the system and they are shown in TB. openssl verify on the cert returns OK. I'm at a loss as to what might be the issue.
DNS for HTTPS was added in Oct-2025 for android but was removed for years from Android. Why was DNS over HTTPS removed from Android and only now returned ?
There should be an option in Firefox (Android version) to configure DNS settings as we can do in its Desktop application.
Warning: Potential Security Risk Ahead Firefox detected an issue and did not continue to dinajpureducationboard.gov.bd. The website is either misconfigured or your comput… (read more)
Warning: Potential Security Risk Ahead
Firefox detected an issue and did not continue to dinajpureducationboard.gov.bd. The website is either misconfigured or your computer clock is set to the wrong time.
It’s likely the website’s certificate is expired, which prevents Firefox from connecting securely. If you visit this site, attackers could try to steal information like your passwords, emails, or credit card details.
What can you do about it?
The issue is most likely with the website, and there is nothing you can do to resolve it. You can notify the website’s administrator about the problem.
Secure Connection Failed An error occurred during a connection to www.mofa.gov.sa. Cannot communicate securely with peer: no common encryption algorithm(s). Error code: S… (read more)
Secure Connection Failed
An error occurred during a connection to www.mofa.gov.sa. Cannot communicate securely with peer: no common encryption algorithm(s).
Error code: SSL_ERROR_NO_CYPHER_OVERLAP
The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the website owners to inform them of this problem.
Learn more…
Add Security Exception? I can't send any outgoing email messages. I now get a warning alert after hitting Send entitled "Add Security Exception". It says further, "Yo… (read more)
Add Security Exception? I can't send any outgoing email messages. I now get a warning alert after hitting Send entitled "Add Security Exception". It says further, "You are about to override how Thunderbird identifies this site." And, "Legitimate banks, stores and other public sites will not ask you to do this." My email provider is Earthlink and the alert identifies the server location as, "smtpauth.earthlink.net:587" and says, "This site attempts to identify itself with invalid information. Unknown Identity. The certificate is not trusted because it hasn't been verified as issued by a trusted authority using a secure signature."
That only available options are, "Confirm Security Exception" and "Cancel". Selection of either option brings up the same next alert, "Send Message Error", "Sending of the message failed. Peer's Certificate issuer isn't recognized. The configuration related to smtpauth.earthlink.net must be corrected."
I didn't intentionally change any settings or receive any notification from Earthlink to that effect, so I don't know why any of these protocols would have changed. I can view the smtpauth.earthlink.net certificate but I don't know how to copy it or attach it for diagnostic purposes. Can anyone provide insight regarding what is going on here and how to resolve it? Any solutions will be greatest appreciated.
Hello, I just did a full windows defender scan and it turns out Trojan:Script/Wacatac.H!ml popped up when it was done and it said the files affected were: containerfile: … (read more)
Hello,
I just did a full windows defender scan and it turns out Trojan:Script/Wacatac.H!ml popped up when it was done and it said the files affected were:
containerfile: C:\Users\User\AppData\Local\Mozilla\Firefox\Profiles\.default-release\cache2\entries\InsertHashHere
file: C:\Users\User\AppData\Local\Mozilla\Firefox\Profiles\.default-release\cache2\entries\InsertHashHere->(GZip)
I removed the hashes or whatever they were behind the entries, I was wondering if this was a false positive? I didn't notice any slowed down or hacked accounts, also windows defender quarantined it. I've also reinstalled Firefox and deleted all folders associated with Mozilla in AppData.
When someone sends me a msg, it displays along with the HTTP equivalent? Trying to figure out what setting is out of Wack such that I ses the HTTPS display of the messag… (read more)
When someone sends me a msg, it displays along with the HTTP equivalent? Trying to figure out what setting is out of Wack such that I ses the HTTPS display of the message? Thanks
I've encountered an issue specifically with OpenPGP encrypted emails in the latest version of Thunderbird, 140.0.1. When I receive an email that is encrypted with OpenPGP… (read more)
I've encountered an issue specifically with OpenPGP encrypted emails in the latest version of Thunderbird, 140.0.1.
When I receive an email that is encrypted with OpenPGP, the notification bar that allows me to "Load Remote Content" does not appear. This behavior is exclusive to encrypted emails; the option shows up normally for all other, non-encrypted messages.
As a troubleshooting step, I tried to enable the "Allow remote content in messages" option. However, this setting does not seem to affect the encrypted emails at all, and their remote content remains blocked and hidden.
So, I'd like to know if this is an intentional security policy in Thunderbird, or if it's a bug. Is there any way to solve it?
I am using an email server that currently is using certificates that have expired. That problem is being worked on. In the meantime, whenever I access the server to open … (read more)
I am using an email server that currently is using certificates that have expired. That problem is being worked on. In the meantime, whenever I access the server to open a folder, I get a pop-up notification telling me that the certificate has expired. I go ahead and confirm the security exception and check the box to permanently store the exception. Trouble is this ISN'T being persisted, when I open a different folder I have to go through this process again in order to access my emails in that folder.
Me thinks you got a bug in your software Kemosabe!
Hello, My SMTP server uses Let's Encrypt certificate. The website with the same domain has no certificate. Thunderbird refuses to connect to my SMTP server. Test connecti… (read more)
Hello, My SMTP server uses Let's Encrypt certificate. The website with the same domain has no certificate. Thunderbird refuses to connect to my SMTP server. Test connection to the server (STARTTLS) in account settings sais "The secure connection to the server failed" (or similar. I see bg localization). Another server with Let's Encrypt certificate. Test pases. Clicking View certificate shows webserver cert (from DigiCert Inc).
I can't send emails! :)
Regards! Valentin
I have 2 emails provided by my ISP (knology), I have received no emails since 7:30 on 12/5, the are on the webmail site. The other 2 emails are gmail accounts they are wo… (read more)
I have 2 emails provided by my ISP (knology), I have received no emails since 7:30 on 12/5, the are on the webmail site. The other 2 emails are gmail accounts they are working fine. I am getting a message, "The certificate for imap.knology.net is not valid for that server. Someone could be impersonating the server, you should not continue."
The fact that the gmails work and knology does not work is a clue but I don't know what it means.
I have contacted my ISP and after 45 minutes they gave up and said they will escalate and get back to me,
with in a couple days! it was on a Saturday.
Thank you, Mike
Hi All. New to Thunderbird but liking what I see. Am trying to install a new certificate but keep seeing the same error message when I attempt to send an email: Sending o… (read more)
Hi All. New to Thunderbird but liking what I see. Am trying to install a new certificate but keep seeing the same error message when I attempt to send an email:
Sending of the message failed. You specified that this message should be digitally signed, but the application either failed to find the signing certificate specified in your Mail & Newsgroup Account Settings, or the certificate has expired.
So here is what we know:
The certificate seems to work (I've sent test emails to a couple of test email accounts) when I use it in Outlook safe mode. Can't get it to work in normal Outlook mode because of add-ins, hence my switch to Thunderbird. They seem to appear fine in the S/MIME section for digital signing and encryption and I can even see the certificate when I go into Manage S/MIME Certificates.
Has anyone come across this before / got any ideas about how to resolve this? Thanks!!