All Products Support Forum

Where is the ability to save credit card information? As per this moz article its definitely not under privacy&security -> forms autofill, in fact there is just logins & passwords nothing about credit card.

I also went into about:config to confirm these attributes are set to true. extensions.formautofill.creditCards.enabled extensions.formautofill.creditCards.available

version 90.0.2.

Hello I'm referencing the topic where TLS 1.0 and 1.1 support was removed but rolled back to accommodate some government agencies / sites and support for COVID-19 data

https://support.mozilla.org/en-US/questions/1290040#:~:text=Mozilla%20and%20other%20browser%20makers,and%20performance%20of%20Internet%20connections.

Quoted answer "Right, support for TLS 1.0 and TLS 1.1 has been removed few months ago, but we reverted the change for an undetermined amount of time to better enable access to critical government sites sharing COVID19 information."

Since it was referenced as "undermined amount of time", is there anything currently on your roadmap/release schedule in regards to removing support again? I have some cutover decisions I need to make and knowing if ESR for example will remove this support in 2 months may effect the direction of those. If you have anything to share, i'd really appreciate it.

Regards,

-Chad

Hello, I received a Yubikey 5 and all is working fine using GPG with it, except integration with Thunderbird on Windows.

I followed this guide: https://wiki.mozilla.org/Thunderbird:OpenPGP:Smartcards including 64 windows section

I was able to successfully send mail to myself, but then thunderbird failed at decrypting this message: Thunderbird is indicating that key is not available and I see no prompt from gpg-agent. Key is correctly declared as GPG external.

If I try to decrypt tis email by storing it on file and using gpg in command line, it works fine: agent is asking for Yubikey PIN and gpg is decrypting the message. But this is an awful workaround, not user friendly at all.

I also did sanity check by sending to myself a message encrypted with a key generated by Thunderbird: all is working fine, the message is decrypted within Thunderbird.

=> How do you make Thunderbird decrypt message encrypted with key stored in Yubikey? How do you make the gpg-agent called by thunderbird?

When I surf Youtube, Google, Facebook and anything on Firefox this following error happen every time. Please help me.

Firefox detected a potential security threat and did not continue to www.youtube.com because this website requires a secure connection.

What can you do about it?

www.youtube.com has a security policy called HTTP Strict Transport Security (HSTS), which means that Firefox can only connect to it securely. You can’t add an exception to visit this site.

The issue is most likely with the website, and there is nothing you can do to resolve it.

If you are on a corporate network or using anti-virus software, you can reach out to the support teams for assistance. You can also notify the website’s administrator about the problem.

defaultPref("privacy.window.maxInnerWidth", 1000); defaultPref("privacy.window.maxInnerHeight", 1000);

Instead of 1000 what is the default value Firefox uses?

Hi!

I want to dump/debug http traffic with mitm proxy: https://github.com/ganskef/LittleProxy-mitm . This proxy generates it's own root certificate which i manually imported to Firefox from about:preferences#privacy > View Certificates > Authorities > Import. I verified that cert shows up after importing it. But I get errors despite of that:

Secure Connection Failed

An error occurred during a connection to www.youtube.com. Peer’s certificate has an invalid signature.

Error code: SEC_ERROR_BAD_SIGNATURE

Is there a way to bypass it?

Since yesterday I am getting this "Did Not Connect: Potential Security Issue" error on every sites that I have tried to visit. Even on well known secured sites like https://drive.google.com is inaccessible while my Chrome and Edge is working fine. Any solution?

I would like to permanently turn off enhanced tracking protection for https://www.powerlanguage.co.uk/wordle/ so that I can track my stats. I can turn this off for a session via the shield icon but I am unable to find a way to save this setting. Manage Exceptions in Enhanced Tracking Protection in Settings does not allow me to add any site as an exception.

When I check the connection settings on a website (lock icon left to the address bar) and go to more information I can see how many times I have visited this website. I already deleted my entire history and all the data but I still can see how many times I have visited different websites in the past. Where is this stored and how to delete this information?

The problem is it will show suggestions in the address bar. There is a setting to to remove such suggestions but I only want to remove some results. Why doesn't this part of the "history" gets deleted?

I am using FF 97.0.1 Win 10

Hi all, I should remove the notification that always appears on firefox opening.

"this file contains a virus or malware"

I'm sure I have no more this file on my system (even scanned by my antivirus) but this message still appears every time

how can I clean up?

find attached the screenshot

many thanks!

I've been using an older version of Thunderbird for years without issue to sign into my POP3 optimum online mail server. I recently "updated" so I could get the "Remove Duplicate Emails" plugin working.

I now have the issue I've seen mentioned here numerous times: I can no longer save my password. I have to manually input it every time I open Thunderbird. If I enter my password and sign in, my mail works fine.

If I check the box to remember my password, it no longer connects to the server. Instead it attempts to connect for a few minutes, then gives me a "mail server timed out" error.

My saved passwords list is completely blank. There is only one profile folder in the Thunderbird profiles directory.

I have tried deleting/renaming the following files in the profile folder: - key3.db (does not reappear after new version, probably legacy) - key4.db - cert9.db - signons.sqlite (has also not reappeared after removing)

I have seen it also advised to delete/rename the following files, but they do not exist in my local profile folder: - pkcs11.txt - logins.json

I am not using CC cleaner or any other programs to scrub passwords.

When I enter my SMS code as part of SSL/TLS security OAuth2 authentication method (see my account5 below) I get the following: __________________________________________________ Need admin approval Thunderbird www.thunderbird.net

Thunderbird needs permission to access resources in your organisation that only an admin can grant. Please ask an admin to grant permission to this app before you can use it. Have an admin account? Sign in with that account Return to the application without granting consent __________________________________________________

I don't know what app is being refered to in the above message but I am the administrator of my account and have given full permissions for Thunderbird to cross Windows Firewall etc. etc.

Since this problem started this morning I get the busy rotating symbol when accessing my account5 mail directories and their contents do not appear to be updating.

Some of the copious troubleshooting information provided from Thunderbire Help follows: ____________________________________________________

 Application Basics

   Name: Thunderbird
   Version: 91.4.1
   Build ID: 20211216022855
   Distribution ID:

   Update Channel: release
   User Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:91.0) Gecko/20100101 Thunderbird/91.4.1
   OS: Windows_NT 6.1 7601

   Launcher Process: Enabled
   Multiprocess Windows: 0/0
   Fission Windows: 0/0
             Disabled by default
   Remote Processes: 4
   Enterprise Policies: Inactive
   Google Location Service Key: Missing
   Google Safebrowsing Key: Missing
   Mozilla Location Service Key: Missing
   Safe Mode: false

 Mail and News Accounts
   account1:
     INCOMING: account1, , (imap) outlook.office365.com:993, SSL, 3
     OUTGOING: , smtp.office365.com:587, 2, 3, true

   account2:
     INCOMING: account2, , (none) Local Folders, 0, 3

   account5:
     INCOMING: account5, , (imap) outlook.office365.com:993, SSL, 10
     OUTGOING: , smtp.office365.com:587, 2, 10, true

 Crash Reports for the Last 3 Days

 Remote Processes

   Type: Count

     Web Content: 3 / 8
     Extension: 1

 Security Software

   Type: Name

     Antivirus:
     Antispyware:
     Firewall:

 Environment Variables

   MOZ_CRASHREPORTER_DATA_DIRECTORY: C:\Users\re\AppData\Roaming\Thunderbird\Crash Reports
   MOZ_CRASHREPORTER_EVENTS_DIRECTORY: C:\Users\re\AppData\Roaming\Thunderbird\Profiles\fwghi177.IETimport\crashes\events
   MOZ_CRASHREPORTER_PING_DIRECTORY: C:\Users\re\AppData\Roaming\Thunderbird\Pending Pings
   MOZ_CRASHREPORTER_RESTART_ARG_0: C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
   MOZ_CRASHREPORTER_STRINGS_OVERRIDE: C:\Program Files (x86)\Mozilla Thunderbird\crashreporter-override.ini
   MOZ_LAUNCHER_PROCESS: 1

 Important Modified Preferences

   accessibility.typeaheadfind.flashBar: 0
   browser.cache.disk.amount_written: 849303
   browser.cache.disk.capacity: 1048576
   browser.cache.disk.filesystem_reported: 1
   browser.search.region: AU
   extensions.lastAppVersion: 91.4.1
   font.internaluseonly.changed: true
   font.name.monospace.el: Consolas
   font.name.monospace.x-cyrillic: Consolas
   font.name.monospace.x-unicode: Consolas
   font.name.monospace.x-western: Consolas
   font.name.sans-serif.el: Calibri
   font.name.sans-serif.x-cyrillic: Calibri
   font.name.sans-serif.x-unicode: Calibri
   font.name.sans-serif.x-western: Times New Roman
   font.name.serif.el: Cambria
   font.name.serif.x-cyrillic: Cambria
   font.name.serif.x-unicode: Cambria
   font.name.serif.x-western: Cambria
   font.size.monospace.el: 14
   font.size.monospace.x-cyrillic: 14
   font.size.monospace.x-unicode: 14
   font.size.monospace.x-western: 14
   font.size.variable.el: 17
   font.size.variable.x-cyrillic: 17
   font.size.variable.x-unicode: 17
   gfx.crash-guard.d3d11layers.appVersion: 91.4.1
   gfx.crash-guard.d3d11layers.deviceID: 0x0659
   gfx.crash-guard.d3d11layers.driverVersion: 8.17.12.7628
   gfx.crash-guard.d3d11layers.feature-d2d: true
   gfx.crash-guard.d3d11layers.feature-d3d11: true
   gfx.crash-guard.d3d9video.appVersion: 78.14.0
   gfx.crash-guard.d3d9video.deviceID: 0x0659
   gfx.crash-guard.d3d9video.driverVersion: 8.17.12.7628
   gfx.crash-guard.status.d3d11layers: 2
   gfx.crash-guard.status.d3d9video: 2
   gfx.crash-guard.status.wmfvpxvideo: 2
   gfx.crash-guard.wmfvpxvideo.appVersion: 78.14.0
   gfx.crash-guard.wmfvpxvideo.deviceID: 0x0659
   gfx.crash-guard.wmfvpxvideo.driverVersion: 8.17.12.7628
   idle.lastDailyNotification: 1641365785
   layers.mlgpu.sanity-test-failed: false
   media.gmp.storage.version.observed: 1
   media.hardware-video-decoding.failed: false
   network.predictor.cleaned-up: true
   network.trr.blocklist_cleanup_done: true
   places.database.lastMaintenance: 1641185870
   places.history.expiration.transient_current_max_pages: 112348
   privacy.purge_trackers.date_in_cookie_database: 0
   security.disable_button.openCertManager: false
   security.disable_button.openDeviceManager: false
   security.remote_settings.crlite_filters.checked: 1635390021
   security.remote_settings.intermediates.checked: 1635390021
   security.sandbox.content.tempDirSuffix: {bfda8a1a-634b-4d7e-8fe6-b8b6bfbd896c}
   security.sandbox.plugin.tempDirSuffix: {65f21b5f-d21c-40f9-9190-e19dcdf55ea8}
   signon.importedFromSqlite: true
   storage.vacuum.last.index: 1
   storage.vacuum.last.places.sqlite: 1641272744

 Important Locked Preferences

 fission.autostart.session: false

 Places Database

 Accessibility

   Activated: false
   Prevent Accessibility: 0
   Accessible Handler Used: true
   Accessibility Instantiator:

 Library Versions

     Expected minimum version
     Version in use

     NSPR
     4.32
     4.32

     NSS
     3.68.2
     3.68.2

     NSSSMIME
     3.68.2
     3.68.2

     NSSSSL
     3.68.2
     3.68.2

     NSSUTIL
     3.68.2
     3.68.2

 Sandbox

   Content Process Sandbox Level: 0
   Effective Content Process Sandbox Level: 1
   Win32k Lockdown State for Content Process: Win32k Lockdown disabled -- Operating system not supported

 Startup Cache

   Disk Cache Path: C:\Users\re\AppData\Local\Thunderbird\Profiles\fwghi177.IETimport\startupCache\startupCache.8.little
   Ignore Disk Cache: false
   Found Disk Cache on Init: false
   Wrote to Disk Cache: true

 Internationalisation & Localisation

     Application Settings
     Requested Locales: ["en-GB","fr"]
     Available Locales: ["en-GB","en-US","fr"]
     App Locales: ["en-GB","en-US","fr"]
     Regional Preferences: ["en-AU"]
     Default Locale: "en-GB"

     Operating System
     System Locales: ["en-US"]
     Regional Preferences: ["en-AU"]

 Remote Debugging (Chromium Protocol)

   Accepting Connections: false
   URL:

I made a few changes to about:config. How can i save the about:config settings for a new Firefox installation? My bet is this is possible either with distribution-policies.json or with a HTML. I used Kali Linux, this operating system comes with a pre-configured Firefox installation. For example it uses a permanent darkmode with duckduckgo even while cookies are denied. It also comes with customs about:config settings like disabled telemetry.

Those are all the setting i changed and i would like to find out a permanent way to import them to Firefox, right after installaing the Browser. It's time consuming changing each setting manually after each install...

toolkit.telemetry.enabled false browser.urlbar.placeholderName DuckDuckGo app.update.enabled false geo.enable false extensions.pocket.enabled false pref.privacy.disable_button.view_passwords false network.protocol-handler.external.mailto false datareporting.policy.dataSubmissionEnabled false datareporting.healthreport.uploadEnabled false browser.newtabpage.activity-stream.feeds.telemetry false browser.newtabpage.activity-stream.telemetry false browser.newtabpage.activity-stream.telemetry.structuredIngestion.endpoint leer browser.newtabpage.activity-stream.telemetry.ut.events false browser.ping-centre.telemetry false toolkit.telemetry.archive.enabled false toolkit.telemetry.bhrPing.enabled false toolkit.telemetry.firstShutdownPing.enabled false toolkit.telemetry.hybridContent.enabled false toolkit.telemetry.newProfilePing.enabled false toolkit.telemetry.reportingpolicy.firstRun false toolkit.telemetry.server leer toolkit.telemetry.server_owner leer toolkit.telemetry.shutdownPingSender.enabled false toolkit.telemetry.shutdownPingSender.enabledFirstSession false toolkit.telemetry.updatePing.enabled false toolkit.telemetry.unified false toolkit.telemetry.prompted false toolkit.telemetry.rejected true toolkit.telemetry.pioneer-new-studies-available false experiments.activeExperiment false experiments.enabled false experiments.supported false network.allow-experiments false media.peerconnection.enabled false (WebRTC leaks)

If you know any more settings that shuld be disabled, please let me know!

It would be great if Mozilla Support would stop archiving the old threads on the OAuth2 issues.

Every 2 years or so something happens and I have to reconfigure Thunderbird to accept my gmail account. Every single time, there are problems with OAuth2.

The credentials pop-up window will not allow me to enter a password. It just keeps refreshing to the login prompt - 'Email address or Phone'. I type in the e-mail address; it refreshes to 'Email address or Phone'.

I have checked TB updates - all updated. I deleted the account, deleted all saved e-mail logins and passwords in Thunderbird, and in my browser, and tried to add the account again to Thunderbird. The credentials window won't let me get to the password fill in. And even if get there, am I still going to have problems with OAuth2?

Hi.

When logged in to google (e.g., gmail) in one firefox tab, I am them auto-logged in to that same google account in any new tab or window I open. Is there a way to stop this?

I would like to be able to have one tab logged in to a google product (e.g., gmail, google calendar, youtube), but retain a "blank slate" when I open new tabs or windows, so that I can browse anonymously or log in to multiple different accounts (google or otherwise).

I have privacy badger and HTTPS everywhere installed in firefox, have set the browser to block all third party cookies, and to never remember history (high security settings across the board) . I tried enabling Multi-Account Containers, but I'm not sure how to use it and also suspect it is a more complicated functionality than I actually need.

I would imagine there has to be a way to "break" the connection between multiple open tabs or windows. Thanks!

Using Firefox 68.12.0ESR. I know 78 is available, I just haven't had the time to test it yet. I delete cookies when I exit Firefox. I want to keep some for sites that I trust, such as this site. I've added exceptions to Allow these trusted sites as documented on a thread somewhere else, but it doesn't work. All cookies are deleted.

Is it possible to keep cookies only for a select group of sites. eg. support.mozilla.com, tomshardware.com, mydigitallife.net, speedtest.net and so on.

Thank you.

When I choose any other option then remember history. Ebay page does not display properly. Only way to get it working is to choose remember history.

Please fix it as I just don't like my browser to remember history

This is my first post. But I have been reading and benefiting from all the expertise I have found here for many years! Thanks to all!

Trying to plan ahead for the Gmail OAUTH2 change, I upgraded to Tbird 91.9.0.

My Account Settings all transferred to the new version. I do have multi Gmail accounts, as well as other email accounts, but from other posts here, this should matter.

While I am a long term Tbird user, I am a newbie with OAUTH2. I can't seem to connect. So I am writing here for help!

My setup: - Dell notebook running W10 - internet connection strong - am using a Netgear Nighthawk Hotspot Router, which works great with

    everything else, so I really doubt that is an issue

- testing without a firewall; running McAfee - resetting Tbird account back to "Normal Password", then Gmail connects

Incoming Server set to IMAP: imap.gmail.com:993 w SSL/TLS and OAuth2 Outgoing: smtp.gmail.com:465 w SSL/TLS and OAuth2

I have been consistently testing with the same gmail account: - YES, I know my password; it works with both the Gmail web interface,

   or after going back to "Normal Password" instead of OAUTH2

- allow any Alert emails via Gmail Web Interface, repeatedly. - Ran Captcha ... many times! In case someone else reading here needs this, it is here: https://accounts.google.com/b/0/DisplayUnlockCaptcha and you must be logged into the Gmail Web Interface when running this. I have learned to take a pause after running this, for it do its thing.

If Toad-Hall is reading this, I found your list of steps here very helpful: https://support.mozilla.org/en-US/questions/1375558 Worth repeating for others who are struggling, like me.

As recommended here: https://support.mozilla.org/en-US/questions/1373706 Cookies: all cleared Remembered Passwords: all cleared

Also looked at this: https://support.mozilla.org/en-US/questions/1375702 Originally, my cookies WERE blocked. I did need to change my Web Content as recommended in this post:

   Selected: Remember web sites and links I've visited
   Selected: Accept cookies from sites
   Accept third-party cookies: Always
   Keep until : they expire
   Not selected: 'Send web sites 'Do not track'..... 

Also: In Privacy and Security -> Web content -> Exceptions, added: https://accounts.google.com set to 'Allow' and Saved Changes. Then exit Tbird, took a short pause, started Tbird again, per the advice to properly update the files.

Should I be doing BOTH of these? This post shows options: https://support.mozilla.org/en-US/kb/automatic-conversion-google-mail-accounts-oauth20 So if I Select to accept cookies, should I also set the Exception??? I have tested various combinations of these settings, but not seeing a cookie.

In Tbird, when testing to connect, I see:

"Sign in with your Google Account" Enter my account password (I see an error msg here when I typo the password, no error when entered correctly) Also, have checked "Stay Signed In" while trying to Authorize, as recommended. then click Allow on the second screen.

After a few seconds, keep seeing popup in lower right corner of screen: "Authentication failure while connecting to server imap.gmail.com" Sometimes, this msg does not popup, which seems odd to me, but it still fails: Cookies: still empty Password: still empty

I keep updating and reading and updating the setups and testing again, but no cookies for me!

I admit I have gotten off track, testing and reading posts:

Thought my problem might involve Certificates for a while, but now do not think OAUTH2 is using Certificates. Right?

Thought for a bit it might be Javascript disabled, but I am NOT seeing the popup window that shows this error, from this post: https://support.mozilla.org/en-US/questions/1373379 refers to: https://support.mozilla.org/en-US/questions/1286410 Did find my way to Config editor: https://support.mozilla.org/en-US/questions/1349136 Followed this advice: "Click the 3-bar menu icon, Preferences, and find Config. editor at the bottom of the General section. Or, type editor in the search box at the top of Preferences." Then searched for "Javascript" and found most of settings were true, like javascript.enabled is "true". Should everything that a search for javascript finds be set to true? Since I do not see the error msg, I believe this is not my problem.

Stans posted another helpful summary here: https://support.mozilla.org/en-US/questions/1375538 "After you've changed your accounts to OAuth2, delete all records of your Google Account passwords from Thunderbird's password vault (Saved Passwords). With OAuth2, your passwords are not stored by Tbird. Instead, an OAuth2 token (a long string of meaningless characters) is stored in the password field. That's what you should see after completing the OAuth2 process for each of your accounts. You have to do it twice, once for incoming and once for outgoing server. Also, you must allow cookies in Thunderbird's Preferences, otherwise it won't work."

If I am following this correctly, after testing to try and authenticate, I should see a Cookie and a Saved Password being created but they are not.

Think this is my problem!

In Gmail web interface, I am not sure of some settings:

In Manage Your Google Account -> Security:

1. Should Sign-in 2-step verification be on/off? (its off) 2. Third Party apps w access shows Tbird (think this is new, don't recall it before) 3. Allow Less Secure App: turn off (was On for normal pswd; either way fails w OAUTH2) (think I have tested all combinations of the above, with no success) I welcome suggestions on how I should set these to connect with OAUTH2.

I feel like I am getting close here, but I am stuck. Is there anything else, maybe something I have not heard about, like Captcha, that I should try?

Have I missed a setting somewhere? Suggestions???

Meadowlark13