All Products Support Forum

Hello I'm referencing the topic where TLS 1.0 and 1.1 support was removed but rolled back to accommodate some government agencies / sites and support for COVID-19 data

https://support.mozilla.org/en-US/questions/1290040#:~:text=Mozilla%20and%20other%20browser%20makers,and%20performance%20of%20Internet%20connections.

Quoted answer "Right, support for TLS 1.0 and TLS 1.1 has been removed few months ago, but we reverted the change for an undetermined amount of time to better enable access to critical government sites sharing COVID19 information."

Since it was referenced as "undermined amount of time", is there anything currently on your roadmap/release schedule in regards to removing support again? I have some cutover decisions I need to make and knowing if ESR for example will remove this support in 2 months may effect the direction of those. If you have anything to share, i'd really appreciate it.

Regards,

-Chad

Hi,

I used to use Thunderbird to access Gmail, Yahoo mail and normal email account (all POP3).

I have updated (not reinstall) Thunderbird to the latest version since Gmail disabled non secure apps access.

I have changed the Authentication to OAuth by follow the instruction from your page, but the system keep asking me to login (I have grant access in Gmail).

This happens not only Gmail as well as my Yahoo mail and normal POP3 account. I am sure the password is correct and still cannot get my emails from all of my accounts.

I also notice the token/password has not been saved to the system in Saved Password session. ( I have tried to run as administrator but still doesn't work.)

What have I missed? Can still using POP3 method to get email if problem solved?

My current system is Win7 with Thunderbird 32bit installed.

Thanks!!

I received the following from my e-mail provider, and as a total dumbo about this, want to ask if I need to do anything about this in Thunderbird (Linux). As far as I can see, my e-mail account in Thunderbird is set to POP3, encrypted using SSL/TLs, normal password - can anyone tell me if this is OK - Thanks.

Quote: "We are contacting you because one or more of your devices or programs uses the TLS 1.0 and/or TLS 1.1 encryption protocols to connect to our mail.com email servers, or is using an unencrypted connection. This involves either access via SMTP (sending emails) or retrieval via POP3/IMAP (receiving emails).

Unfortunately, the TLS 1.0 and TLS 1.1 encryption protocols are outdated and no longer meet current security standards. To protect your email communications, soon we will no longer allow access to our mail.com servers with these outdated protocols. Unencrypted access will also no longer be possible.

After the protocols have been deactivated, the transfer of emails between your affected device or program and our mail.com servers will no longer work; i.e. no emails will be transmitted to or from your mail.com email account using TLS 1.0 and TLS 1.1. Furthermore, unencrypted SMTP/IMAP/POP3 connections will no longer function. In other words, as of Oct. 5, 2022, it will only be possible to connect if TLS 1.2 or TLS 1.3 encryption is in place." Unquote

Hi all :)

From a fresh Linux Debian Bullseye I try to connect to a local machine with Firefox (v97 64-bits) by its hostname (avahi server with default domain "local") with the port 6180 bound to a remote web service port (61 is the distant machine IP and 80 is the forwarded port).

When I want to open this URL : http://bionic.local:6180/ FF displays "We can't find this site ... Unable to connect to server at bionic.local ... check your network connection and firewall"

BUT ping bionic.local works perfectly and resolve the good IP address from the Chromium navigator the same URL works without a problem, I can open the distant web site.

This workaround works : add a static resolution in the /etc/hosts file : 192.168.0.71 bionic bionic.local => so FF works in the expected way for now ! But as I said this a workaround and a bad solution.

I supposed too the port was blocked because I accessed an unusual port. So I tried this without success.

How the hell make that FF v97 allows me to use an unusual port ? Or is it bound to the domain "local" which is no more accepted by FF ?

Thank you in advance for your help. With adelphity, lnj

How to do

I had a personal certificate installed in Firefox and it was working well. It expired, so I got a new one from the same provider. Both appear in Firefox under "Privacy & Security" -> Certificates -> View Certificates... The previous one is not valid any more, and every time I try to access some page with a certificate, it uses the old one. So I tried to delete the old one. Nothing has worked so far. Doing the straightforward way of selecting it in the Certificate Manager and deleting it makes the certificate disappear from the manager menu, but if I enter the certificate manager again, it is there again. I tried to delete both certificates, same issue, both reaper in the manager. I tried to delete them, close firefox, delete cert9.db, cert8.db and key4.db and nothing. Only thing left is delete my current firefox profile and start again... Any other idea or something that I might delete before to solve this?

Outgoing email includes the user-agent header. I would like to disable or modify the string for better security.

User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.8.0

Thanks...

I asked this question some time back here: https://support.mozilla.org/en-US/questions/1362859 I'm asking again to reframe the question. The problem is - if my experience is a guide to the rest of the world - VTT files (which are used to caption HTML video) are no longer read/loaded by Firefox when it is viewing the HTML file locally (i.e. file://). On the web they are loaded as expected. Presumably there's a security setting somewhere in Firefox that now refuses to load the VTTs locally. Maybe under Help > More troubleshooting information there is a setting to change to fix that?

Hello,

I am using the latest stable release of Thunderbird client on Windows 11 and just today it's been asking me multiple times for a password to my Outlook account. I have kept adding a one time app password through the official Microsoft website under account management but it's been asking a few times that it needs a password.

Do you know if there's been any outages to the Microsoft servers or what this issue could be related to? Is there a way I can send any logs directly to you that might help find the issue?

Thank you for your time.

Hello, Microsoft Defender did a scan tonight and apparently detected a trojan script, located in the folders for Firefox extensions for both profiles I use on my computer

Trojan description: Trojan:Script/Wacatac.B!ml

Files: C:\Users\[user]\AppData\Roaming\Mozilla\Firefox\Profiles\[default profile]\extensions\langpack-fr@firefox.mozilla.org.xpi C:\Users\[user]\AppData\Roaming\Mozilla\Firefox\Profiles\[second profile]\extensions\langpack-fr@firefox.mozilla.org.xpi

This scan happened at 9pm, and a previous scan at 6pm didn't show anything. When it detected the script, MS Defender contained it and apparently deleted it when it asked me to restart the computer, I then did a full offline scan and nothing else showed up, same with a full scan with the free version of Malwarebytes. I didn't do anything unusual between 6pm and 9pm, so I'd like to know if there's a way to determine whether that script was an actual threat (instead of a false alarm)? If so, any way to know how long it has been on my computer? Any further risks to take into consideration? Other steps to follow? Thanks for the help

I am an admin of some servers, i modify the proxy settings of firefox in a GPO, and it works, but now ont thing is that users can modify the settings of "No proxy for" in Connection Settings, then add the urls, then users can access to any web site which they want to, is there a method to disable this? thanks.

Noticed geo.provider.network.url setting in about:config no longer works in firefox 102.0 ubuntu. I use it consistently so it was easy to notice that it no longer had any effect after updating.

tested both on https://maps.google.com and https://browserleaks.com/geo

Is it possible to revert to an older version without losing my data?

I have noted from a web search that the subject of Javascript in Firefox (Android) has caused issues for some users of this browser.

I understand that JavaScript is now enabled by default in the standard version of Firefox (Android). It appears that once upon a time there was a config setting that could be tweaked to switch JavaScript on or off, but that setting may no longer work. Additionally, I also understand there are add-ons for the Android version of Firefox that can, amongst other things, apparently switch JavaScript on or off.

People here might be surprised to learn that the minimalist Firefox Focus (Android) browser already has a built-in, easily accessible, switch to turn JavaScript on or off:

Settings > Privacy & Security > Web Content > Block JavaScript

So, the point I would like to raise with Mozilla (but it seems to be impossible to contact them directly) is, if it is available in Firefox Focus (Android), why the heck is this switch not available in the mainstream, standard version of Firefox (Android)? It makes absolutely no sense not to have it, surely?

I would suggest that a good place to include a JavaScript switch would be in the 'Site permissions' section of Firefox (Android) settings. It is merely a suggestion as, for example, within the rather useful competitor Vivaldi (Android) browser there is such a switch located here:

Settings > WEB PAGES > Site settings > JavaScript

As for why there should be a JavaScript switch within Firefox (Android), that question is largely irrelevant. Mozilla have already seen a need to include it in Firefox Focus (Android), so what possible good reason could there be for not including it in Firefox (Android)? It mystifies me, and it's omission is an inconvenience too.

Does anyone here have a sensible answer to this question?

Scroll down until you find "PERMISSIONS" and find for "Camera". Click on "Settings" that is parallel to "Camera". Now, select/type all websites, that you want to give permission/access to your camera.

Never used a webcam before, but i did that... the site is there, it says allow... i'm on the website now, says webcam not found... am i forgetting something? do i even have one? i'm at the library...

Tim

Firefox is suggesting usernames on multiple websites that I access regularly. However, I have the saved logins feature turned off in Firefox.

When I access Settings > Privacy & Security > Logins and Passwords - it shows all of these options turned off.

When I access Settings > Privacy & Security > Logins and Passwords > Saved Logins... - it indicates No Logins Found / No Synced Logins found.

I do have Firefox Sync turned on to sync between devices, but since it indicates "No Synced Logins" it doesn't appear this is coming from another device. I have checked multiple devices and found they all show "No Synced Logins"

Only happening in Firefox. I am not getting these suggested logins in Edge or Chrome.

Happening across all my Windows 10 and 11 devices that have Firefox sync enabled. 2 x Windows 11 Pro 22H2 (build 22621.819) 1 x Windows 10 Pro 22H2 (build 19045.2364)

Firefox 108.0 on all Windows devices, but it started before updating to 108.

I have not yet tried resetting Firefox - hoping to use that as a last resort.

Any suggestions on where else to look or what I should try?

Hello!

I always use private browsing so I thought that my history was totally not being saved, but discovered recently that when I started to type within the search field, that many of my past searches were listed in the search field with the type highlighted in purple. I had to manually go in and delete all of these past searches. I don't want any search history to be saved. Is there a setting in preferences that I'm somehow missing? Why is Firefox saving these past searches if I have it set to Always Use Private Browsing?

Thank you!

I don't have the option to see or edit my saved credit cards in firefox's settings, autofill still works but I can't make any changes to my cards. I went into about:config and made sure both of the below setting are set to true and they were and it's still not working, there are no settings to change the autofill

extensions.formautofill.creditCards.enabled extensions.formautofill.creditCards.available

Hello, I can't access the home router. 192.168.1.1 results in "Secure Connection Failed" and nothing can be done. How can I solve the problem?

Please answer me at [email]@yahoo.com

Best regards, Ioana Udrea

I've saved and can use the log-in details for a particular site, but they doesn't show up in the password list, so I cannot edit/delete them. Whilst it may not be relevant and may confuse the issue more, the reason I want to delete log-in + password is because I have to create a new account every 2-3 months, which I then save. So when loading the home page, the current and all previously saved log-ins get listed. I've tried to manually delete one when on the home page, but unlike keystroke searches which do get deleted, this one remains in the list. I suppose I could clear everything and save all the log-in details for each site again, but why are the log-ins for one particular site not showing up ?

Thanks