Thunderbird Support Forum

I get a message: "This POP3 server does not seem to support encrypted passwords ..." My provider use only TLS 1. In the pas I have to set security.tls.version.min to 1. This trick doesn't work with 102.

I also try to set security.tls.version.enable-deprecated to true : no good result.

With security.tls.version.fallback-limit set to 1 : no good result.

Any idea?

Hello!

After upgrading from a very old (but perfectly working) version of Thunderbird (24.3.0 on Windows 7) to 91.8.1 (on the same Windows 7 system), Thunderbird can no longer remember my passwords.

Apart from this everything in the new version works. Emails are retrieved fine when I enter the passwords manually.

Symptoms:

• always asks me for my passwords, even when I have checked the "Use Password Manager to remember this password" checkbox.
• no stored passwords show up in "Saved Passwords ..."
• When I try to set a primary password (I did not use one so far), I get an error "Unable to change Primary Password".

What I tried after searching for solutions:

• Remove files cert*.db and key*.db from my profile. Does not make any difference.

best regards

Edwin

Several days ago TB daily started asking for my ATT(Yahoo) password. TB initially rejected my password but I did "forgot password" and added exactly the same password back since it was working on ATT(Yahoo) web mail. Now I get "Sending of password for user xxxxx@bellsouth.net did not succeed. Mail server inbound.att.net responded: [SYS/TEMP] Server error - Please try again later." TB continues to ask for my password but returns this same message. I looked up the saved passwords on TB settings, but don't recognize any of the passwords. They look like eOauth passwords, but I have never set this up. There are no listings for att inbound or outbound servers. I have searched all the Support articles but cannot find anything that fits this situation. I am thinking something is corrupted on TB and I may have to delete this account and reinstall TB. BUT, I don't want to lose all the emails I have stored on my computer. I copied the Thunderbird file and saved it in another location just in case. 1. Any ideas on how to get running again? 2. Another option might be to delete all the TB saved passwords and put them in again when requested, but will that screw up other stuff? 3. If I have to delete the account and reinstall, how do I make certain all of the emails come back? Thanks Shaw

In TB 115.1.0 (64-bit) on Windows digital signature are maked as not valid for an unknown reason. This happens at least with emails send from Outlook clients. In TB 102.14.0 (64-bit) on Windows this digital signatures were shown as valid. However, digitsal signatures of emails send from other clients (e.g. Thunderbird, Nine from 9folders) are shown as valid.

This is my first post. But I have been reading and benefiting from all the expertise I have found here for many years! Thanks to all!

Trying to plan ahead for the Gmail OAUTH2 change, I upgraded to Tbird 91.9.0.

My Account Settings all transferred to the new version. I do have multi Gmail accounts, as well as other email accounts, but from other posts here, this should matter.

While I am a long term Tbird user, I am a newbie with OAUTH2. I can't seem to connect. So I am writing here for help!

My setup: - Dell notebook running W10 - internet connection strong - am using a Netgear Nighthawk Hotspot Router, which works great with

    everything else, so I really doubt that is an issue

- testing without a firewall; running McAfee - resetting Tbird account back to "Normal Password", then Gmail connects

Incoming Server set to IMAP: imap.gmail.com:993 w SSL/TLS and OAuth2 Outgoing: smtp.gmail.com:465 w SSL/TLS and OAuth2

I have been consistently testing with the same gmail account: - YES, I know my password; it works with both the Gmail web interface,

   or after going back to "Normal Password" instead of OAUTH2

- allow any Alert emails via Gmail Web Interface, repeatedly. - Ran Captcha ... many times! In case someone else reading here needs this, it is here: https://accounts.google.com/b/0/DisplayUnlockCaptcha and you must be logged into the Gmail Web Interface when running this. I have learned to take a pause after running this, for it do its thing.

If Toad-Hall is reading this, I found your list of steps here very helpful: https://support.mozilla.org/en-US/questions/1375558 Worth repeating for others who are struggling, like me.

As recommended here: https://support.mozilla.org/en-US/questions/1373706 Cookies: all cleared Remembered Passwords: all cleared

Also looked at this: https://support.mozilla.org/en-US/questions/1375702 Originally, my cookies WERE blocked. I did need to change my Web Content as recommended in this post:

   Selected: Remember web sites and links I've visited
   Selected: Accept cookies from sites
   Accept third-party cookies: Always
   Keep until : they expire
   Not selected: 'Send web sites 'Do not track'..... 

Also: In Privacy and Security -> Web content -> Exceptions, added: https://accounts.google.com set to 'Allow' and Saved Changes. Then exit Tbird, took a short pause, started Tbird again, per the advice to properly update the files.

Should I be doing BOTH of these? This post shows options: https://support.mozilla.org/en-US/kb/automatic-conversion-google-mail-accounts-oauth20 So if I Select to accept cookies, should I also set the Exception??? I have tested various combinations of these settings, but not seeing a cookie.

In Tbird, when testing to connect, I see:

"Sign in with your Google Account" Enter my account password (I see an error msg here when I typo the password, no error when entered correctly) Also, have checked "Stay Signed In" while trying to Authorize, as recommended. then click Allow on the second screen.

After a few seconds, keep seeing popup in lower right corner of screen: "Authentication failure while connecting to server imap.gmail.com" Sometimes, this msg does not popup, which seems odd to me, but it still fails: Cookies: still empty Password: still empty

I keep updating and reading and updating the setups and testing again, but no cookies for me!

I admit I have gotten off track, testing and reading posts:

Thought my problem might involve Certificates for a while, but now do not think OAUTH2 is using Certificates. Right?

Thought for a bit it might be Javascript disabled, but I am NOT seeing the popup window that shows this error, from this post: https://support.mozilla.org/en-US/questions/1373379 refers to: https://support.mozilla.org/en-US/questions/1286410 Did find my way to Config editor: https://support.mozilla.org/en-US/questions/1349136 Followed this advice: "Click the 3-bar menu icon, Preferences, and find Config. editor at the bottom of the General section. Or, type editor in the search box at the top of Preferences." Then searched for "Javascript" and found most of settings were true, like javascript.enabled is "true". Should everything that a search for javascript finds be set to true? Since I do not see the error msg, I believe this is not my problem.

Stans posted another helpful summary here: https://support.mozilla.org/en-US/questions/1375538 "After you've changed your accounts to OAuth2, delete all records of your Google Account passwords from Thunderbird's password vault (Saved Passwords). With OAuth2, your passwords are not stored by Tbird. Instead, an OAuth2 token (a long string of meaningless characters) is stored in the password field. That's what you should see after completing the OAuth2 process for each of your accounts. You have to do it twice, once for incoming and once for outgoing server. Also, you must allow cookies in Thunderbird's Preferences, otherwise it won't work."

If I am following this correctly, after testing to try and authenticate, I should see a Cookie and a Saved Password being created but they are not.

Think this is my problem!

In Gmail web interface, I am not sure of some settings:

In Manage Your Google Account -> Security:

1. Should Sign-in 2-step verification be on/off? (its off) 2. Third Party apps w access shows Tbird (think this is new, don't recall it before) 3. Allow Less Secure App: turn off (was On for normal pswd; either way fails w OAUTH2) (think I have tested all combinations of the above, with no success) I welcome suggestions on how I should set these to connect with OAUTH2.

I feel like I am getting close here, but I am stuck. Is there anything else, maybe something I have not heard about, like Captcha, that I should try?

Have I missed a setting somewhere? Suggestions???

Meadowlark13

Received email from Telstra "From 30 January 2024, Telstra will stop allowing any emails to be sent from unauthenticated email addresses. Put simply, emails won’t be sent if your security settings aren’t configured to validate your username and password before the email is sent. From our records you are currently sending unauthenticated emails from........." "What’s next? To continue to send email, you will need to update your security settings for each device that you use to check and send emails https://www.telstra.com.au/support/email/unauthenticated-traffic-limit "

Unfortunetly this link does not give instructions for Thunderbird. Contacted Telstra support and they said to contact Thunderbird support.

Screen shot of current settings attached. Have been getting the following message when sending multiple emails - "Reference: 451-4.5.3. OB315 Unauthenticated traffic limit met."

Can someone help with this. Thanks in advance.

In Thunderbird 115 saved passwords cannot be read because the saved logins windows is far too narrow and does not slide its contents left and right. The Show Passwords is enabled, of course.

I have a bellsouth.net email account which is actually att.net hosted on yahoo.com. I'm sure that's a large part of my problem. I can't get Thunderbird to accept the account...seems to be either a credentials or server setting issue. AT&T and Yahoo support has not been able to help. And I'm all out of ideas.

Hello, I'm afraid TB stopped working after I changed my gmail password. Whenever it tries to connect to the imap server, I get the oauth login prompt, fill out the password, confirm that I want to allow TB to access my gmail account, but after that, I just get the "Authentication failure while connecting to server imap.gmail.com."

I have OAuth2 set as the authentication method, I have cleared the saved passwords, updated TB, manually deleted obsolete files in the profile folder and basically tried every advice I could find, to no avail.

All worked well before the password change (the big end-of-may less secure app business did not affect me).

Currently, I have removed all my gmail accounts from TB and am trying to add them again. One of my gmail account uses 2FA, in this case, I also tried to use the app password. The other gmail account does not use 2FA, so I just used the regular password. In either case, I get the popup asking me to allow TB to access my mails, which I provide, but end up with "Unable to log in at server" message.

Any help would be greatly appreciated.

The lady at Earthlink said that in order to support the new encryption technology something (I didn't catch what) at Thunderbird had to be 23 and above. Where do I find that information?

Last week I changed my Yahoo mail password and updated Apple mail on my devices with no problem. On my iMac, running Monterey OS 12.6.5, I use the latest version of Thunderbird for email. However, it has not accepted the new password, which I enter in the popup window requesting it. (See screenshots) I have tried going into settings/privacy and security and changing it in saved passwords and I've tried deleted saved passwords. I have also entered the secure key. Nothing works. All my mail folders are there. I would really appreciate help on how to get Thunderbird to use my new Yahoo password. Thanks.

Hi,

I need help changing the expiration date of my gpg keys (TB 102.10).

I already extended the date on the command line (gpg --edit-keys), but Thunderbird does not recognize this change.

Maybe it has its own keystore - don't know. I try to change the key from Thunderbird's key manager. Unfortunately it tells, the key has "a complex structure" and cannot be changed. Yes, the key has subkeys. But what can I do now?

Thanks

Hi, in terms of security and privacy features, what are the differences or pros & cons between Thunderbird and Tutanota Premium (the first option on the second tab here: https://tutanota.com/pricing) for business users? I'm especially interested from the point of view of a small business, but I'd appreciate any helpful details. Thanks!

Version: 102.12.0

FYI, the buttons / options that i refer to might be named slightly differently, as i'm using dutch language for my interface.

Summary The enter password dialog is not showing up when sending an email over SMTP, when the password previously was added to the password manager, but has been deleted since.

What happend

1. I've had a working account to an IMAP and SMTP server (both same subdomain, same password, diffrent ports).
2. the password was stored in the password manager.
3. the subdomain and port of the SMTP server needed to change, and i update the subdomain and port in account settings > outgoing server (SMTP) > Edit SMTP server. The new subdomain for SMTP was not known yet by the password manager.
4. on sending the next email through SMTP, i was prompted for the new password, with the "store in password manager" checkbox unchecked.
5. I entered the wrong password (LDAP instead of email) and checked "store in password manager", then continued the email send process.
6. this led to an error sending the email.
7. I checked online how to change the password and found https://smallbusiness.chron.com/reset-password-thunderbird-48064.html , which advised me to delete the password from the password manager.
8. I deleted the password, closed the password manager dialog and restarted thunderbird as per the previous link.
9. I pressed get messages without getting prompted for the SMTP server password, which is expected as the IMAP is still using the old subdomain with the stored password.
10. when re-sending the email that i have in my draft / concept folder, i was not prompted to enter the password for the new SMTP subdomain, even though i removed it from the password manager.
11. sending timed out with error about failed to send the email, because connecting to the outgoing SMTP server failed. with the added hint that perhaps the server is not available or refusing SMTP connections. However, the connection does not have a password to connect with stored, and other people are able to connect to the new SMTP subdomain and send emails.

What have i tried

• Troubleshooting Mode
• Clear startup cache
• restart thunderbird
• reboot laptop

I've checked https://support.mozilla.org/eu/questions/1245702, but this did not help my situation and can't find anything else that matches my issue.

Can you please help me with how I can either manually add the password for the subdomain (the subdomain is no longer in the password manager), or trigger the SMTP add password dialog?

Thunderbird version 102.5.0 (64-bit) Debian 11 (Bullseye) KDE Plasma 5.20.5

I am trying to insert a HTML signature to my new messages. The HTML file contains a link to the signature file.

When I try to compose the message I get this message: "Thunderbird has blocked a file from loading into this message. Unblocking the file will include it in your sent message." There is a button "Preferences". When I click it, the message says: Unblock file:///home/xxx/yyy/zzz/artwork/email_sign_20160719.png

When I click Unblock, nothing happens.

I have tried to compose manually a new email and insert this image. Menu -> Insert -> Image -> Chose file. Chose the same file.

Same error message and no result when allowing / unblocking this image.

In Settings -> Privacy -> Mail Content -> Allow remote content in messages is checked. There is no exception blocking local file content.

I have added an exception, allowing everything starting with file:/// . No result.

In config editor I have mailnews.message_display.disable_remote_image set to false.

I am out of solutions. This is far beyond a simple method to allow me to attach an image in a signature.

In addendum to the below: I am now up to TB v 121.0.1 and still have this issue of untrusted S/MIME signatures from DoD sources. As I also have a DoD email, I can send myself test messages. If I send an unencrypted message from my DoD email in reply to to an S/MIME signed message from TB, I get the behavior described below in the original post, where my DoD S/MIME signature is not valid. If I reply to the same signed TB email with an encrypted message from my DoD email, TB decrypts the message but still says my signature is not valid. However, the "invalid" message is slightly different with an additional clue - the message states that "This message includes a digital signature, but the signature is invalid. The message was signed using an encryption strength that this version of your software does not support." See snips 4 (error)+ 5 (successful decryption) below. Is it possible that the newer signature certificates from DoD use an encryption strength that cannot be decrypted by TB, yet the message encryption works? Another clue is that it appears I can send encrypted emails to some DoD recipients (but not all) even if their signature is invalid.

Original Post: I have received a signed email from a DoD sender in TB v115.5.1. The S/MIME icon states the Digital Signature is Not Valid (png below), consequently, the cert was not imported into the TB Certificate Manager. I have updated the DoD Root Certificates, and ensured that the most commonly used DoD Root certs and Email certs have trust settings that identify web sites and mail users (add'l png examples). I cannot examine the cert I received in TB, although I seem to recall I could by clicking on the icon in earlier versions of TB.

How can I: 1) Identify the certificate authorities for the invalid cert to ensure they are trusted? 2) Examine and import the certificate from the user? This is not unique to a single user, it happens with DoD emails whose certs were not already in my Certificate Manager, and the organization I commonly communicate with is changing everyone's email, so everyone is getting new certs. This prevents me from sending encrypted emails to the recipients.

I prefer to use S/MIME to digitally sign my email messages. Prior to Thunderbird 102.3.1, using S/MIME to digitally sign my messages was the default.

Now, for every single email I send, when I click "Send" I get the dialog box "OpenPGP Alert - Cannot digitally sign this message, because you haven’t yet configured end-to-end encryption for <email address>". I have to then select "S/MIME" from the encryption/signature menu.

It's a pain to have to remember to do this for every email I send.

I checked my account settings. "Do not use OpenPGP for this identity" is checked. The correct S/MIME certificate is selected.

How do I set the default signature method to be S/MIME instead of OpenPGP in this new version of Thunderbird?

I'm running Thunderbird 102.3.1 on Mac OS 10.14 Mojave. The Enigmail plugin is disabled. I have an OpenPGP key that I created 20 years ago on my system, and Thunderbird recognizes its presence, but I do not use it.