Форум поддержки Все продукты

I am attempting to import server certificates into Firefox. But the "Import" button does nothing when viewing certificates. Any work around? I need to import our server certificates into the Authorities section.

Ubuntu 22.04 Firefox installed through snap. Version 104.0 just upgraded this afternoon.

Thank you, James

Up until the last update of Firefox I was able to access my router, 192.168.1.1, enter password and check it.

Now I get an error message "connection not secure" "Your connection to this site is not private. Information you submit could be viewed by others (like passwords, messages, credit cards, etc.)

None of this is part of looking at my router, Asus GT-AX11000.

Network Solutions upgraded their email, and I multiply-checked all my settings in Thunderbird (102.3.2) and can retrieve mail but the outgoing mail hangs and time out with an error. I just discovered it's not my settings, but there's no password listed for the default outgoing SMTP server (my own domain). (I have 2 email accounts, and listed in the "Saved Passwords" are 2 passwords for incoming IMAP plus one the other account outgoing SMTP, 3 total.)

Is there any way to add a password without deleting the default server and then adding it back in, or some other solution?

Thanks

Ever since updating to the current version of Firefox (112.0 64-bit, according to the settings), every time I close the browser, I'm logged out of every single service I'd been logged into. This was not an issue with previous versions of the browser, and old forum posts on the subject don't seem to contain correct, up-to-date information. Is there some setting I'm missing, that I need to update?

2FA login on sites works with Chromium but NOT WITH Firefox (Linux)

Present setup:

Does NOT work firefox 102.7.0esr on debian 11.6 bullseye 5.10.162-1 (x86-64) firefox 110.0 on Ubuntu MATE 22.04 LTS 5.15.0-58 (x86-64)

Works chromium 109.0.5414.119 on debian 11.6 bullseye 5.10.162-1 (x86-64)

I am able to register and authenticate with security devices Yubikey NEO (without FIDO2) and Yubikey 5 NFC (FIDO2 compliant) on several sites (eg. pypi, google..) using Chrome or Chromium but now not with Firefox at all. It has not worked for at least the last few updates. Changing settings in about:config or plugging/unplugging keys, stopping every Firefox plugin etc. don't help. Neither does a fresh Firefox install without any super-security-settings.

Testing sites like Yubico's own or Okta's works fine using Chromium but not Firefox.

From what I can see this is not especially related to FIDO2 (Webauthn). pypi seems to use U2F which should work just fine with Firefox since way back.

I haven't tested Firefox for Windows but Chrome browser for Windows 10 works fine (which I tested first when Firefox didn't cut the mustard), I therefore expect it to work also on Chrome browser for Linux. Just to check if this was related to a debian bullseye package, I tested it on Ubuntu MATE too, which didn't do the trick. Haven't done any more testing than that on MATE.

This seems like a strictly firefox problem. -What to do?

Yours, Kaare

I have upgraded to the Microsoft 365 Business Professional email service which should allow me to continue with Thunderbird, now that basic authentication is no longer supported.

I have enabled Exchange settings. Also, POP/IMAP and SMTP are authorized in the MS 365 account, and those setting are correct in T-Bird. From within Thunderbird, a login screen for the MS 365 email account is generated when T-Bird attempts to log in to the server, but the log in just takes me to the server page in the browser.

This help article https://support.mozilla.org/en-US/kb/microsoft-oauth-authentication-and-thunderbird-202 advises that Thunderbird may need to be authorized. I followed the link, but was not able to make it work.

Given the following provided link, what is to be used for {tenant-id} ? https://login.microsoftonline.com/{tenant-id}/adminconsent?client_id=9e5f94bc-e8a4-4e73-b8be-63364c29d753

Any other advice? Thank you very much!

An error occurred during a connection to www.facebook.com. SSL_ERROR_DC_EXPIRED What in the world? does Facebook not keep up with its own security? or is this a Firefox thing?

I had a personal certificate installed in Firefox and it was working well. It expired, so I got a new one from the same provider. Both appear in Firefox under "Privacy & Security" -> Certificates -> View Certificates... The previous one is not valid any more, and every time I try to access some page with a certificate, it uses the old one. So I tried to delete the old one. Nothing has worked so far. Doing the straightforward way of selecting it in the Certificate Manager and deleting it makes the certificate disappear from the manager menu, but if I enter the certificate manager again, it is there again. I tried to delete both certificates, same issue, both reaper in the manager. I tried to delete them, close firefox, delete cert9.db, cert8.db and key4.db and nothing. Only thing left is delete my current firefox profile and start again... Any other idea or something that I might delete before to solve this?

I have tried the suggestions as described in the following article: https://support.mozilla.org/bm/questions/1273784 However, am still having the issue. It's as if the settings are totally ignored. I am using version 108.0a1 of Firefox developer edition. Ideally what am trying to achieve is away to disable all features of ETP. I figured setting it to custom with all values unchecked would have done the trick but it's not working. What works is if I add the site to the list of Exceptions for Enhanced Tracking Protection, then I will see all Ads loaded just fine on the page. However, this is not viable for me as I have a large list of sites that I visit, and I need to see the ads on them.

Does anyone know of a way to get around this feature in FF?

Is there another setting am missing from the previous article?

Greetings Firefox Support/CommunityL

While reconnecting one of my computers to my Firefox account I saw at the top of the Settings Page: "Your settings are being managed by your organization". Problem is that I don't belong to any organizations or enterprises having anything to do with my online life. I have been hacked in the past and am paranoid when I see something that doesn't make sense. When I click on the link (trusting that it is indeed from you), it takes me to your Enterprise Policy page showing the following:

Active Policy Name Policy Value

DNSOverHTTPS Enabled false Locked true

I always use secure DNS (DOH or DOT) on everything - network adapters, routers (except the ISP one whose default I can't figure out to circumvent) etc. but on the browser setting pages I am only given the option of having it off: the default, increased, and max protection options are greyed out and cannot be chosen. I guess that explains the policy values but who locked it? My only guess is that is use a Surfshark VPN and realize that in so doing I am using Surfshark's DNS servers but I believe I had this problem before using the VPN. Any help would be greatly appreciated. Thanx.

Pat Ford - dpfmd@msn.com

Idk why but sometimes firefox just doesn't prompt to generate secure password, I even have to download some extensions to generate secure password (Secure Password Generator) meaning more secure issues.

My guess is that you guys probably hardcoded something like {if "type: password" then prompt}, but it's still partly fault at developers too for bringing these huge chunks of javascript.

In screenshot there's element examaple in which i input password but no prompt whatsoever.

Hello, Microsoft Defender did a scan tonight and apparently detected a trojan script, located in the folders for Firefox extensions for both profiles I use on my computer

Trojan description: Trojan:Script/Wacatac.B!ml

Files: C:\Users\[user]\AppData\Roaming\Mozilla\Firefox\Profiles\[default profile]\extensions\langpack-fr@firefox.mozilla.org.xpi C:\Users\[user]\AppData\Roaming\Mozilla\Firefox\Profiles\[second profile]\extensions\langpack-fr@firefox.mozilla.org.xpi

This scan happened at 9pm, and a previous scan at 6pm didn't show anything. When it detected the script, MS Defender contained it and apparently deleted it when it asked me to restart the computer, I then did a full offline scan and nothing else showed up, same with a full scan with the free version of Malwarebytes. I didn't do anything unusual between 6pm and 9pm, so I'd like to know if there's a way to determine whether that script was an actual threat (instead of a false alarm)? If so, any way to know how long it has been on my computer? Any further risks to take into consideration? Other steps to follow? Thanks for the help

I don't know why, it is NOT Ancestry, as I can sign in to it on other browsers. I get this error message below.

Access Denied Error 21 What happened? This request was blocked by security rules. Your IP: 73.94.12.65 Incident ID: 6eae587fcef92d46

I have no idea what security rules, but I am working on a genealogy project and have never had a problem signing into Ancestry in multiple tabs before today. How do I fix this? Besides getting rid of Firefox, I mean. I have the same security extensions on this browser as I use on Vivaldi, Brave and Chrome - I avoid Chrome, but use Vivaldi and Brave regularly, along with Firefox.

When entering a local domain in the URL bar Firefox sends the request to a search engine instead of the DNS server. How can I stop this behaviour and switch back to how it was before?

Hi,

Is there any reason firefox would flag an mp4 file legitimately?

• The file extension and file type are absolutely mp4.
• There seem to be no mp4 related zero days.

Does Firefox perhaps just treat all downloads from suspicious domains as malware? Is there a zero day I missed? Is this based on some missing metadata on the file or something?

Thanks for any advice you can give here, I'm scared.

Firefox is suggesting usernames on multiple websites that I access regularly. However, I have the saved logins feature turned off in Firefox.

When I access Settings > Privacy & Security > Logins and Passwords - it shows all of these options turned off.

When I access Settings > Privacy & Security > Logins and Passwords > Saved Logins... - it indicates No Logins Found / No Synced Logins found.

I do have Firefox Sync turned on to sync between devices, but since it indicates "No Synced Logins" it doesn't appear this is coming from another device. I have checked multiple devices and found they all show "No Synced Logins"

Only happening in Firefox. I am not getting these suggested logins in Edge or Chrome.

Happening across all my Windows 10 and 11 devices that have Firefox sync enabled. 2 x Windows 11 Pro 22H2 (build 22621.819) 1 x Windows 10 Pro 22H2 (build 19045.2364)

Firefox 108.0 on all Windows devices, but it started before updating to 108.

I have not yet tried resetting Firefox - hoping to use that as a last resort.

Any suggestions on where else to look or what I should try?

suddenly I ca no longer log into iCloud. I get a security issue. I refreshed / uninstalled and reinstalled. no help. any assistance would be appreciated. see images.

Hello, I received a Yubikey 5 and all is working fine using GPG with it, except integration with Thunderbird on Windows.

I followed this guide: https://wiki.mozilla.org/Thunderbird:OpenPGP:Smartcards including 64 windows section

I was able to successfully send mail to myself, but then thunderbird failed at decrypting this message: Thunderbird is indicating that key is not available and I see no prompt from gpg-agent. Key is correctly declared as GPG external.

If I try to decrypt tis email by storing it on file and using gpg in command line, it works fine: agent is asking for Yubikey PIN and gpg is decrypting the message. But this is an awful workaround, not user friendly at all.

I also did sanity check by sending to myself a message encrypted with a key generated by Thunderbird: all is working fine, the message is decrypted within Thunderbird.

=> How do you make Thunderbird decrypt message encrypted with key stored in Yubikey? How do you make the gpg-agent called by thunderbird?

Outgoing email includes the user-agent header. I would like to disable or modify the string for better security.

User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.8.0

Thanks...

Hi, I planned to block my users from installing extensions/add-ons. I found an article that might be the answer (https://support.mozilla.org/en-US/questions/1308646). I tried to create a simple policy (below), but somehow it does not work (I can still install any add-on/extension). What is wrong with my script? I'm using Firefox ESR 78.11.0 (64-bit) by the way.

My "policies.json" looks like this:

{

"policies": {
  "ExtensionSettings": {
    "*": {
      "blocked_install_message": "Blocked!",
      "install_sources": ["https://addons.mozilla.org/"],
      "installation_mode": "blocked"
    }
  }
}

Sincerely, Jonathan