All Products Support Forum

Dear Sir or Madam,

I have just migrated Thunderbird to my new CUBI desktop running Windows 11. I get security errors when I launch Thunderbird. My email provider The Messaging Company advised me to change server settings, which are now shown in the Troubleshooting Information page as account1 (pop3) pop.themessagingco.com.au:995 SSL/TLS Normal password smtp.themessagingco.com.au:587 STARTTLS Normal password true.

On launching Thunderbird I get the message Secure connection failed live.mozillamessaging.com uses an invalid security certificate. The certificate is not trusted because the issuer certificate has expired. Error code: <a id="errorCode" title="SEC_ERROR_EXPIRED_ISSUER_CERTIFICATE">SEC_ERROR_EXPIRED_ISSUER_CERTIFICATE</a>

   This could be a problem with the server's configuration, or it could be someone trying to impersonate the server.
   If you have connected to this server successfully in the past, the error may be temporary, and you can try again later.

Or you can add an exception…

AND when I attempt to send an email I get warning that the SMTP server does not have a valid certificate. If I ask, in either case, to "Get Certificate" the response is that the site attempts to identify itself with invalid information.

I have "tried again later" over two weeks, and nothing has changed.

The Messaging Company is a fairly large email provider: it seems strange that its security is incomplete. However, I am not happy to just set an exception and over-ride these errors without doing all I can to check that there is not something screwy going on. I really value using Thunderbird, and The Messaging Company's advice that I should just use webmail is not at all satisfactory: I keep everything on my computer or backed up to a portable drive here.

Please: is there anything I can do or should know to fix this problem?

Best Regards, Margaret Mackisack

Three times in the last few months when I was forced to do a TeleDoc visit using my health care provider's 3rd party teleconferencing software I noticed that it changed my Windows 10 sound setting from the correct Optical (Digital Audio S/PDIF) to the incorrect "USB Audio Codex". Consequently, I couldn't hear anything until I changed the sound setting back to Optical. The 3rd time the user interface had changed significantly and for the better except that the sound setting had not only changed to USB Audio Codex, but it was stuck at that setting--so the Doc called me on the phone so I could to listen to what he had to say.

I don't think this is browser dependent. The 3rd time I was using Firefox, the previous 2 I may have been using Edge. I am still very surprised, think that it's a security issue (I'm using Bit Defender), and wonder how else Windows can be tampered with?

Please let me know what you think, and what my next step should be?

I have a local web server which is misconfigured. Its my server, its on my LAN, and no data traverses any devices not under my control. I need to be able to access it via HTTPS with an expired certificate in order to FIX THE EXPIRE CERTIFICATE. How do I do it? Firefox used to have a "accept the risk and continue". Whoever took this feature aware has created a very significant problem for me and I want the capability back.

Hello, In order to log into Netflix I have to uncheck the Cookies box and Private Browsing box in Privacy and Security under Settings (I usually run with these enabled when just browsing). When I do this it asks for a Restart. Upon Restart the Netflix Login page always appears on its own. I am curious as to how Firefox is getting steered to the Netflix Login page when it is not being specifically told to go there. I assume it is somehow tied to the unchecked boxes. It's not a big deal to me but I am curious about what is going on in the background and the dynamics involved. If someone has the time to explain what is happening I would appreciate it. Thanks you !

And thanks to Mozilla in general for keeping Firefox so excellent.

How do I disable secure connections for local domains? like http://nas.local or http://nas.home.arpa ?

I search for the subject but nothing came up. Apologies if this has been asked before.

Hi.

I have several internal sites, each signed with their own internal CA/subCA. These CAs are all named the same, but have different crypto materials.

If I import just 1 CA into FF (directly or in Windows store with security.enterprise_roots.enabled ), the site with that CA works fine (browser warning is not presented), but ALL those other internal sites give this error:

An error occurred during a connection to 10.1.1.1. Peer’s certificate has an invalid signature. Error code: SEC_ERROR_BAD_SIGNATURE

with no option to add a security exception.

If I add the CA for another site, that one works as well, the others won't. If I remove all the internal CAs, all the sites start working again (with browser warning, ofc.).

I tried in Chrome and Edge and I get the option to create a security exception for the sites for which I did not install their CA, which looks like the ideal/preferrable option to me.

Is this as intended (and why?) or can it be fixed?

This looks somewhat similar to this: https://support.mozilla.org/questions/1170738

Thank you. Davide.

I've added https://x.com as an exception site but it is still blocked.

This is outright censorship which is something fascists do.

Tell me how to fix your browser so I may access x.com again or I stop using Firefox forever.

Hello, I need a bit of help. Specs: FireFox 127.0.2, Apple Silicon M2, Sonoma. For some reason in my privacy & security settings with enhanced tracking protection, it's set on Standard which I believe is the default but after some time passes it switches itself to Strict, or Custom settings, then none of my pages load properly or not at all. Can someone tell me how I can get it to stay on the Standard?

Thanks

I'm trying to set my DNS settings in Firefox Nightly to a custom service. But i am having nothing but problems.

"Firefox Nightly 128.0a1 (Build #2016025199)"

I want to use one of these settings for the secured w/ECS:Malware blocking, DNSSEC Validation, ECS enabled.

My only problem is I'm not sure which format of the address options I should be inputting in the DNS settings in the about:config

Please help.

Secured w/ECS: Malware blocking, DNSSEC Validation, ECS enabled

IPv4 9.9.9.11 149.112.112.11

IPv6 2620:fe::11 2620:fe::fe:11

HTTPS https://dns11.quad9.net/dns-query

TLS tls://dns11.quad9.net

P S. Yes I know I can set a custom DNS address in the connections settings of my android device. And it works most of the time. I however want my own settings in the browser itself.

Thank you in advance

I use Firefox with a VPN. I also use the Chameleon extension to alter my fingerprint. When I log into Messenger.com it asks if this is me and gives my actual, physical location. I've checked in settings under location and it doesn't show any sites requesting my location. I have it open in one of the tabs where it's showing my location. I have block all location requests checked. How can I get Firefox to not show my physical location?

Also on this page, it gives I'm using Firefox and the OS I'm using. Both are supposed to be changed for fingerprinting protection.

This looks like it could be a big security loophole. Any help is appreciated.