Todos os Produtos Support Forum

I add 2FA whenever possible. I was adding a new website yesterday and was unable to: FireFox (v. 127.0.2 on 64-bit Windows 10) was showing "Log in with Facebook" that was blocking one of the squares on the QR code! So I had to enter the many characters that were presented in order to add the 2FA code to Authy!

I looked in the settings and couldn't find anyway to turn that off.

How can this be fixed?

Thanks,

John

Hello,

When the primary password window opens and I click Cancel, can that window close AND can it prevent Thunderbird from opening?

Example: what if I bring my pc to a repair shop and they open thunderbird and click Cancel on the primary password window. They can See my previously viewed email. I do not want them to see those. Clicking Cancel AND closing Thunderbird would prevent them from seeing emails.

Could this be a future enhancement?

Thanks

Jim

Both 'Enhanced Tracking Protection' and 'Site permissions' show exceptions and an explanation of what they are (for 'Enhanced Tracking Protection' anyway) but seem to have no way to add an exception.

How are exceptions added 'Enhanced Tracking Protection' and 'Site permissions' in Fennec?

Thanks

Hello everyone! I want to see every visit on a site by date and time. But in library of history it offers me to see only last visit by date(for example if i visited a site for example x.com 200 times - i want to see every date and time of every of these 200 visits, but not only recent). How to do it?

The password I've been using to access my stored payment methods is suddenly not working. I've tried using my Master (sorry, Primary) password and this doesn't work either

Dear Sir or Madam,

I have just migrated Thunderbird to my new CUBI desktop running Windows 11. I get security errors when I launch Thunderbird. My email provider The Messaging Company advised me to change server settings, which are now shown in the Troubleshooting Information page as account1 (pop3) pop.themessagingco.com.au:995 SSL/TLS Normal password smtp.themessagingco.com.au:587 STARTTLS Normal password true.

On launching Thunderbird I get the message Secure connection failed live.mozillamessaging.com uses an invalid security certificate. The certificate is not trusted because the issuer certificate has expired. Error code: <a id="errorCode" title="SEC_ERROR_EXPIRED_ISSUER_CERTIFICATE">SEC_ERROR_EXPIRED_ISSUER_CERTIFICATE</a>

   This could be a problem with the server's configuration, or it could be someone trying to impersonate the server.
   If you have connected to this server successfully in the past, the error may be temporary, and you can try again later.

Or you can add an exception…

AND when I attempt to send an email I get warning that the SMTP server does not have a valid certificate. If I ask, in either case, to "Get Certificate" the response is that the site attempts to identify itself with invalid information.

I have "tried again later" over two weeks, and nothing has changed.

The Messaging Company is a fairly large email provider: it seems strange that its security is incomplete. However, I am not happy to just set an exception and over-ride these errors without doing all I can to check that there is not something screwy going on. I really value using Thunderbird, and The Messaging Company's advice that I should just use webmail is not at all satisfactory: I keep everything on my computer or backed up to a portable drive here.

Please: is there anything I can do or should know to fix this problem?

Best Regards, Margaret Mackisack

I would like to change my account settings for my hotmail account, but when I try to change from Normal Password under Outgoing Server (SMTP) there is no option for Oauth. Is there something I can do to enable this option.

I am trying to access the online library website for my college. I had no trouble all week then all of a sudden I keep getting this message: "Unauthorized LTI Launch Request 401

   Please check the configuration settings used for the LTI/OAuth/OpenID access.
   Your browser's "Block 3rd party cookies" or "Prevent cross-site tracking" setting can also cause this error."

I already changed the cookies settings to allow this website and my school's website. I don't understand the issue and why it popped up out of nowhere. I use firefox latest update on Windows 11. I do use a vpn but I used it the whole time, even when the site was working and I have tried turning it off. It doesn't help.

Microsoft sent email last night announcing the end of "Normal Password" for Hotmail, and warning that Hotmail would REQUIRE "modern authrentication" beginning 9/16. I have personal desktop subscription to Microsoft 365. I have set Microsoft account to 2FA and checked in Tbird that cookies are enabled.

I have spent hours and days trying & failing. With server imap-mail.outlook.com using OAUTH2, Thunderbird won't sync and shows message saying that server doesn't support the authentication protocol please enter another one. With 2FA still turned on and using Normal Password setting and entering an App Password from Microsoft, the Imap connection is fine about 85% of the time, needing re-entry of the App password about once a day or so (usually requires several tries until App Password gets accepted.)

The 0AUTH2 fails with Norton Smart Firewall turned Off or Turned On-makes no difference.

(Sending email with Outlook and 0AUTH2 DOES work okay.)

I've also tried Imap connection with a different server: Outlook.office365.com, using 0AUTH2.

In this case, Tbird shows me a Timeout error and never makes an Imap connection to the server.  

I've been limping along with the app password, and "normal password" authentication, but now Microsoft announces they will stop accepting connections that are not 0Auth2 ("modern authentication") from Tbird or any other software after 9/16. The clock is ticking. I've tried every remedy I've seen online from Tbird or from Microsoft. Nothing has yet allowed a QAUTH connection for Tbird to a hotmail IMAP server. Please help! !

Three times in the last few months when I was forced to do a TeleDoc visit using my health care provider's 3rd party teleconferencing software I noticed that it changed my Windows 10 sound setting from the correct Optical (Digital Audio S/PDIF) to the incorrect "USB Audio Codex". Consequently, I couldn't hear anything until I changed the sound setting back to Optical. The 3rd time the user interface had changed significantly and for the better except that the sound setting had not only changed to USB Audio Codex, but it was stuck at that setting--so the Doc called me on the phone so I could to listen to what he had to say.

I don't think this is browser dependent. The 3rd time I was using Firefox, the previous 2 I may have been using Edge. I am still very surprised, think that it's a security issue (I'm using Bit Defender), and wonder how else Windows can be tampered with?

Please let me know what you think, and what my next step should be?

Are Firefox extensions sandboxed from the rest of the operating system? Suppose I have installed a malicious extension/add-on on my system. Would it be possible for the extension to access and tamper with my operating system? I do not care if it tampers with the browser tabs or data inside the browser as long as it does not have a way to tamper with my OS. Using MacOS Sonoma

I can no longer use my camera on firefox, firefox displayed some message about camera when we were trying to chat, but I missed it, I have granted relevant permissions on the site, that we use reularly. The camera icon on the address bar appears red, and I noticed that in Windows security, it lists firefox access requests, but shows no way to grant these requests.

I am not tech minded so please if anyone could keep it simple, I would appreciate it.

My Thunderbird Version: 115.12.2 (32 Bit)

Microsoft is changing the authentication method for outlook mail to OAuth2. I follow the guide here,

https://support.mozilla.org/en-US/kb/microsoft-oauth-authentication-and-thunderbird-202

And I get to this screen - but my version of the program does not have OAuth2 as an option (see attached image).

Thanks for the help.

I have a local web server which is misconfigured. Its my server, its on my LAN, and no data traverses any devices not under my control. I need to be able to access it via HTTPS with an expired certificate in order to FIX THE EXPIRE CERTIFICATE. How do I do it? Firefox used to have a "accept the risk and continue". Whoever took this feature aware has created a very significant problem for me and I want the capability back.

Hello, In order to log into Netflix I have to uncheck the Cookies box and Private Browsing box in Privacy and Security under Settings (I usually run with these enabled when just browsing). When I do this it asks for a Restart. Upon Restart the Netflix Login page always appears on its own. I am curious as to how Firefox is getting steered to the Netflix Login page when it is not being specifically told to go there. I assume it is somehow tied to the unchecked boxes. It's not a big deal to me but I am curious about what is going on in the background and the dynamics involved. If someone has the time to explain what is happening I would appreciate it. Thanks you !

And thanks to Mozilla in general for keeping Firefox so excellent.

I am running version 115.12.2 (64-bit). I have deleted all stored passwords using Settings -> Privacy and Security -> Show Passwords. As expected, when I try to retrieve emails a pop-up appears asking for the password - which I save. However, when I try to send an email there is no pop-up and the remote server rejects the email. How do I set a new outgoing password?

One of the add-in permissions is "Access your data for sites in the “named” domain". I looked at that and thought, "That certainly cannot include passwords"; BUT the explanation for this permission is: "The extension could read the content of web pages you visit in the specified domain, as well as data you enter into those web pages, such as usernames and passwords. "

I was stunned.

That means that addins that get this permission have access to my banking/medical/etc. usernames & passwords. This is not acceptable. Can a permission be developed that would be: "Access your data for sites in the “named” domain" (except usernames/passwords).

The permission "Access your data for all websites" is significantly worse in that it applies to all sites.