[email] Awareness: Keep an eye on 163.com/126.com/yeah.net/other netease IMAP upsells

RESOLVED WONTFIX

Status

RESOLVED WONTFIX
4 years ago
6 months ago

People

(Reporter: asuth, Unassigned)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

(Reporter)

Description

4 years ago
While using 2 test accounts provided to us to test changes to the v2.2 branch (for the email.js upgrade omnibus bug 1097421), I witnessed 2 weird upsell/potential-FUD-like notifications.

Note that this was before I updated our use of browserbox to include a valid payload for the "ID" mechanism.  We now say:
W2 ID ("vendor" "Mozilla" "name" "GaiaMail" "version" "0.2" "support-url" "http://mzl.la/file-gaia-email-bug")

And on my freshly created test account, I did not encounter an error with signing in that way.  So it's possible this is just an action on the part of netease to make sure that IMAP clients are identifying themselves, which is completely reasonable.  Versions of 2.1 and 2.2 without the fixes from bug 1097421 will be generating an "ID NIL"-type situation, and earlier versions won't use the "ID" extension at all. 

My concern is that this might be an attempt to switch users over to the app.  So I've filed this bug for us to keep an eye on it.


===== A "NO" on "SELECT"ing the Inbox

First, I noticed a refusal to let us in the INBOX, reported like so:
WLOG: [slog] imap:protocol-error {"humanReadable":"SELECT The login is not safe! Please update your mail client: http://mail.163.com/dashi","commandData":"W5 SELECT \"INBOX\""}

That page is an ad for an iPhone and Android app with the following text:
===
网易推出的手机邮箱APP,全面支持网易、QQ、Gmail、Hotmail、雅虎、139、新浪、国内外各类企业邮箱和校园邮箱。
支持所有邮箱 极速收发体验
实时邮件推送 极致安全保障
===

Google translate translates that to:
===
NetEase launched mobile email APP, full support Netease, QQ, Gmail, Hotmail, Yahoo, 139, Sina, all kinds of domestic and foreign enterprises and campus mailbox mailbox.
Support for all mailboxes  speed transceiver experience
Real-time push email  ultimate security
===

===== A message is injected into the inbox.

The body of the message is as follows:
===
系统检测到您使用未标识设备来源的imap客户端或邮箱APP访问邮箱,可能存在以下安全隐患:
1.邮件数据传输安全性低,存在数据泄露风险;
2.邮箱帐号未受网易邮箱官方安全系统保护,存在帐号密码泄露风险。
为了保障您的邮箱使用安全,我们将限制您该未知设备的邮件收取。
推荐您使用网易邮箱官方手机客户端邮箱大师收取邮件:网易专有协议访问邮箱,而有效保护邮箱安全。立即下载解除安全隐患
===

And Google Translate translates this to:
===
The system detects the device you are using unidentified sources APP imap client to access the mailbox or mailbox, there may be security risks following:
1. Mail data transmission security is low, there is a risk of data loss;
2. NetEase mailbox mailbox accounts were not official security system protection, there is a risk of leakage account password.
To protect your mailbox using security, we will limit your message to receive the unknown device.
Recommend that you use the official mobile client NetEase mailbox mailbox to receive mail Masters: Netease proprietary protocols to access the mailbox, and effectively protect the mailbox security. Download lift safety hazards
===

Note that "download lift safety hazards" I think was part of a hyperlinked button.

The test account I used seemed to show 2 emails of this form.  One was caused by my use of an account (based on timestamp), and one came a day or two before that, suggesting that there is suppression logic but it's somewhat limited in scope.
(Reporter)

Comment 1

4 years ago
And this was a 163.com account connecting to imap.163.com with initial-TLS on port 993.

Updated

4 years ago
See Also: → bug 991489

Updated

4 years ago
See Also: → bug 1112549
(Reporter)

Updated

4 years ago
Duplicate of this bug: 1112549

Comment 3

6 months ago
Firefox OS is not being worked on
Status: NEW → RESOLVED
Last Resolved: 6 months ago
Resolution: --- → WONTFIX
You need to log in before you can comment on or make changes to this bug.