Closed Bug 1158512 Opened 9 years ago Closed 3 years ago

thunderbird uses HSTS list for mail servers.

Categories

(Thunderbird :: Security, defect)

Product:
Thunderbird
Component:
Security
Version:
31 Branch
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED DUPLICATE of bug 1429644

People

(Reporter: dhill, Unassigned)

Details

User Agent: Mozilla/5.0 (X11; Bitrig amd64; rv:36.0) Gecko/20100101 Firefox/36.0
Build ID: 20150425082426

Steps to reproduce:

Thunderbird will not work with my self-signed certificate.  It would save the certificate but always fail to connect.

I found my domain in mozilla/security/manager/boot/src/nsSTSPreloadList.inc.  After removing it, I can now connect again.


Actual results:

There was no error reported.  It just failed to connect.


Expected results:

Why is thunderbird using the HSTS list?  I have a valid CA signed certificate on my webserver, but I use self-signed certificates for my email servers.  I think it is incorrect that thunderbird is using the HSTS list for connecting to mail servers.
Status: UNCONFIRMED → RESOLVED
Closed: 3 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.