Closed Bug 1754386 Opened 3 years ago Closed 3 years ago

Primary Password NO longer protects Thunderbird on launch

Categories

(Thunderbird :: Security, defect)

Product:
Thunderbird
Component:
Security
Version:
Thunderbird 91
Type:
defect

Tracking

(Not tracked)

Status:
RESOLVED DUPLICATE of bug 318697

People

(Reporter: lylvlyjwpxbdhykbgg, Unassigned)

Details

Steps to reproduce:

  1. Open Thunderbird
  2. Press "Cancel" on the Primary Password request prompt

Actual results:

Thunderbird is loaded

Expected results:

Thunderbird should not load

This is covered in bug 318697 and https://support.mozilla.org/en-US/kb/protect-your-thunderbird-passwords-master-password

Primary password is not intended to protect messages from being displayed after startup, and it has never done so. Nor does it protect messages on disk. It's purpose is to protect passwords and other "secrets". But there is a workaround to achieve what you want - see bug 318697 Comment 58

Group: mail-core-security
Status: UNCONFIRMED → RESOLVED
Closed: 3 years ago
Resolution: --- → DUPLICATE

But it's still ridiculous! a password that protects nothing! Imagine the windows password which can be bypassed with a simple "cancel"

The reasons given at https://bugzilla.mozilla.org/show_bug.cgi?id=318697#c60. And this is not an account password, like a Windows password, so it is not a great analogy.

Does the workaround not work for you?

indeed, I understand what the password is for but the way it is deployed suggests that it protects against unauthorized access to thunderbird when this is not the case and if I may allow myself I think the most users desire such functionality

You need to log in before you can comment on or make changes to this bug.