Open
Bug 1860589
Opened 2 years ago
Updated 2 years ago
Implement Telemetry for mail.smime.accept_insecure_sha1_message_signatures
Categories
(MailNews Core :: Security: S/MIME, enhancement)
MailNews Core
Security: S/MIME
Tracking
(thunderbird_esr115 affected)
NEW
| Tracking | Status | |
|---|---|---|
| thunderbird_esr115 | --- | affected |
People
(Reporter: KaiE, Unassigned)
Details
As a follow-up to bug 1854592, Alex suggests the we implement telemetry to track how many users need the newly added pref mail.smime.accept_insecure_sha1_message_signatures
Magnus suggested, instead of simply tracking how many users enable the pref (which could be easily done), we should rather track how many users actually run into the combination of:
- pref is enabled
- S/MIME signed with SHA-1 is processed
- signature is treated as valid, because of the pref
I'd prefer if this tracking is done outside of the core signature verification code.
Maybe it could be done at the JS UI level - but for that, we'll have to make the discovered hash algorithm visible for the UI - something that users have requested to be discoverable in the UI anyway.
|
Reporter | |
Updated•2 years ago
|
You need to log in
before you can comment on or make changes to this bug.
Description
•