Closed
Bug 302095
Opened 19 years ago
Closed 18 years ago
Security warning dialog appears unnecessarily on View | Message Source.
Categories
(Thunderbird :: Mail Window Front End, defect)
Tracking
(Not tracked)
VERIFIED
FIXED
Thunderbird1.1
People
(Reporter: stephend, Assigned: Bienvenu)
References
Details
(Keywords: fixed1.8.1, verified1.8.1.3)
Attachments
(1 file, 1 obsolete file)
|
1.60 KB,
patch
|
mscott
:
superreview+
mscott
:
approval-thunderbird2+
|
Details | Diff | Splinter Review |
Build ID: version 1.0+ (20050725) on Windows XP. Filing in Mail Windows Front End, but punt as needed. I didn't feel it deserved "Security" status. Summary: Security warning dialog appears unnecessarily on View | Message Source. Background: This *might* be because I'm using SSL for my IMAP account, but as I have no non-SSL account, that's just a theory. The messages themselves aren't encrypted. Steps to Reproduce: 1. Login to an SSL-enabled IMAP account. 2. Select a message. 3. Choose "View," "Message Source". Expected Results: No "Security Warning" dialog. Actual Results: "Security Warning" dialog appears.
|
||
Comment 1•19 years ago
|
||
It's the same here on Fedora Core Linux - Thunderbird version 1.0.6-1.1.fc3 (20050720). IMAPS Exchange server.
|
Reporter | |
Updated•19 years ago
|
Summary: Summary: Security warning dialog appears unnecessarily on View | Message Source. → Security warning dialog appears unnecessarily on View | Message Source.
|
|
Reporter | |
Updated•19 years ago
|
Flags: blocking-aviary1.5?
|
||
Updated•19 years ago
|
Flags: blocking-aviary1.5? → blocking1.8b4?
|
||
Comment 2•19 years ago
|
||
David, can you look into this? We're short on time and we'd consider a patch but don't think we're going to block on this.
Flags: blocking1.8b4? → blocking1.8b4-
|
Assignee | |
Comment 3•19 years ago
|
||
#define ENTER_SITE_PREF "security.warn_entering_secure" #define WEAK_SITE_PREF "security.warn_entering_weak" #define LEAVE_SITE_PREF "security.warn_leaving_secure" #define MIXEDCONTENT_PREF "security.warn_viewing_mixed" #define INSECURE_SUBMIT_PREF "security.warn_submit_insecure" for thunderbird, we could default these prefs to false - or we could check for mailnews type url schemes (imap, pop3, news) and not put up any warnings in that case. That wouldn't help seamonkey, but the pref solution would enable us not to touch the security code. Opinions?
|
|
Assignee | |
Comment 5•19 years ago
|
||
Maybe Dan or Boris have an opinion - Thunderbird could completely suppress these warnings by overriding some prefs...but I don't if that's appropriate.
|
||
Comment 7•19 years ago
|
||
It's safe to turn off those warnings in Thunderbird. Leave the form submit one true, though I'm sure everyone entering blog comments via Thunderbird's RSS support turns it off immediately. Doesn't help the Suite, but suite users have probably turned off those warnings in the browser long before they view source in the mail front end.
|
||
Updated•19 years ago
|
Status: NEW → ASSIGNED
Target Milestone: --- → Thunderbird1.1
|
|
||
Comment 10•19 years ago
|
||
Per dveditz and bienvenu, this patch turns off these warning dialogs (I left the form one alone) for Thunderbird.
Attachment #197212 -
Flags: superreview?(bienvenu)
Attachment #197212 -
Flags: review?(dveditz)
|
|
Assignee | |
Updated•19 years ago
|
Attachment #197212 -
Flags: superreview?(bienvenu) → superreview+
|
|
||
Updated•19 years ago
|
Attachment #197212 -
Flags: review?(dveditz)
|
|
Reporter | |
Comment 12•19 years ago
|
||
In trying to get this verified today, I noticed that the application update code doesn't seem to update all-thunderbird.js, at least not on my trunk build. Question: what happens to end-users who upgrade from 1.0.7 to 1.5? Will their all-thunderbird.js code get updated, or only the application code itself? If the latter, they won't be helped by this patch ;-( version 1.6a1 (20050930)
|
|
||
Comment 13•18 years ago
|
||
This patched the wrong prefs, the ones listed in comment 3 were correct. The "show_once" prefs control the state of the "Don't show me this again" checkboxes on the dialogs.
Status: RESOLVED → REOPENED
Resolution: FIXED → ---
|
||
Comment 15•18 years ago
|
||
david (or scott) can you change the default prefs on the MOZILLA_1_8_BRANCH? now that I'm using mozilla.com as my server, I keep running into it. (I'm sure I'm not the only one.)
|
|
Assignee | |
Comment 16•18 years ago
|
||
Assignee: mscott → bienvenu
Attachment #197212 -
Attachment is obsolete: true
Status: REOPENED → ASSIGNED
Attachment #241894 -
Flags: superreview?(mscott)
|
|
||
Updated•18 years ago
|
Attachment #241894 -
Flags: superreview?(mscott)
Attachment #241894 -
Flags: superreview+
Attachment #241894 -
Flags: approval-thunderbird2+
|
|
Assignee | |
Comment 17•18 years ago
|
||
fixed on trunk and branch - please try tomorrow's build and let me know, thx, Seth!
Status: ASSIGNED → RESOLVED
Closed: 19 years ago → 18 years ago
Keywords: fixed1.8.1
Resolution: --- → FIXED
|
|
||
Comment 18•18 years ago
|
||
verified with tbird version 2 beta 1 (20061011) on mac os x, thanks david!
Status: RESOLVED → VERIFIED
|
|
||
Comment 19•18 years ago
|
||
clearing blocking flag on a fix which has already landed on the branch.
Flags: blocking-thunderbird2?
|
||
Comment 20•18 years ago
|
||
verified fixed 1.8.1.3 with build Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US; rv:1.8.1.3) Gecko/20070326 Thunderbird/2.0.0.0 Mnenhy/0.7.5.0 ID:2007032620 (Thunderbird 2 RC1) also verified fixed per comment #18 and some testing from me with the steps to reproduce in this bug (No security warning on View -> Message Source).
Keywords: verified1.8.1.3
You need to log in
before you can comment on or make changes to this bug.
Description
•