If you think a bug might affect users in the 57 release, please set the correct tracking and status flags for Release Management.

Certificate Authentication against mail server

RESOLVED DUPLICATE of bug 431819

Status

Thunderbird
Security
RESOLVED DUPLICATE of bug 431819
10 years ago
10 years ago

People

(Reporter: Eddy Nigg (StartCom), Unassigned)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

(Reporter)

Description

10 years ago
User-Agent:       Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9b5) Gecko/2008032619 Firefox/3.0b5
Build Identifier: 3.0a1pre (2008050503)

At TB3 the default for the settings security.default_personal_cert is set to "Ask Every Time". I suspect that this was taken from FF3 (PSM). The reason in FF was that certificates can be installed without much user interaction and track users with certificates when set to automatic selection (almost like cookies). However TB doesn't have this risk and the default selection should be "Select Automatically" since it's very inconvenient to select a certificate every time a mail message is sent.

Reproducible: Always

Steps to Reproduce:
1. Configure a SSL/TLS secured mail server and request client certificate authentication.
2. Send a mail through this mail server.
3. Selection of certificate required every time.
(Reporter)

Updated

10 years ago
Flags: blocking-thunderbird3.0a2?
Flags: blocking-thunderbird3.0a1?
You didn't actually need to update to the trunk to get that pain, you could have just updated to 2.0.0.14
Status: UNCONFIRMED → RESOLVED
Last Resolved: 10 years ago
Flags: blocking-thunderbird3.0a2?
Flags: blocking-thunderbird3.0a1?
Resolution: --- → DUPLICATE
Duplicate of bug: 431819
You need to log in before you can comment on or make changes to this bug.