User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Firefox/24.0 (Beta/Release) Build ID: 2013091200 Steps to reproduce: Use a Finnish FINeID PKCS#15 smart card via OpenSC. Added the card as per instructions. Selected the appropriate certificate for email-signing. Actual results: The Finnish FINeID card has 2 certificates of which the first is for email-signing and web-identification and the second for official signatures. Both certificate have different PINs. On card insert or access, Thunderbird asks the PINs for both certificates, although only the first certificate is selected in identity/security options. Signing itself works correctly. NOTICE: Firefox has the same issue - also always asks for both PINs, no matter if only one certificate is selected! Please create a crosslink bug! Expected results: TB should only access certificates which are actually used/needed from a card with multiple certificates.
Stefan, can you still reproduce this when using a current version?
Actually, I mostly stopped using Thunderbird because of a number of issues with signatures and others. See - among others Bug 947593. After TB recently also started asking the smartcard PIN on startup to authenticate to IRC servers (also not requested), I dropped TB on almost all my systems.
(In reply to Stefan Gofferje from comment #2) > ... > After TB recently also started asking the smartcard PIN on startup to > authenticate to IRC servers (also not requested), I dropped TB on almost all > my systems. Thanks Stefan. Can you give a time frame or version number to when the behavior regressed?