Thunderbird 78: How to add security exception?
In previous versions of Thunderbird, when connecting to a server with a self-signed certificate, a warning was displayed, but the option was offered to create a security exception for that server with this dialog:
I could click on "Confirm Security Exception" and thereafter, TB could communicate with the server.
But in this version of TB, I only see a message:
Sending of message failed.
The certificate is not trusted because it is self-signed.
The configuration related to [server name] must be corrected.
There is no indication of what "must be corrected" for TB to trust the certificate.
The Certificate Manager in the Privacy settings section does open the dialog above. But once the correct IP:port is entered, the "Get Certificate" button does nothing apart from displaying "No Information Available". This renders the dialog pretty useless.
I'm not concerned about man in the middle attacks due to the lack of CA signing because the mail server is on an intranet.
Is there any other way to get TB 78 to work with self-signed certificates?
I also suffer from this issue for hours. Finally, I figure it out to solve it.
At first, I tried to download the certificate from Firefox. When I try to access https://bad-mail-admin.com:465 and it tells me:
This address uses a network port which is normally used for purposes other than Web browsing. Firefox has canceled the request for your protection.
Then I googled it and found the solution: https://support.mozilla.org/en-US/questions/1083282
Just go to about:config ("Preferences" -> "General" -> scroll all the way down -> "Config Editor"), right-click anywhere on the page and choose New > String. Create an option named network.security.ports.banned.override, with the value: 465
Then firefox show https://bad-mail-admin.com:465 successfully.
Immediately I realized that Firefox and TB use the same browser engine. So I repeat do it in "Config Editor" of TB.
Then go to Certificate Manager of TB, enter https://bad-mail-admin.com:465. Press "Get Certificate" and finally I can get the certificate and add it to the security exception.
- Composer Curl error 60: SSL certificate problem: unable to get local issuer certificate
- How to install trusted CA certificate on Android device?
- Getting Chrome to accept self-signed localhost certificate
- Can't establish SSL connection to MongoDB from NodeJS program
- Getting CERTIFICATE_VERIFY_FAILED when trying to use slackclient and python 2.7
- How do I configure Nginx Proxy Manager to proxy an OnlyOffice Document Server Docker container?
- How can I redirect a Flutter web application to https?
- How to run Angular e2e with SSL enabled?
- Issues with installing python libraries on Windows : CondaHTTPError: HTTP 000 CONNECTION FAILED for url <https://conda.anaconda.org/anaconda/win-64
- How to make a TLS connection between two peers using Rust
- How can I know if the request to the servlet was executed using HTTP or HTTPS?
- SSL error downloading NLTK data
- SSL Localhost Privacy error
- How to fix proxyconnect tcp: tls: first record does not look like a TLS handshake
- How to disable or ignore the SSL for the Yfinance package
- Local file as absolute vs relative url: bad for performance or no difference?
- cURL not working (Error #77) for SSL connections on CentOS for non-root users
- PHPMailer - OpenSSL Error
- ftplib storbinary with FTPS is hanging/never completing
- curl: (60) SSL certificate problem: when uploading behind proxy
- Multiple domains and multiple certificates pointing to one MVC app
- Get "https://zzzztower.zzzz.com/api/v2/hosts/": x509: certificate relies on legacy Common Name field, use SANs instead
- traefik acme http challenge yields "No default certificate, fallback to the internal generated certificate"
- ASP.NET Core Development Certificates - error exporting the HTTPS developer certificate
- kex_exchange_identification: Connection closed by remote host
- Is there a way to securely transmit data (a TLS version) in 32 byte packets?
- How to install a cipher suite on Windows Server 2012
- Trying to set Http to Https Redirect on Nginx
- Make OpenSSL accept expired certificates
- Error when using selfhosted (Jetty) Metabase with ssl inside docker container