Privacy basics - Thunderbird: Difference between revisions

From MozillaZine Knowledge Base
Jump to navigationJump to search
(added Advanced section, reworded several paragraphs)
(11 intermediate revisions by the same user not shown)
Line 1: Line 1:
By default, Thunderbird blocks remote images and other content in messages from people you don't know. This protects your privacy because spammers can verify your email address by detecting if you viewed a remote image in a message from them. Its also possible to embed an executable (malware) in images.  
By default, Thunderbird blocks remote images and other content in messages from people you don't know. This protects your privacy because spammers can verify your email address by detecting if you viewed a remote image in a message from them. Its also possible to embed an executable (malware) in images.  


When you receive a message with remote images, Thunderbird will display an alert stating that remote images have been blocked, and the images in the message body will be replaced with simple place-holders ([http://kb.mozillazine.org/images/Tbird15_blockedimages.png screenshot]). If you do want to view the remote images—for example, if you subscribe to an e-mail newsletter that regularly includes remote images—all you need to do is click the "Show Images"  or "Load Images" button that appears to the right of the alert message.  
When you receive a message with remote images, Thunderbird will display an alert stating that remote images have been blocked, and the images in the message body will be replaced with simple place-holders ([http://kb.mozillazine.org/images/Tbird15_blockedimages.png screenshot]). If you do want to view the remote images—for example, if you subscribe to an e-mail newsletter that regularly includes remote images—all you need to do is click the "Show Remote Content" button that appears to the right of the alert message. Older versions of Thunderbird used different names for that button such as "Show Images" or "Load Images".


Thunderbird 1.5 defaulted to loading remote images from people who are in your Personal Address Book. Thunderbird 2.0 and later versions blocks all remote images by default.  You can display remote images whenever reading a message from a person by clicking on "Click here to always load remote images from ..." in the e-mail message, as shown below:<br>
Thunderbird 1.5 defaulted to loading remote images from people who are in your Personal Address Book. Thunderbird 2.0 and later versions block all remote images by default.  You can display remote images whenever you read a message from a specific sender by clicking on "Always load remote images from ..." in the e-mail message, as shown below:<br>


[[Image:Tbird Remote Images.png]]<br>  
[[Image:Tbird Remote Images.png]]<br>  
   
   
Doing this adds an entry to the address book that has the "Allow remote images in HTML mail" option checked for the specific sender. You can also change this option for an address book entry by going into the address book, looking at the properties for an entry, and selecting/deselecting the "Allow remote images in HTML mail" option.   Unfortunately, you can only do this for one address book entry at a time.
This used to add an entry to the address book that had either "Allow remote content" or "Allow remote images in HTML mail" checked for the specific sender. Recent versions store this information in permissions.sqlite and content-prefs.sqlite instead. You can modify that information using Tools -> Options -> Privacy -> Mail Content -> Exceptions.


You might want to create a images address book and select it instead of the personal address book if its for a newsletter to which you can't reply.
If you can not see any remote images check that View -> Message Body As is set to "Original HTML". "Simple HTML" and "Plain Text" do not show remote images.  


==Advanced==
==Advanced==


Its possible to display all images from any sender, though its not recommended since malware can be embedded in images, and spammers will be able to verify your e-mail address. If you want to do this use the [[About:config_entries|Config editor]] to toggle the preference ''mailnews.message_display.disable_remote_image'' to "false"
Its possible to display all images from any sender, though its not recommended since malware can be embedded in images, and spammers will be able to verify your e-mail address. If you want to do this use the [[About:config_entries|Config editor]] to toggle the preference '''mailnews.message_display.disable_remote_image''' to '''false'''.


A better alternative would be to use the [[About:config_entries|Config editor]] to create a 'mail.trusteddomains' setting that specifies what e-mail domains it should automatically display remote images for. This is much easier than having to specify each email address, but you're taking the risk that you won't get any messages with a spoofed From: header in one of those domains. The setting contains a list of domains separated by commas, with no wild cards, white space or subdomains allowed.  
A better alternative would be to use the [[About:config_entries|Config editor]] to create a '''mail.trusteddomains''' setting that specifies what e-mail domains it should automatically display remote images for. This is much easier than having to specify each email address, but you're taking the risk that you won't get any messages with a spoofed From: header in one of those domains. The setting contains a list of domains separated by commas, with no wild cards, white space or subdomains allowed. This change won't take effect until you restart Thunderbird.  


For example:  
For example:  
Line 27: Line 27:
:''mozilla.com, mozilla.org'' is invalid  
:''mozilla.com, mozilla.org'' is invalid  


:''forums.mozillazine.org'' is invalid  
:''forums.mozillazine.org'' is invalid
 
If you can never see remote images because the "Show Remote Images" button is always missing check that permissions.default.image is set to 1 using the [[Modify_Thunderbird_settings | config editor]].
 
==Gravatars==
 
The [https://addons.mozilla.org/en-US/thunderbird/addon/display-contact-photo/?src=api Display Contact Photo] add-on by default uses photos from the address book but its options has a "Remote photos” tab with a “Enable Gravatars” setting. [http://en.gravatar.com/ Gravatar] lets you provide a avatar image that many web sites, blogs and some email clients will use. Gravatars are loaded from the Gravatar web-server using a URL containing an MD5 hash of the associated email address. [https://www.libravatar.org/ Libravator] is a similar service which uses open source software.
 
Somebody could easily tie your identity to other web sites that use your gravatar, and might be able to harvest your email address. "The entire reason Gravatar offers their service is to collect internet usage data across multiple sites. It is not offered free out of the goodness of their heart. The entire purpose of the service is to analyze the way YOU navigate the internet." [http://meta.stackoverflow.com/questions/44717/is-gravatar-a-privacy-risk] [http://meta.stackoverflow.com/questions/21117/is-using-gravatar-a-security-risk] [http://meta.stackoverflow.com/questions/4553/can-we-use-non-gravatar-avatars/5658#5658]
==Show All Body Parts==
 
It's possible a image is hidden due to the message being badly structured (nothing to do with privacy). The [https://addons.mozilla.org/en-US/thunderbird/addon/show-all-body-parts/?src=ss Show All Body Parts] add-on can workaround this. It adds a View -> Message Body As -> All Body Parts command. While that will workaround the problem it is not something you want to use by default due to its side effects.
 
==HTML message converted to plain text==
 
If you send a HTML message with an image (either embedded or on a web server) from one of your accounts to another account it will become a plain text message with no images if the contact's properties has "Prefer to receive messages formatted as: Plain text". The same problem might occur if you send the message to somebody else and their email client has similar settings.


==See also==
==See also==
Line 33: Line 49:
* For information on other security-related features in Thunderbird, including master passwords and certificates, see the [[:Category:Privacy and security (Thunderbird)|Privacy and security]] category.
* For information on other security-related features in Thunderbird, including master passwords and certificates, see the [[:Category:Privacy and security (Thunderbird)|Privacy and security]] category.


==External Links==
* [http://forums.mozillazine.org/viewtopic.php?f=39&t=2866097 Show remote content shortcut]
* [http://www.ghacks.net/2015/12/28/the-ultimate-online-privacy-test-resource-list/ The ultimate Online Privacy Test Resource List]
* [http://forums.mozillazine.org/viewtopic.php?f=28&t=3033119 Broken remote images with Kaspersky until import "Kaspersky Anti-Virus Personal Root Certificate.cer"]
[[Category:Privacy and security (Thunderbird)]]
[[Category:Privacy and security (Thunderbird)]]

Revision as of 21:22, 12 September 2017

By default, Thunderbird blocks remote images and other content in messages from people you don't know. This protects your privacy because spammers can verify your email address by detecting if you viewed a remote image in a message from them. Its also possible to embed an executable (malware) in images.

When you receive a message with remote images, Thunderbird will display an alert stating that remote images have been blocked, and the images in the message body will be replaced with simple place-holders (screenshot). If you do want to view the remote images—for example, if you subscribe to an e-mail newsletter that regularly includes remote images—all you need to do is click the "Show Remote Content" button that appears to the right of the alert message. Older versions of Thunderbird used different names for that button such as "Show Images" or "Load Images".

Thunderbird 1.5 defaulted to loading remote images from people who are in your Personal Address Book. Thunderbird 2.0 and later versions block all remote images by default. You can display remote images whenever you read a message from a specific sender by clicking on "Always load remote images from ..." in the e-mail message, as shown below:


This used to add an entry to the address book that had either "Allow remote content" or "Allow remote images in HTML mail" checked for the specific sender. Recent versions store this information in permissions.sqlite and content-prefs.sqlite instead. You can modify that information using Tools -> Options -> Privacy -> Mail Content -> Exceptions.

If you can not see any remote images check that View -> Message Body As is set to "Original HTML". "Simple HTML" and "Plain Text" do not show remote images.

Advanced

Its possible to display all images from any sender, though its not recommended since malware can be embedded in images, and spammers will be able to verify your e-mail address. If you want to do this use the Config editor to toggle the preference mailnews.message_display.disable_remote_image to false.

A better alternative would be to use the Config editor to create a mail.trusteddomains setting that specifies what e-mail domains it should automatically display remote images for. This is much easier than having to specify each email address, but you're taking the risk that you won't get any messages with a spoofed From: header in one of those domains. The setting contains a list of domains separated by commas, with no wild cards, white space or subdomains allowed. This change won't take effect until you restart Thunderbird.

For example:

mozillazine.org is okay
mozilla.com,mozilla.org is okay
*.mozilla.com is invalid
mozilla.com, mozilla.org is invalid
forums.mozillazine.org is invalid

If you can never see remote images because the "Show Remote Images" button is always missing check that permissions.default.image is set to 1 using the config editor.

Gravatars

The Display Contact Photo add-on by default uses photos from the address book but its options has a "Remote photos” tab with a “Enable Gravatars” setting. Gravatar lets you provide a avatar image that many web sites, blogs and some email clients will use. Gravatars are loaded from the Gravatar web-server using a URL containing an MD5 hash of the associated email address. Libravator is a similar service which uses open source software.

Somebody could easily tie your identity to other web sites that use your gravatar, and might be able to harvest your email address. "The entire reason Gravatar offers their service is to collect internet usage data across multiple sites. It is not offered free out of the goodness of their heart. The entire purpose of the service is to analyze the way YOU navigate the internet." [1] [2] [3]

Show All Body Parts

It's possible a image is hidden due to the message being badly structured (nothing to do with privacy). The Show All Body Parts add-on can workaround this. It adds a View -> Message Body As -> All Body Parts command. While that will workaround the problem it is not something you want to use by default due to its side effects.

HTML message converted to plain text

If you send a HTML message with an image (either embedded or on a web server) from one of your accounts to another account it will become a plain text message with no images if the contact's properties has "Prefer to receive messages formatted as: Plain text". The same problem might occur if you send the message to somebody else and their email client has similar settings.

See also

External Links