-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 2015-10-10 01:16, Linda Walsh wrote:
Carlos E. R. wrote:
a) it pops up several message boxes, asking for the password of each mail account.
Often, once the master password is entered, the sessions with the ISP have timed out, and the connections fail; then Thunderbird asks if it should retry. Another bunch of dialogs to close.
This has been hapening for years. ==== You have a login password to your computer. Is it subject to people prying around on it when you aren't around?
I.e. do you 'need' a password for your email accounts?
Wait. It is asking for the passwords of mail accounts outside of my computer, at my ISP, gmail, etc. Thus they are important passwords. And mail account passwors are sensitive material nowdays: a reply to a mail can be used to verify things, like some automatic business transactions. Or they mail you a password, or a confirmation link... Quite sensitive. They are used as a kind of remote personal ID.
The old Tbird used to leave IMAP messages on the server by default, but starting in TB3, it wanted to do global indexing and sorting across mailboxes.
It can be disabled - and on my laptop, I do so, to reduce bandwidth and conserve battery.
b) it asks for the master password - but in several message boxes. --- FF does the same if your restore a session... if you were in the middle of any secure sessions, it asked for your pw so it could reconnect to the secure resource.
It is expected to prompt for that password - but once! Since a few months back, it asks several times. Before it asked just once.
---- well FF did it once for each site, so if you had 10 windows open on 3 sites, and restarted saving tabs, it would come up and ask for the master PW 3 times usually before you could enter it once... though if the net was slow, and you entered the master PW quickly, then the other windows might not come up.
Try entering it just once, and cancel all other prompts. You will see that the first entry is accepted and works for all sessions. This is just bad programming. When the code decides to prompt for the master password, it simply doesn't query other instances or threads or whatever if somebody is already asking for the master password. Then they could just raise that window, or do nothing but wait silently. Same when asking for an account password. Before polling any imap/pop, it should check that it has the password for it, and if it is not there, not try to connect to the site at all. Then, prompt for the master password, if set; if not set or if the user cancels, then proceed with the connection and prompt for the site password when the imap server asks for it and we definitively know we don't have it stored. I suspect that the password controls were just hacked somewhat temporarily, make do, instead of a full thought design :-/
I find tbird can handle many more parallel connections to dovecot, so I have the limit set to about 40-50 for now. Whereas before, with only 3-5 connections, Tbird would be so slow opening each connection that it would timeout... Ug. (this was after I'd disabled SSL, and I guess the TLS implementation wasn't as well tested/optimized?)
So....who knows...maybe they raised the number of parallel connects to compensate for slower authentication?
I wonder how happy my ISP is about that... :-? - -- Cheers / Saludos, Carlos E. R. (from 13.1 x86_64 "Bottle" (Minas Tirith)) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iF4EAREIAAYFAlYYTnkACgkQja8UbcUWM1zApgD/QogeZsHqjIWAKDKhYCtmz1yk OZj9Gut2qHC2/NeJFM4A/0UZhU/DbrjTuVLhxK6pU93yyU3e9aNfeApgvrUbAXmJ =QbzK -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org