enable network.IDN_show_punycode by default in Thunderbird to fix URL not showing real Domain Name - Homograph attack (Punycode)

very hard to notice Phishing Scam - Firefox / Tor Browser URL not showing real Domain Name - Homograph attack (Punycode) also applies to Thunderbird.

Should we set network.IDN_show_punycode to true by default?

There should not be any fingerprinting issues since Thunderbird is not a browser.

2 Likes

sadly Thunderbird has built-in browser…

I haven’t seen it. That browser is absolutely not advisable. I’d hope torbirdy would disable it.

Implemented.

2 Likes

already said that , but no maintainer …

1 Like

etc/thunderbird/pref/40_security-mic.js should be named etc/thunderbird/pref/40_security-misc.js

You mispelled “security-misc”.

Technically it is. Thunderbird is based on Firefox.

1 Like