TorBirdy 0.1.3 -- Our fourth beta release!

We are happy to announce the fourth beta release of TorBirdy: 0.1.3. All users are encouraged to upgrade as soon as possible, especially if you are using Thunderbird 31.

Notable changes in this release include:

0.1.3, 23 Oct 2014

* The default keyserver (hidden service) has been updated:
- hkp://qdigse2yzvuglcix.onion
* Show the Sender header in message pane (closes #10226)
* Draft messages on IMAP accounts are now saved locally (closes #10309)
* Restore preferences to the user's own defaults instead of Thunderbird's
(closes #10588)
* network.proxy.no_proxies_on is no longer set to "localhost, 127.0.0.1"
(thanks to Carsten N.)
* Disable automatic downloading of new messages for POP3 accounts
(closes #11188)
* Update the reply_header author behaviour (closes #13480)
* TorBirdy is now available in 31 languages:
- Arabic
- Catalan
- Czech
- Danish
- German
- Greek
- English (US)
- English (Great Britain)
- Spanish
- Basque
- French
- Hebrew
- Hungarian
- Indonesian
- Italian
- Korean
- Latvian
- Norwegian Bokmål
- Norwegian Nynorsk
- Punjabi
- Polish
- Portuguese
- Portuguese (Brazil)
- Romanian
- Russian
- Slovak
- Slovenian
- Serbian
- Swedish
- Turkish
- Ukrainian

We offer two ways of installing TorBirdy -- either by visiting our website (sig) or by visiting the Mozilla Add-ons page for TorBirdy. Please note that there may be a delay -- which can range from a few hours to days -- before the extension is reviewed by Mozilla and updated on the Add-ons page.

As a general anonymity and security note: we are still working on two known anonymity issues with Mozilla. Please make sure that you read the Before Using TorBirdy and Known TorBirdy Issues sections on the wiki before using TorBirdy.

We had love help with getting our patches accepted, or anything that you think will help improve TorBirdy!

Feel free to follow along with the release on the tor-talk mailing list.

Anon

October 23, 2014

Permalink

Why is installing TorBridy from Mozilla Add-ons page is a good idea? remember the TorButton incident?

Anon

October 23, 2014

Permalink

You're using different (unpublished) signing key ID 744301A2 then published one ID 1245F783 on https://trac.torproject.org/projects/tor/wiki/torbirdy#VerifyingtheXPI

gpg --verify torbirdy-0.1.3.xpi.asc torbirdy-0.1.3.xpi
gpg: Signature made Thu 23 Oct 2014 04:33:09 PM CEST using RSA key ID 744301A2
gpg: Good signature from "Jacob Appelbaum "
gpg: WARNING: This key is not certified with a trusted signature!
gpg: There is no indication that the signature belongs to the owner.
Primary key fingerprint: D2C6 7D20 E9C3 6C2A C5FE 74A2 D255 D3F5 C868 227F
Subkey fingerprint: AA67 9F13 7971 DA32 FA86 E2E6 0263 6620 7443 01A2

Please correct so we can trust this key!

I've updated the wiki page to reflect my new GnuPG key:

pub 4096R/D255D3F5C868227F 2014-06-27 [expires: 2024-06-24]
Key fingerprint = D2C6 7D20 E9C3 6C2A C5FE 74A2 D255 D3F5 C868 227F
uid Jacob Appelbaum
sub 3072R/02636620744301A2 2014-06-27 [expires: 2015-06-27]
sub 3072R/1A055A481801A819 2014-06-27 [expires: 2015-06-27]

If you trusted the old keys, I've created a transition statement and you can use it to follow the path to my new keys.

Anon

October 23, 2014

Permalink

These are great news. Torbirdy is a big big help for many people. I was afraid development had stopped but I see it's still going on :)
Keep up the good work.

Anon

October 24, 2014

Permalink

When will the timestamp disclosures be fixed? Couldn't find any roadmap to that. What needs to be done, and what can we do to help?

The timestamp disclosures are via the date and the message-ID headers (relevant tickets: #6314, #6315). We have submitted patches to Mozilla (902573, 902580) that have not yet been merged. The patches probably need more work and we are looking for volunteers to work on them and help us to get them merged. We will be doing a blog post about this soon and put out a call for help.

Facebook back to blocking Tor again!

"Access Restricted (Bad IP)
You are trying to access Facebook from an IP (Internet Protocol) address that's associated with a misconfigured ISP (Internet Service Provider) or abusive behaviour. If you think that this is an error, please tell us more.
Subject
Your email address
Please explain why you think this is an error
Are you using a proxy?
Yes
No
I don't know
Thanks for taking the time to submit a report. While we don't reply to every report, we'll let you know if we need more details."

TorBirdy is now available in 31 languages

no Japanese? .·´¯`(>▂<)´¯`·.

We have the Japanese translation for TorBirdy, but unfortunately, Thunderbird is not available in Japanese (there is no Japanese language pack). Therefore we didn't include the Japanese translation; this is also true for many other languages whose translations we have but there is no corresponding Thunderbird locale.

Why not have a dummy translation for thunderbird? A translantion file for "japanese" that still has thunderbird in english but gives torbirdy japanese translation?

Or maybe the person who asked about japanese would like to contribute a japanese translation for thunderbird ;)

We used to do that before but then stopped because it made the translation management process difficult. But you are right, we can have placeholder strings. We can try to incorporate this from the next release.

Maybe I'm wrong but I see some collateral coincidence with possibilities over here
(with a little help from the people that do still support older computer systems /Mac's ;)

When I was actually looking for Torbrowser solutions for older not supported / soon unsupported Mac's, I Came across two packages of software that I (out of curiosity) also tested together with the new Torbirdy addon.

Torbirdy quick test with a forked Torbrowser for PowerMac/MacPPC (yes! and it's working! Needs some upgrade work though) and Tenfourbird (Thunderbird fork).
Torbirdy was only half successfully working, could receive mail but it failed yet on the sending option : smtp error message (provider problem?). Did normal Pc/Mac users get this message as well?

Anyway, on the SourceForge pages of the Tenfourbird for PowerMac page you can also find a Japanese language pack for Tenfourbird that may work for your Thunderbird as well ?
http://en.sourceforge.jp/projects/tenfourbird/releases/61741/#release-d…

If it's working, then the Japanese Torbirdy could be distributed.

(if so, please point people with old Mac's to the Japanese Tenfourbird project as thanks in return then. Btw, I'm not involved whatsoever in that project, just like to support people with old happy good working Mac's).

I installed the TorBirdy 0.1.3 on my portable thunderbird, but after the installation, a black hat icon was appeared over the icon of "PortableApps.com" on the theme of PortableApps.com Platform. What's that? Was my portable USB device hacked? And, how to solve it? Thanks!

When downloading Torbirdy 0.1.3 from your site (I currently have Torbirdy 0.1.2 being used with Thunderbird), it won't go, because Firefox throws this message: "Torbirdy could not be installed because it is not compatible with Firefox 33."
(Somebody else also noted compatibility problems with Firefox 34, apparently. Please note I already have the most current Tor Browser Bundle.

Of course, I tried at the Mozilla add-ons page, and it's not there yet - still has the 0.1.2 version. I want 0.1.3 as an add-on for my Thunderbird!

So, I went to the handy-dandy instructional that I used to get 0.1.2 installed in the first place.... https://securityinabox.org/thunderbird_torbirdy

(Securityinabox is a great resource btw.)

and, I couldn't get any further, because the first step it shows is to send me to the Mozilla add-ons page, which of course has 0.1.2 but not 0.1.3.

So then I tried something else, just for fun:
(from terminal)
sudo apt-get install torbirdy-0.1.3.xpi
It couldn't find the package.
ditto for sudo apt-get install torbirdy-0.1.3

So I went here:
https://trac.torproject.org/projects/tor/wiki/torbirdy
Buried in the depths of this 'guidance' was a link to the "most recent version of Torbirdy" - aha, I've found it at last!:
https://addons.mozilla.org/thunderbird/downloads/file/199062/

What popped up? A notification that this was Torbirdy 0.1.1.

So... please explain what kind of l33t skills I need to find Torbirdy 0.1.3 and get it into my Thunderbird. Until you do, I think that maybe only a few hundred people in the known universe are going to be able to install it.

Thanks for the 0.1.2 remark, didn't notice it wasn't the 0.1.3. on the mozilla pages (how could one miss that?).

Anyway, on a Mac it worked like this. Now go to
https://dist.torproject.org/torbirdy/

'ctrl-click' or 'right-click' on the link of your choice, the
'torbirdy-0.1.3.xpi' (23-Oct-2014 14:53 147K)
and choose, from the mouse-sub-option-menu you'll get, the option "Save link as.."
Then the download procedure will start, you'll get the question window where to save the link (aka the actual xpi file itself), enter, done.

Hopefully it will work for you.

Tried that just by clicking on it. Once again, got the message:
"Torbirdy could not be installed because it is not compatible with Firefox 33.0"

I don't think Torbirdy 0.1.3 is ready for release.

Note: I am not on a Mac, thankfully, and I will never use a Mac or Windows OS, but if you are using a Mac, you should read this:
https://twitter.com/schneierblog/status/527059694611726336
and this:
http://datavibe.net/~sneak/20141023/wtf-icloud/

Tor Birdy is for the mail application, Thinderbird, not Firefox. Go to the tools for Thunderbird, and add it, instead of your browser.

I am aware that Tor Birdy is for Thunderbird! I already use Tor Birdy with Thunderbird. Please read my prior posts. (Admittedly this is an anonymous posting thread but if you follow it up the thread to earlier comments, you can see what is going on!)

Please excuse me for being frustrated, but I am a fairly technical person, and if I am having trouble it is obvious that it will be nearly impossible for large numbers of people to have the benefit of the new version of Tor Birdy, which is a very useful tool(!!) Most people would have given up after the first frustrating step (see earlier posts above). That is a fact. Ease of use in terms of the install process is seriously lacking - this is a usability issue!

With that out of the way, here I go again, following the instructions that I used quite a long while ago (successfully I might add) to install the previous version of Tor Birdy:
https://securityinabox.org/thunderbird_torbirdy

(This is all being done today, again)

I can't get past the first step in the process, because as I have previously stated, it takes you to this link:
https://addons.mozilla.org/en-us/thunderbird/addon/torbirdy/
When you go there it is plain to anyone that it says 0.1.2 and not 0.1.3.

So then my next step is to go to the link provided at
https://trac.torproject.org/projects/tor/wiki/torbirdy
As you can see from reading that guidance, there is a link to what is called "the most recent version" of Tor Birdy.
https://addons.mozilla.org/thunderbird/downloads/file/199062/
But it's not the most recent version, because even though I already have 0.1.2, nobody has bothered to update the "most recent version" at the link above. It's still showing the 0.1.1 version(!)

OK, so my next step is this:
To go to
https://dist.torproject.org/torbirdy/
So I clicked on the link that appears as follows:
torbirdy-0.1.3.xpi 23-Oct-2014 14:53 147K
I allowed Thunderbird to download it and waited for the inevitable errof of
"Torbirdy could not be installed because it is not compatible with Firefox 33.0" that always appears.
But this time the error did not appear, because one of the devs has evidently fixed something that was causing the error message to occur.

Finally, a small window appeared indicating that the plugin had been downloaded!
Joy to the world.

Next step: Get the updated plugin into Thunderbird.
So back to the original instructions found at:
https://securityinabox.org/thunderbird_torbirdy
and I followed the steps beginning from Step 1 (now that I've successfully downloaded the latest plugin).
But it cannot be found even when the "All Files" selection is made (which shows all file types) following the securityinabox steps.
And it cannot be found in any of the usual suspect folders.
Finally shows up in a file search, but there is no file location associated with it. Problems!

So that didn't work. My last best hope is to try and download it directly from terminal, which by the way is not a workable solution for the vast majority of users, who'd like to be able to download it directly.

So now I do this:
- I close thunderbird (which still has Tor Birdy 0.1.2 in it, no problems with that)
- And I go into terminal and do the following:
sudo apt-get install xul-ext-torbirdy
And it doesn't work - it throws the following error message:
E: Unable to locate package xul-ext-torbirdy

As I've said before, your 0.1.3 was not ready for release. I am guessing a very tiny percentage of overall Tor Birdy users actually have managed to install 0.1.3. I will continue to use 0.1.2 until such time as the developers get the kinks out of the new version of Tor Birdy.

Next step: I will try simply going to terminal to get it as follows:

Hopefully someday you'll be also aware this is not really the place to initiate flame war discussions about peoples platform preferences.
It's quite irrelevant.

Just at least try to keep in mind what the Tor 'thing' is all about.
This; "Anonymity Online. Protect your privacy. Defend yourself against network surveillance and traffic analysis."
Not about peoples platform preferences.

Try to be nice to others and maybe people will listen to your problems (again) and even maybe give suggestions (again).

How can you report a bug anonymously? Is it an option to paste it here with a clear question to the moderation to send it to Sukhbir and NOT placing it here? If so I will. It seems a very serious bug that maybe asks for an asap update release.

Your best bet is to go to https://bugs.torproject.org/ and make an account (ok, it's pseudonymous, not anonymous) and tell us there.