Opened 5 months ago

Last modified 5 months ago

#22975 new enhancement

Make it harder for users to open links

Reported by: cypherpunks Owned by: sukhbir
Priority: Medium Milestone:
Component: Applications/TorBirdy Version:
Severity: Minor Keywords:
Cc: Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

Maybe it's a good idea to disable clickable links by setting
network.protocol-handler.external-default [1], it not just prevents users to open a link by accident but also minimizes the risk of phishing (hopefully most Thunderbird users don't just copy paste them, for people who insists on opening links, there's still a way left by right-clicking on the link and to just use the context menu). Additionally, it might be useful to disable punycode (network.IDN_show_punycode [2]), if disabled the ascii link is visible in the status bar (probably most users type the url or copy/paste it by using their password manager, but seeing something like https://www.xn--80ak6aa92e.com/ instead of https://www.аррӏе.com/ (in the status bar, what's hardly notable) doesn't harm them either)

[1] http://kb.mozillazine.org/Network.protocol-handler.external-default

[2] http://kb.mozillazine.org/Network.IDN_show_punycode

Child Tickets

Attachments (1)

punycode.JPG (25.3 KB) - added by cypherpunks 5 months ago.
show ascii representation in statusbar

Download all attachments as: .zip

Change History (2)

comment:1 in reply to:  description Changed 5 months ago by cypherpunks

Replying to cypherpunks:

it not just prevents users to open a link by accident but also minimizes the risk of phishing [...], there's still a way left by right-clicking on the link and to just use the context menu).

My mistake, Search for and Open Link in Brwoser from the context menu is also disabled.

Last edited 5 months ago by cypherpunks (previous) (diff)

Changed 5 months ago by cypherpunks

Attachment: punycode.JPG added

show ascii representation in statusbar

Note: See TracTickets for help on using tickets.