Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Cuireadh an snáithe seo sa chartlann. Cuir ceist nua má tá cabhair uait.

Under GDPR I need to password protect address books - ie I need selected address book lists to have individual passwords.

more options

I have several address book lists. These must be sub-folders in the address book. like Personal AB

 List1
 List2 
 List3 

I want these Lists to have properties (a) different passwords and (b) "BCC only" attributes so that the Lists cannot be opened by someone else and they can never be used except in BCC mode. When placing the lists in the to field of an email Thunderbird should detect that this is a password protected list and ask for the password and automatically switch to BCC.

This would make the lists safe to use - I do not see how to do this easily otherwise?

Any ideas? Best Gilbert

I have several address book lists. These must be sub-folders in the address book. like Personal AB List1 List2 List3 I want these Lists to have properties (a) different passwords and (b) "BCC only" attributes so that the Lists cannot be opened by someone else and they can never be used except in BCC mode. When placing the lists in the to field of an email Thunderbird should detect that this is a password protected list and ask for the password and automatically switch to BCC. This would make the lists safe to use - I do not see how to do this easily otherwise? Any ideas? Best Gilbert

All Replies (6)

more options

The best way to protect your TB profile, with all the mail and address books, is to set a password on your Windows user account. To ensure that mailing lists are sent as BCC, you can try the version of the Use Bcc Instead add-on that is compatible with TB 60.

more options

Thank you.

However, I am not clear on how the Window's password (which I have) protects my Lists independently. Presumably the hackers can get to the TB Address Book?

Also the Use Bcc Instead add-on is no longer supported.

Sorry but I do not think my problem is solved.

It is essential that I protect the Lists - I am instructed to do so.

Best Gilbert

more options

A Windows password prevents anyone who has physical access to your computer from reading any unencrypted data. But if your computer were to give access to remote hackers via malware installed on your computer, it probably wouldn't matter if your data was password-protected or encrypted, as eventually it would be exposed, e.g. when you actually applied a mailing list in TB.

There is nothing on the internet that is 100% safe - only various degrees of protection.

The original Use Bcc add-on is no longer supported, but it has been updated by another author for TB 60.

more options

Hi Gilbert, I don't think Mozilla products have "encryption at rest" for any stored data except passwords secured with a Master Password.

You could consider whole-disk encryption or volume encryption if you need to prevent physical access to Thunderbird data on the drive. Obviously that affects your entire system and may not be appropriate for your environment.

I vaguely recall a product that would encrypt individual files, and then after you entered your password, decrypt on the fly when accessed by programs. I think it was intended more for documents, and I don't know how that would interoperate with Thunderbird; it could be a performance problem.

more options

The following mozillaZine article came up in a search. Some of the suggestions may be obsolete, but others should still work. It is oriented toward the message folders, which you probably should be concerned about as well, but if you protect the entire profile folder, that would cover address book files, too.

http://kb.mozillazine.org/Protecting_the_contents_of_the_profile_-_mail

more options

Thanks The range of potential solutions is quite large and they seem to address more general issues. Encrypting files seems closest, but is rather involved. it is probably worth investigating further.

Best Gilbert