On 28-3-2015 17:15, NFN Smith wrote: > Paul B. Gallagher wrote: > >> >> My long-term, consistent experience with POP mail -- admittedly not the >> same as IMAP -- is that if any SM component is open, SM will continue >> polling regularly and retrieving mail for any and all accounts whose >> settings so specify. > > By my experience with both POP and IMAP (and I don't let my client > remember passwords), once you've authenticated to the server, there's no > way of dis-authentication, short of restarting Seamonkey. Closing the > mail window will not do that, if you have any other Seamonkey window > open (Browser, Address book, options, security manger etc) -- > essentially, that's the Seamonkey.exe binary loaded into memory.
It is possible to store your password protected with a master password. When you enable FIPS (Federal Information Processing Standard) you can login and logout of the security device. When logged out, SeaMonkey cannot access the password and cannot check for new mail... Go to Tools -> Preferences -> Privacy & Security -> Certificates -> Security Devices -> Manage security devices -> Enable FIPS. > >> >> Moreover, changes to the server settings -- at least in previous >> versions, haven't tested it lately -- seem to take effect only after >> closing SM. Whenever I want to make sure SM will not retrieve mail, I >> change the settings and shut the program down before relaunching to >> browse in peace. >> >> Edit | Mail & Newsgroups Account Settings | Account Name | Server >> Settings >> [ ] Check for new messages every nn minutes >> [ ] Automatically download new messages > > > For the original poster, if he's annoyed about getting alerts for new > messages, this will definitely turn off the alerts. > > However, the way I read the original post, it looks like he wants to > close out the mail window (but continue to use the browser), and then > when he re-opens the mail window, getting new prompts for access to the > mail server. > > If I'm correct, then that's not going to happen, simply because of the > dynamics of Seamonkey as a suite, where the browser and the mail client > are both part of the same binary. Even if a mail window isn't > displayed, the mail client is still open if the browser is open. > Unfortunately, there is no construct with an email client that is > analogous to working with browser and a site that requires > authentication (and allowing either explicit logout, or implied logout, > by discarding the cookies used for authentication). If that's what the OP wants, a master password and FIPS aren't going to do any good either, because when logged out, you won't be able to access any of your stored passwords or any https secured website. > > Thus, the only way of requiring a new authentication to an email server, > when a window is displayed is in using browser and email clients that > are separate from each other (e.g., Firefox and Thunderbird), where > closing the mail client forces unloading of the binary from memory. > > > I understand not allowing the client to save the password. Personally, I > like having to enter the password for each session, because it ensures > that I am familiar enough with that password that I won't forget it. In > the support environment I work in, we use email addresses for > authentication to several web-based services, and we have it happen all > too often where somebody lets the email client remember passwords, but > then when the user needs that password in another context, all too > often, the user can't remember precisely what is used. > > However for the original poster, I don't think that's the rationale for > wanting to have to enter passwords. I'm guessing a fundamental distrust > for any access to the mailbox, and I think there's other approaches for > ensuring adequate protection. If the user is sitting at the keyboard, > then access to mail shouldn't be an issue. If the user leaves the > keyboard, and is concerned about the possibility of access by others, > then the fastest way to protect everything is to make sure that the > screen saver is password-protected. Thus, if the screen saver engages > (or the machine is put into sleep or hibernate mode) then it takes the > system password to get back to the desktop. > > It isn't that hard to get into the habit of locking the screen, before > leaving your desk. > > > Smith > Onno _______________________________________________ support-seamonkey mailing list [email protected] https://lists.mozilla.org/listinfo/support-seamonkey
