2025.03.05.1

---

• Updated to Phoenix 2025.03.05.1

• Added Mullvad Leta back as a default search engine, as it's now free to use

• JavaScript is now blocked via default via a built-in uBlock Origin filterlist (rather than directly changing uBlock Origin's default settings). This gives users more freedom & control, as JavaScript can now be re-enabled if desired, and users can add/customize their own exceptions. Note that you MUST reset uBlock Origin by navigating to Settings -> Reset to default settings... to receive this updated configuration & future configuration updates. You can back up your current settings using the Back up to file... option, and restore your settings after the reset is complete with the Restore from file... option. Apologies for any convenience... this shouldn't be needed again in the future.

• DKIM Verifier settings are now configured via policies instead of preferences

• Other minor tweaks, fixes, & enhancements

---

Codeberg: See here for more details.

GitLab: See here for more details.

GitHub: See here for more details.

---

:)

2025.02.28.1

---

• Updated to Phoenix 2025.02.28.1

• User agent has been frozen to Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:128.0) Gecko/20100101 Thunderbird/128.0 to protect against fingerprinting. This is the same as what Firefox uses on RFP/FPP *(We can't spoof the user agent with RFP/FPP on Thunderbird, as it currently lies and pretends to be Firefox, which causes breakage and undesired behavior (such as breaking the ATO :/) - general.useragent.override -> Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:128.0) Gecko/20100101 Thunderbird/128.0

• Enabled a prompt on Thunderbird's launch to ask users before going online - offline.startup_state -> 1

• Disabled FFmpeg to reduce attack surface - media.ffmpeg.enabled, media.ffmpeg.encoder.enabled, media.ffmpeg.vaapi.enabled, media.rdd-ffmpeg.enabled, & media.utility-ffmpeg.enabled -> false

• Disabled Firefox Translations, as it's unfortunately currently impossible to download languages/actually use in Thunderbird... - browser.translations.alwaysTranslateLanguages -> , browser.translations.automaticallyPopup, browser.translations.enable, & browser.translations.select.enable -> false

• Removed default link to Google Groups - mailnews.messageid_browser.url ->

• Explicitly disabled insecure NTLMv1, as some Thunderbird packages (such as Fedora's) override it... :/ - network.negotiate-auth.allow-insecure-ntlm-v1 -> false

• Explicitly enabled mozilla::pkix certificate verification, as some Thunderbird packages (such as Fedora's) override it... :/ - security.use_mozillapkix_verification -> true

• Other minor tweaks, fixes, clean-up, & enhancements

---

Codeberg: See here for more details.

GitLab: See here for more details.

GitHub: See here for more details.

---

:)

2025.02.21.1

---

• Updated to Phoenix 2025.02.21.1

• Like Phoenix: Removed Ecosia, Qwant, and Qwant Junior as default search engines, due to privacy concerns

• non-macOS: All preferences have been removed from dove.cfg & policies.json - now they are all configured exclusively by dove.js to improve organization & efficiency.

• macOS: All preferences have been removed from policies - now they are all configured exclusively by dove.cfg, to improve organization & efficiency.

---

Codeberg: See here for more details.

GitLab: See here for more details.

GitHub: See here for more details.

---

:)

2025.02.18.2

---

• Temporarily stopped setting certain preferences in Thunderbird's policies to fix AutoConfig Alert pop-ups in certain cases - as Thunderbird doesn't currently appear to support specifying type for preferences in policies...

---

Codeberg: See here for more details.

GitLab: See here for more details.

GitHub: See here for more details.

---

:)

2025.02.18.1

Like Phoenix, Dove now officially supports Flatpaks! 🎉. Simply install dove-flatpak rather than dove from your package manager. If you prefer, you can also just run the installation script - where Flatpaks have now also been added as an option after selecting your distribution.

The only caveat is that your Thunderbird Flatpak must be installed on the system level. We unfortunately don't yet support user Flatpaks, but we're hoping to in the near future.

Additionally, also like Phoenix: Dove for macOS has significantly improved - most notably: you are now no longer required to give your Terminal the App Management permission to receive updates!, resulting in a significant security improvement for your system.

NOTE: To continue receiving updates, macOS users must run the migration script with the command below, depending on your location of Thunderbird:

System:

bash -c "$(wget -O- https://codeberg.org/celenity/Dove/raw/branch/pages/macos/migration/system.sh 2>/dev/null)"

User:

bash -c "$(wget -O- https://codeberg.org/celenity/Dove/raw/branch/pages/macos/migration/user.sh 2>/dev/null)"

After running the migration script, macOS users must also run the new installation script:

bash -c "$(wget -O- https://codeberg.org/celenity/Dove/raw/branch/pages/installer_scripts/macos_install.sh 2>/dev/null)"

Apologies for any inconvenience caused here... but I hope this major security improvement and step forward for Dove will make up for it. ;)

---

• Updated to Phoenix 2025.02.18.1

• Minor tweaks & clean-up

---

Codeberg: See here for more details.

GitLab: See here for more details.

GitHub: See here for more details.

---

:)

2025.02.14.1

---

• Updated to Phoenix 2025.02.14.1

---

Codeberg: See here for more details.

GitLab: See here for more details.

GitHub: See here for more details.

---

:)

2025.02.13.1

---

• Updated to Phoenix 2025.02.13.1

• Updated our default search engines to match Phoenix...

• Allowed earthlng.github.io to use JavaScript in uBlock Origin by default (Useful for testing...)

• Allowed inspecting/debugging local tabs in about:debugging (Tools -> Developer Tools -> Debug Add-ons) by default, as it lets us use a URL bar... - devtools.aboutdebugging.local-tab-debugging -> true

• Removed unnecessary entries that allowed duckduckgo.com & search.brave.com to use JavaScript in uBlock Origin by default

• Enabled a progress dialog for downloads - browser.download.manager.behavior -> 1

• Various other minor tweaks, enhancements, re-organization, and clean-up...

---

Codeberg: See here for more details.

GitLab: See here for more details.

GitHub: See here for more details.

---

:)

2025.02.01.1

---

• Updated to Phoenix 2025.02.01.1.

• Allowed arkenfox.github.io to use JavaScript in uBlock Origin by default (Useful for testing...)

---

Codeberg: See here for more details.

GitHub: See here for more details.

---

:)

2025.01.30.1

---

• Updated to Phoenix 2025.01.30.1.

• Similar to Phoenix, we now include our own recommended extensions and themes in the Recommendations panel of Add-ons and Themes! See here for details on what extensions are included, why, and the criteria for inclusion. Feel free to make suggestions if we're missing an extension or theme you'd like to see! (Currently only includes DKIM Viewer & uBlock Origin - which we preinstall anyways... ;))

• Ensured that local IP addresses are not leaked via EHLO/HELO... - mail.smtpserver.default.hello_argument -> [127.0.0.1]

• Limited classes that can process incoming data for emails & RSS feeds. - mailnews.display.disallow_mime_handlers & rss.display.disallow_mime_handlers -> 3

• Disabled the automatic collection of email addresses for Thunderbird's Address Book by default. - mail.collect_email_address_outgoing -> false

• Explicitly set preferred address display format to Full name and email address by default. - mail.addressDisplayFormat -> 0

• Emails & RSS feeds will now be viewed in plaintext if possible by default. - mailnews.display.prefer_plaintext & rss.display.prefer_plaintext -> true

• Users are now alerted if BCC (Blind Carbon Copy) alerts haven't been addressed. - mail.compose.warn_public_recipients.aggressive -> true

• Disabled showing preview, sender, and subject in email alerts/notifications by default. - mail.biff.alert.show_preview, mail.biff.alert.show_sender, & mail.biff.alert.show_subject -> false

• Explicitly blocked DKIM Verifier from accessing restricted domains and running in private windows. - (The latter currently only works on Nightly)

• Explicitly enabled SmartBlock - extensions.webcompat.enable_shims, extensions.webcompat.perform_injections, & extensions.webcompat.perform_ua_overrides -> true

• Explicitly disabled legacy XMPP gateways for Facebook, Google, Twitter, and Yahoo... - chat.prpls.prpl-facebook.disable, chat.prpls.prpl-gtalk.disable, chat.prpls.prpl-twitter.disable, & chat.prpls.prpl-yahoo.disable -> true

• Disabled reporting chat status as away when idle by default. - messenger.status.awayWhenIdle -> false

• By default, RSS feeds should now open in your default web browser, instead of Thunderbird. - rss.show.content-base -> 3

• Re-enabled the Geolocation API & stopped blocking geolocation prompts by default, as it is fingerprintable, and Thunderbird doesn't support it anyways (+ it's already covered by our other prefs for defense in depth) - geo.enabled -> true, permissions.default.geo -> 0

• Re-enabled the Web Notifications API & stopped blocking notification prompts by default, as it is fingerprintable, and Thunderbird doesn't support it anyways (+ it's already covered by our other prefs for defense in depth) - dom.webnotifications.enabled -> true, permissions.default.desktop-notification -> 0

• Removed the -CanvasExtractionBeforeUserInputIsBlocked FPP override, as Thunderbird doesn't support permission prompts for canvas data extraction... - privacy.fingerprintingProtection.overrides -> +AllTargets,-CSSPrefersColorScheme,-FrameRate,-HttpUserAgent,-NavigatorUserAgent

• Allowed certain testing websites to use JavaScript in uBlock Origin by default. - abrahamjuliot.github.io, browserleaks.com, deviceinfo.me, & permission.site

• Enabled the ability to report malicious add-ons/themes to Mozilla by default. - extensions.abuseReport.enabled -> true

• Enabled viewing the timezone/offset of senders by default. - mailnews.display.date_senders_timezone -> true

• Enabled showing progress when a message is being saved/sent... - mailnews.show_send_progress -> true

• Enabled the UI toggle for controlling dark theme in the message panel. - mail.dark-reader.show-toggle -> true

• Other minor tweaks and fixes :)

---

Codeberg: See here for more details.

GitHub: See here for more details.

---

:)

2025.01.27.1

FYI: Users who manually installed Dove on macOS or GNU/Linux who used the sudo mv commands from the README are highly recommended to reinstall Dove with the updated steps, due to potential security issues. Thank you to doomedguppy for discovering & reporting this issue on Phoenix, and thank you to @Modaresisofthard for the prompt response and fix.

---

• Updated to Phoenix 2025.01.27.1.

• Installed + hardened DKIM Verifier by default (See details - https://codeberg.org/celenity/Dove/issues/6 - Thanks to @boredsquirrel for the suggestion! 💜

• Disabled macOS Spotlight & the Windows File Indexer by default - mail.spotlight.enable, mail.winsearch.enable, searchintegration.enable -> false, mail.spotlight.firstRunDone & mail.winsearch.firstRunDone -> true

• Permission is now always required for launching external apps. - mail.external_protocol_requires_permission -> true

• Disabled WebRTC by default for attack surface reduction - media.peerconnection.enabled -> false

• Users are now notified when downloads are initiated and completed by default. - browser.download.manager.focusWhenStarting, browser.download.manager.showAlertOnComplete, browser.download.manager.showWhenStarting -> true

• Added additional prefs for sanitizing data on exit - privacy.clearHistory.cookiesAndStorage, privacy.clearOnShutdown.cookies, privacy.clearOnShutdown_v2.cookiesAndStorage, & privacy.clearSiteData.cookiesAndStorage -> true

• Explicitly disable status bar spoofing - dom.disable_window_status_change -> true

• Re-enabled Thunderbird's Password Manager by default, as it's the only way to store account passwords... - OfferToSaveLoginsDefault -> true, signon.rememberSignons -> true

• When saving a message to a file, underscores are now used in the filename instead of spaces by default... - mail.save_msg_filename_underscores_for_space -> true

• Other minor tweaks and fixes :)

---

Codeberg: See here for more details.

GitHub: See here for more details.

---

:)