SECURITY HOLE: Firefox 2.0 exposes your PASSWORDS to everyone in plain text

Toggle sidebar Toggle sidebar
kamper

kamper

Diamond Member
Mar 18, 2003
5,513
0
0
The linked post may be a bit alarmist, but it's not a bad thing to know about. I'm still on 1.5 but after reading it I noticed that have some relatively important passwords in the open. It's a personal computer which is always password protected and my ~/ is encrypted (when the machine's off anyway, which isn't often) but I'd still rather have the master password on it and do now. My fault for not thinking it through in the first place, but it would have been nice for firefox to suggest that I create a master password when I agree to save a password.
 
C

clickynext

Platinum Member
Dec 24, 2004
2,583
0
0
Originally posted by: MrChad
Originally posted by: janeyard
http://www.faqqly.com/helps/view/1/661
Click to expand...

That's the dumbest "security alert" I've ever read. If you're stupid enough to setup Firefox to remember your passwords on a PUBLIC computer, you deserve to have them stolen.
Click to expand...

I disagree. I never store my passwords on any computer, but for a regular user who doesn't know anything, they are usually led to believe that their information is somehow secured.
 
MrChad

MrChad

Lifer
Aug 22, 2001
13,507
3
81
Originally posted by: clickynext
Originally posted by: MrChad
Originally posted by: janeyard
http://www.faqqly.com/helps/view/1/661
Click to expand...

That's the dumbest "security alert" I've ever read. If you're stupid enough to setup Firefox to remember your passwords on a PUBLIC computer, you deserve to have them stolen.
Click to expand...

I disagree. I never store my passwords on any computer, but for a regular user who doesn't know anything, they are usually led to believe that their information is somehow secured.
Click to expand...

If someone has physical access to your machine, nearly all security measures can be thrown out the window.
 
M

MSCoder610

Senior member
Aug 17, 2004
831
0
71
Seems like a dumb reason to not "upgrade" to 2.0 - to me, that means moving up from Firefox 1.5 or something like that. Firefox 1.5 works the same way (Options>Privacy>Passwords>View Passwords>Show Passwords) - I don't use that feature in Firefox at all anymore.

Also, if I remember correctly, there's a simple program you can download that reveals all of the saved passwords from Internet Explorer, in plain text also, so it isn't just a Firefox issue.
 
S

screw3d

Diamond Member
Nov 6, 2001
6,906
1
76
It has been there a long time ago.. and works the same way for other browsers. Not saying that it is a good thing though. In other words, newbie + pebkac + blog = big whoopie doo
 
Cerpin Taxt

Cerpin Taxt

Lifer
Feb 23, 2005
11,940
542
126
Originally posted by: screw3d
It has been there a long time ago.. and works the same way for other browsers. Not saying that it is a good thing though. In other words, newbie + pebkac + blog = big whoopie doo
Click to expand...
lmao :D

 
corkyg

corkyg

Elite Member | Peripherals
Super Moderator
Mar 4, 2000
27,370
239
106
I carry my passwords on a thumb drive encrypted by Roboform (Pass2Go). Why would anyone put them on a public machine? IMHO, much ado about nothing.
 
C

CTho9305

Elite Member
Jul 26, 2000
9,214
1
81
It's trivial to get your Internet Explorer saved passwords too. There is **NO WAY** to store passwords securely on the local machine if you don't require a master password to access them. Firefox lets you create such a "master password", which it then uses to encrypt the other ones.

Feel free to digg it - it's the kind of sensational misleading story lots of ID10Ts love.
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom