Should I always stay logged in?

[TazExprez]

I always tell my browser to remember my login, or to stay logged on, in different forums, because I am too lazy to type in my info all the time. Is this a good idea, or do most of you login every time you come here?

 

[Codewiz]

well I know that for anandtech that the password in the cookie is encrypted so you are somewhat safe in that regard. I personally always stay logged in but I understand why someone wouldn't want to.

 

[Azraele]

I have it set to remember my login.

It's just a matter of personal preference I think.

 

[TazExprez]

Thanks for your replies. I guess I will stay logged in forever.

 

[TazExprez]

I have one more question. If you tell it to remember your login, do you always appear to be online?

 

[Azraele]

Originally posted by: TazExprez
I have one more question. If you tell it to remember your login, do you always appear to be online?

I think after a certain amount of inactivity (15 minutes?) you appear offline (your lightbulb turns blue).

 

[NetworkDad]

Originally posted by: Codewiz
well I know that for anandtech that the password in the cookie is encrypted so you are somewhat safe in that regard. I personally always stay logged in but I understand why someone wouldn't want to.

No, the information is not encrypted during transit. If you've ever used a packet sniffer, you can plainly see in clear text exactly what the password is when being submitted.

I recently checked myself on a sniffer to see what it looked like during transit.

 

[Codewiz]

Originally posted by: NetworkDad

Originally posted by: Codewiz
well I know that for anandtech that the password in the cookie is encrypted so you are somewhat safe in that regard. I personally always stay logged in but I understand why someone wouldn't want to.

No, the information is not encrypted during transit. If you've ever used a packet sniffer, you can plainly see in clear text exactly what the password is when being submitted.

I recently checked myself on a sniffer to see what it looked like during transit.

Did I EVER say anything about the transfer of the data???? NOOOO!!!! I said that it is encrypted in the cookie(Take a look at your AT cookie). Meaning that some jackass can't get on your computer and open the cookie in notepad and read your password. Staying logged in or not would have NO effect on this because is someone is able to sniff your network then it won't matter if you stay logged in all the time or not because the moment you did login they would be able to see your password.

As anyone knows: Email and ftp all transmitt passwords in plaintext for the forum doing the same is no big deal because it is stupid to go to https for a damn forum.......

 

[Yomicron]

The password in the cookie may be encrypted, but all someone has to do is go to the Profile page and look at the source to find the password.

 

[Codewiz]

Originally posted by: Yomicron
The password in the cookie may be encrypted, but all someone has to do is go to the Profile page and look at the source to find the password.

And all someone has to do to figure out any IE password is run a simple program that will reveal all the passwords that IE has saved.

My point was simply that there is not much more danger from staying logged in versus not staying logged in. Yes if you are REALLY paranoid then don't stay logged in but if someone wants your password they will have it especially if they have access to your computer.