| |||||||||||||
Google Chrome and master passwordsGoogle Chrome and master passwordsPosted May 20, 2010 5:46 UTC (Thu) by thedevil (subscriber, #32913)Parent article: Google Chrome and master passwords
Is nobody using "desktops" anymore? Nobody has physical access to my desktop without breaking into my apartment, but if someone gets remote access (which cannot be completely ruled out, since I run at least sshd), having the credentials encrypted will make a big difference.
(Log in to post comments)
Google Chrome and master passwords Posted May 20, 2010 17:20 UTC (Thu) by intgr (subscriber, #39733) [Link]
This is exactly the sort of "false sense of security" that Chrome devs are talking about. If someone gets access to your user account -- remotely or not -- then they can do pretty much *anything* with it, including setting up a keylogger or dumping the memory of your running Chrome process.
Google Chrome and master passwords Posted May 22, 2010 5:15 UTC (Sat) by thedevil (subscriber, #32913) [Link]
Wouldn't installing a keylogger require root access?
The point about memory dump is true. But I don't see *any* way to avoid that risk, even if I typed all the passwords manually.
Google Chrome and master passwords Posted May 31, 2010 11:56 UTC (Mon) by robbe (guest, #16131) [Link]
> Wouldn't installing a keylogger require root access?
Not if you only care about the keys typed by this user.
|
|||||||||||||