Not logged in
Log in now
Create an account
Subscribe to LWN
LWN.net Weekly Edition for May 23, 2013
An "enum" for Python 3
An unexpected perf feature
LWN.net Weekly Edition for May 16, 2013
A look at the PyPy 2.0 release
Leaving your site passwords in plaintext is just stupid. Stupid enough for them NOT to do it on windows.
Google Chrome and master passwords
Posted May 21, 2010 13:35 UTC (Fri) by jwarnica (subscriber, #27492)
Chrome doesn't do RAID, it doesn't do tape backups, it doesn't patch the OS with updates. Such services and tasks are clearly something else's problem.
Disk encryption exists, if currently unusual. Locking screensavers are everywhere, if not always used.
Users have the ability, today, to protect against the attacks that a browser master lock also provide.
A browser master lock is:
- not going to be as effective (system based security would both protect against more things, and likely be technically better as its importance would get it more attention from devs and testers)
- be annoying to those using other locks (I hate the gnome keyring thing, for example. I just logged in to my account, and you want me to log in again?)
Posted May 22, 2010 8:37 UTC (Sat) by tzafrir (subscriber, #11501)
If I don't want to install a different password (and copy/paste passwords, which may expose them on the clipboard), what should I do?
Posted May 22, 2010 21:52 UTC (Sat) by dlang (✭ supporter ✭, #313)
have an application, device remember your passwords but type them, don't copy-n-paste them
get a browser plugin that generates a password based on the website and what you type so that you don't have to remember a different password per website, but each website gets a different password
Posted May 22, 2010 18:07 UTC (Sat) by salimma (subscriber, #34460)
Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds