Taking a leap of faith!

Lost User

I just installed the very latest version of the Pre-release of the Fall 2017 Windows 10 Creator's Update. This installs as version 170513-2252 17603-1840. As reported earlier, I reported a bug in the previous pre-release to Microsoft: You could not copy and paste passwords into password boxes in Edge, using [CTRL] - V. Well, it seems that Microsoft listened, because that bug has now been squashed. [CTRL] - V is working just fine in the latest release. So, I'm taking a leap of faith and will keep running today's version, kicking its tires to see if anything else needs attention! :)

Get me coffee and no one gets hurt!

ZurdoDev

Cornelius Henning wrote:

You could not copy and paste passwords into password boxes in Edge, using [CTRL] - V.

Wasn't that a feature? It's more "secure" having to type in a password vs. just pasting one.

There are two kinds of people in the world: those who can extrapolate from incomplete data. There are only 10 types of people in the world, those who understand binary and those who don't.

Lost User

Quote:

It's more "secure" having to type in a password vs. just pasting one

I disagree. If you copy and paste passwords from an encrypted and password protected Excel spreadsheet your passwords can be much longer and complex. Also typing a password exposes you to keyloggers.

Get me coffee and no one gets hurt!

ZurdoDev

Cornelius Henning wrote:

I disagree

I do too. I've seen other programs (one or two) that prevented paste into the password. I've even seen websites that do it.

There are two kinds of people in the world: those who can extrapolate from incomplete data. There are only 10 types of people in the world, those who understand binary and those who don't.

Lost User

You practice security your way and I'll do it my way!

Get me coffee and no one gets hurt!

kmoorevs

RyanDev wrote:

Wasn't that a feature?

Miss the joke icon? The only insecure thing I can think of with pasting is that the password stays on the clipboard until I replace it. Copy/Pasting from my password app enables the use of complicated and far more secure passwords than if I had to type them in manually.

"Go forth into the source" - Neal Morse

ZurdoDev

kmoorevs wrote:

Miss the joke icon?

Unfortunately no. I've seen applications do it.

There are two kinds of people in the world: those who can extrapolate from incomplete data. There are only 10 types of people in the world, those who understand binary and those who don't.

Sander Rossel

Cornelius Henning wrote:

If you copy and paste passwords from an encrypted and password protected Excel spreadsheet your passwords can be much longer and complex.

The post-its with all my passwords on my monitor beg to differ :) Anyway, I'm going to do some banking stuff and after that off to bed, goodnight! sanderrossel g5#Hr@!45Td%fS357Po0$#_poS

Best, Sander arrgh.js - Bringing LINQ to JavaScript SQL Server for C# Developers Succinctly Object-Oriented Programming in C# Succinctly

Lost User

Clipboard hooks. Simple solution, open your app in a separate desktop with limited rights.

Bastard Programmer from Hell :suss: If you can't read my code, try converting it here[^][](X-Clacks-Overhead: GNU Terry Pratchett)

Lost User

I see your: g5#Hr@!45Td%fS357Po0$#_poS and I raise you: sWd45{{lm==946??hy{422}=?}}GindK{}ll7PXRFh655Erw{90##Mki**55{}KlimdWww33nn2K5X6HKE :)

Get me coffee and no one gets hurt!

Peter_in_2780

.... or use something like KeePass, which only leaves the password on the clipboard for a few seconds.

Software rusts. Simon Stephenson, ca 1994. So does this signature. me, 2012

dandy72

Cornelius Henning wrote:

very latest version

Not quite.

Cornelius Henning wrote:

This installs as version 170513-2252.

The Insider Update I have in a VM currently reports as 170603-1840.

Lost User

..on a separate desktop as I described; otherwise any clipboard-hook will have the contents as soon as the clipboard changes.

Bastard Programmer from Hell :suss: If you can't read my code, try converting it here[^][](X-Clacks-Overhead: GNU Terry Pratchett)

Nicholas Marty

Cornelius Henning wrote:

Also typing a password exposes you to keyloggers

And using clipboard exposes you to malware that reads the clipboard. Every program can access it at any time. So the advantage of using a password manager is that you can create an unique password for everything and don't have to remember them all. If you have malware running on your machine there is nothing that can truly prevent it from intercepting a password.

Lost User

Quote:

The Insider Update I have in a VM currently reports as 170603-1840.

Yes, you're right. I corrected my mistake. :)

Get me coffee and no one gets hurt!

Lost User

Can you elaborate a little, please. What do you mean by "separate desktop"?

Get me coffee and no one gets hurt!

Lost User

A new desktop object in which you can open Windows. See CreateDesktop function (MSDN)[^]. --edit The login-screen is an example of another desktop than the one that you are using normally. Access to that desktop is limited, even if you are running a background application on yours :)

Bastard Programmer from Hell :suss: If you can't read my code, try converting it here[^][](X-Clacks-Overhead: GNU Terry Pratchett)

Lost User

Thanks!:thumbsup:

Get me coffee and no one gets hurt!

Lost User

You're welcome :)

Bastard Programmer from Hell :suss: If you can't read my code, try converting it here[^][](X-Clacks-Overhead: GNU Terry Pratchett)

dandy72

:-) They're coming out so fast at times it's hard to keep up to date. I've certainly never made any attempting at tracking them all. I just let it install whatever it wants in my VM.