Anyone ever used...
-
Like I said to David it's the password data that worries me. Any jacka$$ could insert some code into an app that would get that data and send it back to a server somewhere. MS (and all other browsers) should find a better way to protect the data (at least for passwords). :suss: :~ :suss:
patnsnaudy wrote: Like I said to David it's the password data that worries me. Any jacka$$ could insert some code into an app that would get that data and send it back to a server somewhere. MS (and all other browsers) should find a better way to protect the data (at least for passwords). It's safest to disable saving passwords. IE lets you turn it off I think.
-
Like I said to David it's the password data that worries me. Any jacka$$ could insert some code into an app that would get that data and send it back to a server somewhere. MS (and all other browsers) should find a better way to protect the data (at least for passwords). :suss: :~ :suss:
patnsnaudy wrote: MS (and all other browsers) should find a better way to protect the data (at least for passwords). How? They'd have to store it so that they can decode it. If they can, then anyone can. The only secure way would be to store it so it can't be decrypted... but then it would be no use at all.
Ryan
"Punctuality is only a virtue for those who aren't smart enough to think of good excuses for being late" John Nichol "Point Of Impact"
-
The big problem for me when I save passwords is that, when I eventually do a Windows re-install I can't remember any of the blasted passwords. Long ago, I lost a yahoo account cause of this - I even forgot my password reminder question and despite my best attempts, they did not re-activate the id for me. I didn't lose any mails, but I wanted that ID.
Been using this for a while. I like it pretty well. I think it has some origins somewhere here at CP. http://keepass.sourceforge.net/index.php[^] I would give it a 4.5/5
-
patnsnaudy wrote: MS (and all other browsers) should find a better way to protect the data (at least for passwords). How? They'd have to store it so that they can decode it. If they can, then anyone can. The only secure way would be to store it so it can't be decrypted... but then it would be no use at all.
Ryan
"Punctuality is only a virtue for those who aren't smart enough to think of good excuses for being late" John Nichol "Point Of Impact"
That is the $1,000,000 question... Hmmm. I'll have to think about that. There must be a way. :cool:
-
patnsnaudy wrote: The stuff that IE stores is way SCARY. Not just IE, all decent browsers store URL history, cookies and form-fillup information. If you are very paranoid about safety, you could download Lynx.
Nishant Sivakumar wrote: If you are very paranoid about safety, you could download Lynx. Which, BTW, will store the very same information on .rc text files, IIRC. I see dead pixels Yes, even I am blogging now!
-
I know I can turn it off, but it is so much easier to leave it on. The thing that bothers me the most is the passwords that are stored and easily decoded and displayed in the app. It would be nice if MS protected them a little better. Maybe some encription using yout logon (if it exists). :~
patnsnaudy wrote: Maybe some encription using yout logon It's scary how weak even the User Password encryption is. Using SAMInside[^], and a copy of BartPE I managed to decrypt the Administrator password for all the computers in my department in 3 weeks! Joel Holdsworth Wanna give me a job this summer? Check out my online CV and project history[^] - now available in MSWord format![^]
-
patnsnaudy wrote: MS (and all other browsers) should find a better way to protect the data (at least for passwords). How? They'd have to store it so that they can decode it. If they can, then anyone can. The only secure way would be to store it so it can't be decrypted... but then it would be no use at all.
Ryan
"Punctuality is only a virtue for those who aren't smart enough to think of good excuses for being late" John Nichol "Point Of Impact"
me think that passwords are never decrypted. when a user types in his password, it gets encrypted, and compared to what is already stored.
Maximilien Lincourt Your Head A Splode - Strong Bad
-
me think that passwords are never decrypted. when a user types in his password, it gets encrypted, and compared to what is already stored.
Maximilien Lincourt Your Head A Splode - Strong Bad
Browsers that can fill in names and passwords on web pages for you have to be able to decode it somehow...
Ryan
"Punctuality is only a virtue for those who aren't smart enough to think of good excuses for being late" John Nichol "Point Of Impact"
-
I know I can turn it off, but it is so much easier to leave it on. The thing that bothers me the most is the passwords that are stored and easily decoded and displayed in the app. It would be nice if MS protected them a little better. Maybe some encription using yout logon (if it exists). :~
patnsnaudy wrote: The thing that bothers me the most is the passwords that are stored and easily decoded and displayed in the app. It would be nice if MS protected them a little better. Well you do have to select 'Yes' from the security risk warning dialog that pops up before it even considers storing your passwords... But I know what you mean. :rolleyes: In all honestly the Internet is a public network so nothing you do on it will be completely secure.
Ðavid Wulff The Royal Woofle Museum
Audioscrobbler :: flickrDie Freiheit spielt auf allen Geigen
-
patnsnaudy wrote: The thing that bothers me the most is the passwords that are stored and easily decoded and displayed in the app. It would be nice if MS protected them a little better. Well you do have to select 'Yes' from the security risk warning dialog that pops up before it even considers storing your passwords... But I know what you mean. :rolleyes: In all honestly the Internet is a public network so nothing you do on it will be completely secure.
Ðavid Wulff The Royal Woofle Museum
Audioscrobbler :: flickrDie Freiheit spielt auf allen Geigen
True, but I try to keep my internet foot print to a minimum. I only register at sites I trust and if I don't trust it I use http://bugmenot.com[^] :suss: