Why don't passwords stick?

[Stan Brown]

[quoted text muted]
Some applications have an option, when a password
is entered, to save this.

Notoriously, Firefox doesn't.

Yes it does, if you enable it. It's way insecure - anyone with physical
access to the machine can see all of them.

Not unless they have the master password.

 

[Char Jackson]

[quoted text muted]
Some applications have an option, when a password
is entered, to save this.

Notoriously, Firefox doesn't.

Yes it does, if you enable it. It's way insecure - anyone with physical
access to the machine can see all of them.

Not unless they have the master password.

Only if you enable the master password feature. It's disabled by
default.

 

[Stan Brown]

Peter Jason wrote:

[quoted text muted]
Some applications have an option, when a password
is entered, to save this.

Notoriously, Firefox doesn't.

Yes it does, if you enable it. It's way insecure - anyone with physical
access to the machine can see all of them.

Not unless they have the master password.

Only if you enable the master password feature. It's disabled by
default.

Why on earth would anyone *not* enable it?

 

[Char Jackson]

[quoted text muted]
Some applications have an option, when a password
is entered, to save this.

Notoriously, Firefox doesn't.

Yes it does, if you enable it. It's way insecure - anyone with physical
access to the machine can see all of them.


Not unless they have the master password.

Only if you enable the master password feature. It's disabled by
default.

Why on earth would anyone *not* enable it?

Obviously, not everyone needs it...

 

[Ken Blake]

[quoted text muted]
Some applications have an option, when a password
is entered, to save this.

Notoriously, Firefox doesn't.

Yes it does, if you enable it. It's way insecure - anyone with physical
access to the machine can see all of them.


Not unless they have the master password.

Only if you enable the master password feature. It's disabled by
default.

Why on earth would anyone *not* enable it?

For the same reason that many people don't do backups.

Ignorance of the risks.

 

[Char Jackson]

On Tue, 6 Nov 2012 23:06:02 -0500, Stan Brown

[quoted text muted]
Some applications have an option, when a password
is entered, to save this.

Notoriously, Firefox doesn't.

Yes it does, if you enable it. It's way insecure - anyone with physical
access to the machine can see all of them.


Not unless they have the master password.

Only if you enable the master password feature. It's disabled by
default.

Why on earth would anyone *not* enable it?

For the same reason that many people don't do backups.

Ignorance of the risks.

And/or acknowledgment and acceptance of the risks.

 

[Ken Blake]

And/or acknowledgment and acceptance of the risks.

A possibility? Yes.

Likely that that's true of many people? No.

 

[G. Morgan]

Why on earth would anyone *not* enable it?

It's not anywhere near as secure as Lastpass or KeePass, plus it only
works for FF. Lastpass works on any browser, and mobile devices (paid
version). Also, if you need a password on a computer that isn't yours,
visit the Lastpass website to retrieve it.

 

[Mike Barnes]

On Tue, 06 Nov 2012 22:40:18 -0600, Char Jackson wrote:

On Tue, 6 Nov 2012 23:06:02 -0500, Stan Brown

[quoted text muted]
Some applications have an option, when a password
is entered, to save this.

Notoriously, Firefox doesn't.

Yes it does, if you enable it. It's way insecure - anyone with
physical
access to the machine can see all of them.


Not unless they have the master password.

Only if you enable the master password feature. It's disabled by
default.

Why on earth would anyone *not* enable it?

For the same reason that many people don't do backups.

Ignorance of the risks.

And/or acknowledgment and acceptance of the risks.

.... having balanced the risks against other factors such as convenience.
My copy of Firefox has many dozens of passwords stored, but I wouldn't
dream of applying a master password. There's no point. Those are all
passwords that I really don't much care about. If a password mattered, I
wouldn't key it into Firefox.

 

[Gene E. Bloch]

Stan Brown wrote:

It's not anywhere near as secure as Lastpass or KeePass, plus it only
works for FF. Lastpass works on any browser, and mobile devices (paid
version). Also, if you need a password on a computer that isn't yours,
visit the Lastpass website to retrieve it.

KeePass also works on Android devices as well as Windows computers.

Their website indicates unofficial ports to a number of phones and to
Linux & Macs, as well.

http://keepass.info/index.html

See more info on the download page.

 

[Stan Brown]

It's not anywhere near as secure as Lastpass or KeePass, plus it only
works for FF. Lastpass works on any browser, and mobile devices (paid
version). Also, if you need a password on a computer that isn't yours,
visit the Lastpass website to retrieve it.

That's what you get for quoting out of context.

The "it" was the master password _if_ you use Firefox passwords,
which -- as I've already explained -- I don't. I use KeePass, as
I've already explained.