Closed Bug 1078704 Opened 10 years ago Closed 3 years ago

Add support for a simple 'password audit'

Categories

(Firefox for Android Graveyard :: Logins, Passwords and Form Fill, defect)

Product:
Firefox for Android Graveyard
Component:
Logins, Passwords and Form Fill
Platform:
All
Android
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED INCOMPLETE

People

(Reporter: mfinkle, Unassigned)

References

Details

Can we look at a user's existing passwords and do some sanity checks? We could add something to our password management UI to do a simple audit looking for:
* Weak passwords
* Same password used on more than one domain
* Logins/passwords on recently hacked sites?

Other ideas?
Component: General → Logins, Passwords and Form Fill
I think step one is to have a password management UI :P
OS: Linux → Android
Hardware: x86_64 → All
(In reply to Richard Newman [:rnewman] from comment #1)
> I think step one is to have a password management UI :P

Details, details. That shouldn't stop us from brainstorming audit types and even working on the code to do a specific audit. Use an add-on to develop the code!
(In reply to Mark Finkle (:mfinkle) from comment #2)
> (In reply to Richard Newman [:rnewman] from comment #1)
> > I think step one is to have a password management UI :P
> 
> Details, details. That shouldn't stop us from brainstorming audit types and
> even working on the code to do a specific audit. Use an add-on to develop
> the code!

+1 An add-on could create some in-content UI to display information to the user. Since password management lives in toolkit land, this should be pretty straightforward.

A good place to start would be to just look at the desktop password management code, since that would use all the APIs we want.
This is a neat idea, but one that I would argue is lesser priority than many other things. 

Although the intention is to make people safer, warning people they are unsafe when we can't correct it automatically and side-effect free (e.g., 1032 viruses neutralized!) usually just makes them feel sad and uncomfortable. I'm suspect most people don't choose Firefox to feel unsafe on the Internet. I love a good lecture from Firefox as much as the next geek, but I wager it's not a general trend.
We have completed our launch of our new Firefox on Android. The development of the new versions use GitHub for issue tracking. If the bug report still reproduces in a current version of [Firefox on Android nightly](https://play.google.com/store/apps/details?id=org.mozilla.fenix) an issue can be reported at the [Fenix GitHub project](https://github.com/mozilla-mobile/fenix/). If you want to discuss your report please use [Mozilla's chat](https://wiki.mozilla.org/Matrix#Connect_to_Matrix) server https://chat.mozilla.org and join the [#fenix](https://chat.mozilla.org/#/room/#fenix:mozilla.org) channel.
Status: NEW → RESOLVED
Closed: 3 years ago
Resolution: --- → INCOMPLETE
Product: Firefox for Android → Firefox for Android Graveyard
You need to log in before you can comment on or make changes to this bug.