Closed Bug 1271586 Opened 8 years ago Closed 8 years ago

no security to password file of firefox browser

Categories

(Firefox :: Untriaged, defect)

Product:
Firefox
Component:
Untriaged
Version:
46 Branch
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED DUPLICATE of bug 394533

People

(Reporter: vishalsinghal42, Unassigned)

Details

User Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:46.0) Gecko/20100101 Firefox/46.0
Build ID: 20160502172042

Steps to reproduce:

menu>options>security>saved logins



Actual results:

there is no security
so anyone one can see all the passwords when the system is on.
there should be some security so that not all can see that.
like in chrome it is secured by the administrator password means that guy who know the admin password can only see
but in firefox any one can see


Expected results:

it should be protected by some kind of password
Securing the UI here wouldn't actually stop anybody from just copying the file and reading it out later, or going to a website where they're interested in the logins and reading them out as we prefill them, etc.

If the data is there and the attacker has access to your machine, you've already lost.
Group: firefox-core-security
Status: UNCONFIRMED → RESOLVED
Closed: 8 years ago
Resolution: --- → DUPLICATE
prefill is only applicable to the same machine means he can login from our system but cannot b able to login from other systems as he is not having the pass. Rather it can see only username but not password from prefill , so not able to get that password.

sometimes we gave our system to someone else to see, after log in to our system. It doesn't mean that we gave him right to see all our passwords that are save on browser.
You need to log in before you can comment on or make changes to this bug.