Password for gmail incorrectly saved when "Use password manager to remember" box is unchecked

UNCONFIRMED
Unassigned

Status

defect
UNCONFIRMED
3 years ago
2 years ago

People

(Reporter: x.xeroid, Unassigned)

Tracking

38 Branch

Firefox Tracking Flags

(Not tracked)

Details

(Reporter)

Description

3 years ago
User Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/47.0.2526.80 Safari/537.36

Steps to reproduce:

Using LXLE 14.04.3. Setup GMail account in new install of Thunderbird. Entered email and password, leaving the save password box unchecked.


Actual results:

Thunderbird still remembers the password.


Expected results:

I should have been prompted for a password. This is a security issue with laptops.
Kenneth
I could not reproduce with a non-gmail account.

Does it happen for you with non-gmail account?
if only gmail, what auth process did you use?
 oauth?  app password?
Flags: needinfo?(x.xeroid)
Whiteboard: [closeme 2016-12-15]
(Reporter)

Comment 2

2 years ago
Wayne
I cannot reproduce this with a non-gmail account either.

I used the default settings Thunderbird creates, oauth2, etc. I'm not signing in with app password.

Even though I don't have the laptop using LXLE 14.04.3., I am using Thunderbird under Xubuntu 16.04 on a new one.

Keyring is disabled.
(Reporter)

Comment 3

2 years ago
Yes it only happens with a gmail account.

Updated

2 years ago
Blocks: 849540
Component: Untriaged → Security
Summary: Password remembered with unchecked box → Password for gmail incorrectly saved when "Use password manager to remember" box is unchecked

Updated

2 years ago
Flags: needinfo?(x.xeroid)
Whiteboard: [closeme 2016-12-15]
You need to log in before you can comment on or make changes to this bug.