[meta] Login breach/vulnerable alerts/indicators in about:logins
Categories
(Firefox :: about:logins, enhancement)
Tracking
()
People
(Reporter: groovecoder, Unassigned)
References
(Depends on 10 open bugs, )
Details
(Keywords: meta)
Attachments
(2 files)
01_LockwiseDesktop_Alerts.jpg
|
Reporter | |
Updated•6 years ago
|
|
|
Reporter | |
Updated•6 years ago
|
|
|
Reporter | |
Comment 1•6 years ago
|
||
Note: to test this in the about:logins UI, the saved login must be older than the breach date of the site. To develop and test this manually I had to:
- Create a new Firefox profile for dev/testing
- In the profile, save a login for a breached site - e.g., https://eatstreet.com/
- Close Firefox
- In the profile's file directory, open the logins.json file - e.g., ~/Library/Application\ Support/Firefox/Profiles/cqr0e53v.mach/logins.json
- Find the item for eatstreet.com
- Update its "timePasswordChanged" value to before the breach date - e.g., 1556773200000 is May 2, which is 1 day before the breach of eatstreet.com
- Save the logins.json file and close it
- Open Firefox again using the same profile
- Firefox should show a breach indicator on the saved login for eatstreet.com
|
|
Reporter | |
Updated•6 years ago
|
|
|
Reporter | |
Comment 2•6 years ago
|
||
Release Note Request (optional, but appreciated)
[Why is this notable]:
This brings Firefox Monitor functionality into the Firefox/Lockwise password manager
[Suggested wording]:
The Lockwise password manager interface includes breach alerts from Firefox Monitor.
SUMO link (not written yet): https://support.mozilla.org/kb/alerts-breached-websites-firefox-lockwise
|
||
Comment 3•6 years ago
|
||
Removing priority from meta bug as we'll track the work bugs.
|
||
Updated•6 years ago
|
|
||
Comment 4•6 years ago
|
||
(In reply to Luke Crouch [:groovecoder] from comment #2)
Release Note Request (optional, but appreciated)
[Why is this notable]:
This brings Firefox Monitor functionality into the Firefox/Lockwise password manager[Suggested wording]:
The Lockwise password manager interface includes breach alerts from Firefox Monitor.SUMO link (not written yet): https://support.mozilla.org/kb/alerts-breached-websites-firefox-lockwise
Updated SUMO link: https://support.mozilla.org/kb/firefox-lockwise-alerts-breached-websites
|
|
||
Updated•6 years ago
|
|
|
||
Updated•5 years ago
|
|
|
||
Updated•5 years ago
|
|
||
Updated•3 years ago
|
|
|
||
Comment 8•1 year ago
|
||
To test the functionality in the about:logins UI, where the saved login must predate the site's breach date, follow these steps:
Create a new Firefox profile for development/testing purposes.
Within this profile, save a login for a site known to have been breached, for example, "customstickers.com/".
Close Firefox.
Navigate to the profile's file directory and open the "logins.json" file (for example, at "~/Library/Application Support/Firefox/Profiles/cqr0e53v.mach/logins.json").
Locate the entry for "eatstreet.com".
Change the "timePasswordChanged" value to a date before the site's breach date. For instance, setting it to "1556773200000" corresponds to May 2, which is one day before the breach at "eatstreet.com".
Save and close the "logins.json" file.
Reopen Firefox using the same profile.
Upon doing this, Firefox should display a breach indicator for the saved login on "customstickers".
Description
•