Closed Bug 1743810 Opened 2 years ago Closed 2 years ago

Make Primary Password encrypt cookie db too

Categories

(Firefox :: Security, enhancement)

Product:
Firefox
Component:
Security
Version:
Firefox 95
Type:
enhancement

Tracking

()

Status:
RESOLVED DUPLICATE of bug 56788

People

(Reporter: enzonunes15, Unassigned)

Details

User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:100.0) Gecko/20100101 Firefox/100.0

Actual results:

Storing unencrypted cookies can be dangerous as much as storing unencrypted passwords, it doesn't matter if the cookies are supposed to be used like that or not, the fact is that a huge amount of websites won't check anything beyond the cookies to do the authentication. Chromium already does it since a long time.

Expected results:

Firefox could use the primary password that already encrypts the stored passwords and extend it to encrypt the cookie database too.

Component: Untriaged → Security

thanks for opening this enhancement, i will set it as new so the devs can check it

Status: UNCONFIRMED → NEW
Ever confirmed: true
Status: NEW → RESOLVED
Closed: 2 years ago
Resolution: --- → DUPLICATE
Duplicate of bug: 56788
No longer duplicate of bug: 1259652
You need to log in before you can comment on or make changes to this bug.