Closed Bug 257455 Opened 20 years ago Closed 20 years ago

Form information shouldn't be saved on HTTPS sites

Categories

(Firefox :: Address Bar, defect)

x86
Windows 2000
defect
Not set
critical

Tracking

()

RESOLVED DUPLICATE of bug 190700

People

(Reporter: webdev, Assigned: bugs)

Details

User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7) Gecko/20040707 Firefox/0.9.2
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7) Gecko/20040707 Firefox/0.9.2

to save all the form information on https site are not a good idea. because,
they are where secret data.

Reproducible: Always
Steps to Reproduce:
1. go to a https site an fill in a formula
2. close the browser an go back to the https site
3. and fill in the formula



Expected Results:  
don't save form information on https sites -- like IE (i hate IE)
-> Firefox. The suite's version of form saving asks before capturing info, and
obeys autocomplete="off" used by most SSL pages with sensitive data.
Assignee: dveditz → bugs
Component: Security: General → Location Bar and Autocomplete
Product: Browser → Firefox
QA Contact: davidpjames
Whiteboard: [sg:needinfo]
Group: security
Summary: save form information on https site are a security hole → Form information shouldn't be saved on HTTPS sites
See also bug 188285, "Form autocomplete should not store credit card numbers".

*** This bug has been marked as a duplicate of 190700 ***
Status: UNCONFIRMED → RESOLVED
Closed: 20 years ago
Resolution: --- → DUPLICATE
Whiteboard: [sg:needinfo]
You need to log in before you can comment on or make changes to this bug.