Closed Bug 266390 Opened 20 years ago Closed 20 years ago

it is not possible to protect the passwords with a masterpassword. The passwords could be read in clear text.

Categories

(SeaMonkey :: Passwords & Permissions, defect)

Product:
SeaMonkey
Component:
Passwords & Permissions
Platform:
x86
Windows XP
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED INVALID

People

(Reporter: vogt.p, Assigned: dveditz)

Details

User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.1; de-AT; rv:1.7.3) Gecko/20040910
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; de-AT; rv:1.7.3) Gecko/20040910

password are shown in clear text

Reproducible: Always
Steps to Reproduce:
1.reset masterpassword
2.set new password
3.read passwords



Expected Results:  
asking for the masterpassword,
better never show a password in clear text
If you had encrypted passwords and truly *reset* your master password you would
not have any passwords left to read in step 3 since resetting that--as opposed
to merely changing the password--is a destructive act. Either:

1) Your passwords are stored "obscured" rather than encrypted (the default) and
this is the correct behavior. Check the "Use encryption when storing sensitive
data" box on the password preference pane.

or

2) You've left out a whole lot of detail necessary to make this a valid bug. If
that's the case please reopen the bug with enough details to allow us to
reproduce this case.
Group: security
Status: UNCONFIRMED → RESOLVED
Closed: 20 years ago
Resolution: --- → INVALID
Product: Browser → Seamonkey
You need to log in before you can comment on or make changes to this bug.