Closed Bug 266390 Opened 20 years ago Closed 20 years ago

it is not possible to protect the passwords with a masterpassword. The passwords could be read in clear text.

Categories

(SeaMonkey :: Passwords & Permissions, defect)

Product:
SeaMonkey
Component:
Passwords & Permissions
Platform:
x86
Windows XP
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED INVALID

People

(Reporter: vogt.p, Assigned: dveditz)

Details

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; de-AT; rv:1.7.3) Gecko/20040910 Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; de-AT; rv:1.7.3) Gecko/20040910 password are shown in clear text Reproducible: Always Steps to Reproduce: 1.reset masterpassword 2.set new password 3.read passwords Expected Results: asking for the masterpassword, better never show a password in clear text
If you had encrypted passwords and truly *reset* your master password you would not have any passwords left to read in step 3 since resetting that--as opposed to merely changing the password--is a destructive act. Either: 1) Your passwords are stored "obscured" rather than encrypted (the default) and this is the correct behavior. Check the "Use encryption when storing sensitive data" box on the password preference pane. or 2) You've left out a whole lot of detail necessary to make this a valid bug. If that's the case please reopen the bug with enough details to allow us to reproduce this case.
Group: security
Status: UNCONFIRMED → RESOLVED
Closed: 20 years ago
Resolution: --- → INVALID
Product: Browser → Seamonkey
You need to log in before you can comment on or make changes to this bug.