546776 - Allow secure storage of Sync/Firefox Account credentials if "save passwords" and/or master password are disabled

Status: RESOLVED DUPLICATE of bug 553400

(Firefox :: Sync, defect, P2)

Description

[Mike Connor [:mconnor]]

As a fairly strong rule, we don't want to offer a login UI on each startup.  Frequency of password entry is inversely tied to password strength, and it's worse if there's multiple passwords, so a login UI will lead to users using weaker passwords, in general.  If users are not using password manager for web pages, but want to use Weave, we should special case these users as follows:

* Tell them explicitly that we will store the passwords in the password manager
* Make them opt _out_ of using a master password (or possibly force them to use the master password)

If their MP is weak, but the password/passphrase remain strong, that's less bad, because that's just protecting against local attacks, and there's other mitigations for that, but weak passphrase/password exposes users _far_ worse, and we shouldn't create UI that will move users in that direction.

Comment 1

[Mike Connor [:mconnor]]

To be clear, this is a UX question for what happens if password saving is disabled (Remember passwords for sites).

Comment 2

[Allison Naaktgeboren :ally]

Connor, is this still valid?

Comment 3

[Richard Newman [:rnewman]]

Morphing this into something more useful.