Security of chrome login manager compromised
-
@Catweazle same here with chrome://flags/#fill-on-account-select enabled it is fixed, like @Gwen-Dragon suggested 2 years ago. But it is still a vulnerability for passwords that have been hanging around for 2 years without being fixed in the mainstream code. Let's hope that for Floc they will follow their announcements more consequently. And no, Vivaldi users will click another time if this is needed to be safe. That's why they are using vivaldi, not chrome.
-
@rigo , for this same reason it is advisable to change passwords from time to time, especially after the problem is fixed.
-
@Catweazle I have a GPG crypted text file with over 100 passwords for all the things I do online. Because those wallets have failed so many times. And if one uses good passwords, no need to change them often unless you hit such a hidden vulernability. Studies have shown that if password change was enforced, people started to use systematic password creation algorithms that make the passwords much more vulnerable. Of course, I'm not using the same password for all sites.
-