Master Password Protected Mode to Protect your Profile
-
This post is deleted! -
Since this is not happening, I have to use firefox at work!
-
This is the main reason I refuse storing passwords or other data on Vivaldi or any browser. The only one that has this is Firefox but its limited to logins only.
I think I would be great to actually encrypt the whole profile setting, including not only passwords, but all the other info used on forms, history, etc.
This was actually requested to Chrome developers before, but Google had no interest on anything that would lock them out of users data. They don't even encrypt passwords for that reason. Before you think this makes no sense because an attacker with access to your computer means already game over...not quite. There is a reason why shell or FTP pieces of software have a master password for the same reasons a browser should.
Data resting in the drive is potentially dangerous. Data in memory tends to be a bit more safe while it can't deter a good attacker most spyware or malware will just scan your hard rive for data, that includes browsers data and getting your logins from browsers is extremely easy. With a master password at least data on rest is encrypted and only lives in memory while its unlocked, you can have different settings that unlocks the data back after inactivity and with a more simple PIN.
Example, you unlock the master password when Vivaldi starts, at this point data is in memory. You browse as usual but after 30 minutes, passwords get locked with a temporary pin that requests user input on the screen if Vivaldi needs to access them, or you can pick for full locking. This has potentially security benefits. If you share the computer, or someone else logs in without authorization, all the data is encrypted for your Vivaldi profile. A malware hitting your system while using Vivaldi, would not be able to simple pick your profile data from the hard rive either. It would require far more work assuming data is properly encrypted in RAM memory while in use.
This also lets you securely transfer profiles to different systems. I'm surprised Vivaldi makes to many tiny improvements in GUI stuff but doesn't on the bigger issues. I assume the reason is that big changes like that cannot be done by Vivaldi since they just follow Chromium and can only be limited to GUI changes. I see no other reason why Firefox has this but not Vivaldi. And before you say MS Edge doesn't either, they actually store the logins in the OS differently which makes it more secure than what Chrome does. To see passwords you need your Windows authentication details which means its under an extra layer of security. Chrome has by far the worst implementation when it comes to log in security. It should ring a bell that even today Chrome does not even have a setting to clear all your data when you close the browser. They don't care about making things that lock them out of users data. That is the reason Chromium password storage is to terrible bad.
-
@BoneTone said in Master Password Protected Mode to Protect your Profile:
@schreck and it was closed as a duplicate because this thread was created first. Everybody has their pet features they want to see implemented. That this feature request hasn't been doesn't invalidate all the progress that has taken place.
no it wasnt! are you not able to read the date?
whats the status on the after 3 years, anybody considering this!?
vivaldi, security, privacy nr.1 topic, .. yeah right... -
@schreck said in Master Password Protected Mode to Protect your Profile:
are you not able to read the date?
Most of us can read the date:
schreck 1 Mar 2018, 02:33
awking 31 Jan 2018, 11:09@terere said:
I assume the reason is that big changes like that cannot be done by Vivaldi since they just follow Chromium and can only be limited to GUI changes.
The Vivaldi Team can change the Chromium code, but I understand that if they do, the change may need updating after each new Chrome release.
This is the seventh most voted for topic, and much older than the date that this iteration of the feature requests forum was implemented. It doesnβt help to vent whenever features take a long time. Vivaldi only have a small team and they cannot do everything at once. Opera 12.18 was still unfinished after 20 years and with a much bigger team.
I have my own way of protecting my data: I install Vivaldi on a VeraCrypt drive, so that it should be safe even if someone steals my PC and can bypass the user account password.
-
@Pesala said in Master Password Protected Mode to Protect your Profile:
I have my own way of protecting my data: I install Vivaldi on a VeraCrypt drive, so that it should be safe even if someone steals my PC and can bypass the user account password.
I think this feature is mostly voted for shared computers.
I agree, that we should let User Account Management of the respective OS handle this; but that's not usually the case.
"Usually", an average home computer has one user, which everyone uses.Then is where this feature comes in - it's not about securing a browser; it's just about having that little piece of mind that someone cannot undo this "in one hour or less" with little-to-no effort.
How can we vote for this feature? The main post is deleted
-
This feature could be a nice thing to have, after Vivaldi gets finally portableized.
-
@stdedos said in Master Password Protected Mode to Protect your Profile:
How can we vote for this feature? The main post is deleted
Vote for the first post in this current thread.
-
@Pesala said in Master Password Protected Mode to Protect your Profile:
@stdedos said in Master Password Protected Mode to Protect your Profile:
How can we vote for this feature? The main post is deleted
Vote for the first post in this current thread.
Oh fun! I am blind
Thanks
-
Add me to the list of "Why TF does this not exist?" Voted.
-
@bccarlso said in Master Password Protected Mode to Protect your Profile:
Add me to the list of "Why TF does this not exist?" Voted.
ADD MY VOTE.
Master password in Vivaldi "privacy browser" ESSENTIAL. Until then, I'm (reluctantly) going back to Firefox.
-
@salieriscravat And yet, you did not click the "thumbs up" on the original post in this thread, so, you didn't actually vote for it at all...
-
Upvoted. The use of Windows DPAPI has caused all my passwords to be lost. While the cause in my case is esoteric, a master password scheme a la Firefox would NOT have had this drastic result.
If a dev wants to see what happened in my case, check this forum topic.
-
@awking
How about a password for the whole browser, not only passwords? When I have a PC at my workplace, someone else can open Vivaldi and all my users are logged in. I don't mean saved passwords, but when you log onto e.g. ebay, gmail or wordpress and don't save your password, you're still logged in for a while and anyone who opens Vivaldi can act as a user on these websites. I think it would be nice to have an option for password protection while starting a browser - if I enter the correct password then I have all my tabs with all users logged in. However if I (or rather someone else opens my Vivaldi) put an incorrect password (a number of times or after infinite trials - option to choose) then I only get a starting page or all saved tabs, but with all the users logged out from all the websites (erased cookies). -
-
This post is deleted! -
I'd like to add my vote for this feature.
I'm in the process of migrating to Vivaldi from Firefox. I was surprised that Vivaldi has no master password feature.
In Firefox, when you launch the browser you see a simple input box requesting the password. Once you've entered it, you can forget about it for the rest of the session. You can skip entering the password if you wish, in which case it will prompt you again the first time you try to log into a site for which the password is stored. In fact, the whole thing is optional; you can choose not to set a master password if you prefer.
A similar feature in Vivaldi would be welcome.
-
It's essential. At the moment Brave browser has much more security
-
@francescocalise said in Master Password Protected Mode to Protect your Profile:
It's essential. At the moment Brave browser has much more security
Also btw, Brave being able to install extensions from webstore means that "their backend works"
https://github.com/brave/brave-browser/issues/16611#issuecomment-868203630
(I cannot find the original article that spoke about this) -
On looking through the most upvoted feature requests, I see that this is currently sixth on the list, but is not even tagged as Pipeline yet. What, exactly, is the barrier to implementing this?