- Mozilla Connect
- Ideas
- Suggestion of improvement for the password manager
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
Hello Firefox team,
I wanted to make a suggestion regarding the current Password Management and a security flaw it has. As you know, the Master password, if enabled, is asked is two situations : when we start Firefox and when we want to see through the password management. The issue is that once we write the password, we basically can get any password without needing to enter the Master Password again. For example, if I connect to any website for which I saved a password, I just have to select the password Firefox suggests me, and click on the "reveal" button to see which password it is. It's a major security problem because nothing is really protecting anyone to see what the password is.
My suggestion is the following : I think it would be more secure to enable the fingerprint/FaceID unlocking everytime we select a password suggested by firefox (like on Chrome), or if implementing the fingerprint/FaceID unlocking is not possible, adding a parameter to ask the user if they want to be entering their password everytime a password is selected.
Best regards,
- New idea 8,513
- Trending idea 64
- Needs more 2
- In review 13
- Exploring more 12
- In development 57
- Not right now 8
- Delivered 207
- Closed 36
