IF YOU USE FIREFOX PLEASE READ THIS !! ta

Mick · 07-12-2006, 14:47

Firefox users have been advised not to use the browser's automatic password manager.
Mozilla the company that develops Firefox,found that the feature,which stores user names and passwords,is not secure.
A bug report on the Firefox website suggests the tool will also supply passwords to fake sites.
To switch off the password manager in Firefox, go to the Tools menue,click on Options and select the security tab.
Remove the tick from the box marked "Remember passwords for sites"and click ok.
www.computeractive.co.uk/2169253

The user who discovered the problem was sent a link to a fake Myspace page that requested his login details. Although the page was a fake, and not stored on the Myspace servers, Firefox still automatically filled in his details.

For unsuspecting users, this could make it easier to accidentally send details to phishers or other scammers.

The advice from Mozilla, Firefox's maker, is to avoid using the password manager until the problem is fixed.

slinky · 07-12-2006, 19:17

Cheers Mick!! I have done just that!!!

jamesicus · 08-12-2006, 02:13

Quote:

Originally Posted by mick

.......... To switch off the password manager in Firefox, go to the Tools menue,click on Options and select the security tab.
Remove the tick from the box marked "Remember passwords for sites"and click ok .........

For Firefox 1.5xx the selection sequence from the top selection bar is:

Tools
Options
Privacy
Passwords
Remember Passwords (unclick box)

entwisi · 08-12-2006, 08:52

I'll not bore you with the gory details but there is a big discussion on the bugzilla entry for this as to what expected behaviour should be. A lot of sites use what is called cross site verification as they use multiple hosts for their sites (e.g. look at ebay they use loads) and if the browser didn't do cross site forms then you would be constantly prompted with warnings as it moves through the site.

Firefox can disable cross site verification(and form) but then users will start wingeing that ebay(and others) stop working or become such a pain that it spoild the sites. so what would you prefer?

If can post the link to the bugzilla entry if anyone is interested in teh nitty gritty,

WillowTheWhisp · 08-12-2006, 09:24

Thanks for the info Mick.

I never use password managers these days. That forces me to have to remember passwords and I don't end up with a problem I once had when I couldn't get into something from elsewhere.

KIPAX · 08-12-2006, 09:41

So not only are you few firefox users NOT seeing the internet like 90% of others are.. your also giving out your user passwords to all and sundry..

I best most of ya use IE on the sly and are just pretending to be rebels

WillowTheWhisp · 08-12-2006, 09:44

The only person who uses IE on this PC is my 12 year old when she's playing with her neopets. I have no idea why.

entwisi · 08-12-2006, 12:22

Quote:

Originally Posted by KIPAX

So not only are you few firefox users NOT seeing the internet like 90% of others are.. your also giving out your user passwords to all and sundry..

I best most of ya use IE on the sly and are just pretending to be rebels

IE suffers a similar problem Mate!

Its only because FF is open source that teh info is out in the public domain. MIccrosoft prefer to treat its users like mushrooms.

KIPAX · 08-12-2006, 12:28

So your saying that IE gives out username and passwords but microsoft arn't telling anyone.... wow your in trouble when they find out you told

last browser to be so riddled with holes was netscape that everyone raved about.. you could get peoples email address through an early (very) version of that.... netscape was the second coming.. it was going to overtake IE and everyone said it was passing 10% of the market....

whatever happened to it ?

hows the lens BTW