Този сайт ще има ограничена функционалност, докато се извършва тече неговата поддръжка. Ако дадена статия не може реши проблема ви и искате да зададете въпрос, нашата общност е готова да ви помогне на @firefox в Twitter и /r/firefox в Reddit.

Avatar for Username

Търсене в помощните статии

Избягвайте измамите при поддръжката. Никога няма да ви помолим да се обадите или изпратите SMS на телефонен номер или да споделите лична информация. Моля, докладвайте подозрителна активност на "Докладване за злоупотреба".

Научете повече

Тази тема беше архивирана. Моля, задайте нов въпрос ако имате нужда от помощ.

When is Primary Password going to protect stored cookies? (authentication cookies in particular)

  • 1 отговор
  • 1 има този проблем
  • 4 изгледи
  • Последен отговор от Dropa

Doc
Doc
more options

There is a wave of malware targeting authentication cookies stored on disk (e.g. recent LTT hack). It has become obvious that malware doesn't need to target stored passwords to get access to a site/account. Primary Password has solved this problem, but only for the stored passwords. The stored cookies are just as exposed as the stored passwords were, provide access to sites/accounts and bypass 2FA checks because they bypass normal login protocols.

Primary password should secure the stored cookies as well. When is this going to be implemented?

Thanks!

There is a wave of malware targeting authentication cookies stored on disk (e.g. recent LTT hack). It has become obvious that malware doesn't need to target stored passwords to get access to a site/account. Primary Password has solved this problem, but only for the stored passwords. The stored cookies are just as exposed as the stored passwords were, provide access to sites/accounts and bypass 2FA checks because they bypass normal login protocols. Primary password should secure the stored cookies as well. When is this going to be implemented? Thanks!

Всички отговори (1)

Dropa
Dropa
more options

That goes beyond what Primary password is only for Firefox account. One should check their cookie protection settings to change protection. Also one needs to insure their Security software is up to date and that it is working.