Protect saved passwords through device security
Although I love Mozilla and I am using it for decades now, I find it very frustrating the lack of password protection security. I cannot understand why Mozilla, the browser that aims to be the most secure for its users, cannot have a system similar to Chrome that requires user login before revealing stored passwords.
Whoever gets access on my computer can easily get all saved passwords - which might include banks/IRS/email, etc. It is even worse on the phone app.
This can be a major reason to stop using Mozilla Thank you
Chosen solution
Hello Aris,
This is what you will see now since the update to Firefox 76.0 :
https://support.mozilla.org/en-US/kb/lockwise-password-authentication-prompt
(that should put a smile upon your face .... )
Read this answer in context 👍 1All Replies (7)
In Firefox you can use a master password to protect the passwords. Without using a MP you can always access the passwords although you may have to confirm this.
This is probably more secure that what Google does where it is normally sufficient to be logged in to a OS user account or allow access to the Keychain on Mac.
In Google Chrome, you only need to fill in the OS pw again if you want to access that information in the specific security tab where user names and pw's are saved, not if you want to use it.
Thus, this is not very handy. It should only ask for a master password when you want to access that part, not when you want to use a prefilled account settings saved previously for a webpage.
This will make me switch back to another browser. I cannot provide positive user experience in my environment with such an issue.
Best regards.
cor-el said
In Firefox you can use a master password to protect the passwords. Without using a MP you can always access the passwords although you may have to confirm this. This is probably more secure that what Google does where it is normally sufficient to be logged in to a OS user account or allow access to the Keychain on Mac.
Dear Corel, Thank you for taking the time to replay to me and so quickly. Seems that the support community of Firefox is what works in modern ways. I tried your solution and it does work, but it works in such a catastrophic way.. I need to put the master code every time I need to use my saved logins, so makes your daily life horrible
I can't understand why only with Firefox either we have all our passwords exposed - whoever access our computer or phones not only can use, but can see and copy all our passwords - or we cannot use any password without typing a master code each and every time.
Sorry to say but this has been unsolved for quite a time now, making the hugest security threat for any person using browsers, sadly by a browser that claims to be the most secure.. Like a random person can steal everything from me by using my laptop but a hidden hacker in the other side of the moon won't be able to put adds and tracking cookings on my computer
Chosen Solution
Hello Aris,
This is what you will see now since the update to Firefox 76.0 :
https://support.mozilla.org/en-US/kb/lockwise-password-authentication-prompt
(that should put a smile upon your face .... )
McCoy said
Hello Aris,
This is what you will see now since the update to Firefox 76.0 :
https://support.mozilla.org/en-US/kb/lockwise-password-authentication-prompt (that should put a smile upon your face .... )
Smile is back on.. while i was looking how to move to another browser.. I guess will stay a decade more now ))
Aris said
Smile is back on.. while i was looking how to move to another browser.. I guess will stay a decade more now ))
You just put a great big smile on my face !
Note that this Windows Hello prompt doesn't add real protection. The passwords are not encrypted like the master password (entering the MP unlocks the passwords) does and this new feature is merely limited the Firefox user interface (Lockwise) and you would only need access to logins.json and key4.db to inspect all logins.