We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

Vanwege onderhoudswerkzaamheden die uw ervaring zouden moeten verbeteren, heeft deze website beperkte functionaliteit. Als een artikel uw probleem niet verhelpt en u een vraag wilt stellen, kan onze ondersteuningsgemeenschap u helpen in @FirefoxSupport op Twitter en /r/firefox op Reddit.

Zoeken in Support

Vermijd ondersteuningsscams. We zullen u nooit vragen een telefoonnummer te bellen, er een sms naar te sturen of persoonlijke gegevens te delen. Meld verdachte activiteit met de optie ‘Misbruik melden’.

Meer info

Deze conversatie is gearchiveerd. Stel een nieuwe vraag als u hulp nodig hebt.

Legacy Password Editor removed; is Firefox Master Password Editor Now Secure?

  • 2 antwoorden
  • 3 hebben dit probleem
  • 1 weergave
  • Laatste antwoord van Happy112

more options

To reiterate, Legacy Password Editor removed; is Firefox Master Password Editor Now Secure? Past history: I had used Password Editor (Legacy), the updated version of Firefox's Password Editor, via a developer. I was quite happy with the latter and never had a problem. Since Legacy's demise, I have subscribed to McAfee SafeKey, and quickly rescinded my account for same. Now, I am using LastPass, which is an involved, secure program. For me, too involved and, referred to as a remarkable program, it has plenty of quirks and mistakes, like not filling in login information. So annoying!

Therefore, yearning for the simplicity of Firefox's Password Editor, I pose the question w/Quantum, currently v57.0.2, is Firefox's Master Password Editor considered viable, i.e., secure?

Thanks in advance for a security/safety review of the current Firefox Password Editor.

To reiterate, Legacy Password Editor removed; is Firefox Master Password Editor Now Secure? Past history: I had used Password Editor (Legacy), the updated version of Firefox's Password Editor, via a developer. I was quite happy with the latter and never had a problem. Since Legacy's demise, I have subscribed to McAfee SafeKey, and quickly rescinded my account for same. Now, I am using LastPass, which is an involved, secure program. For me, too involved and, referred to as a remarkable program, it has plenty of quirks and mistakes, like not filling in login information. So annoying! Therefore, yearning for the simplicity of Firefox's Password Editor, I pose the question w/Quantum, currently v57.0.2, is Firefox's Master Password Editor considered viable, i.e., secure? Thanks in advance for a security/safety review of the current Firefox Password Editor.

Gekozen oplossing

Names and passwords that are stored in logins.json are encrypted with an encryption key that is stored in the key4.db file. The Master Password adds an extra level to that encryption. When you don't use a Master Password, having access to key4.db and logins.json is all it takes to have access to the encrypted names and passwords by placing both files in a Firefox profile folder.

Use a strong password : at least 10 characters and use some symbols and numbers, not just letters.

Also see : https://support.mozilla.org/en-US/kb/use-master-password-protect-stored-logins

And : https://support.mozilla.org/en-US/kb/password-manager-remember-delete-change-and-import

Dit antwoord in context lezen 👍 1

Alle antwoorden (2)

more options

Hi, I would say maybe, I would not use it myself. Pen & paper person and memory. Not so much as insecure but if browser goes down maybe lost. Have had to tell, is lost before. Not many times though. Better off I think as personal opinion only to use 3rd party if so choose. There are several including Norton Password Manger here : https://addons.mozilla.org/en-US/firefox/extensions/ Explore your options and theirs.

Please let us know if this solved your issue or if need further assistance.

more options

Gekozen oplossing

Names and passwords that are stored in logins.json are encrypted with an encryption key that is stored in the key4.db file. The Master Password adds an extra level to that encryption. When you don't use a Master Password, having access to key4.db and logins.json is all it takes to have access to the encrypted names and passwords by placing both files in a Firefox profile folder.

Use a strong password : at least 10 characters and use some symbols and numbers, not just letters.

Also see : https://support.mozilla.org/en-US/kb/use-master-password-protect-stored-logins

And : https://support.mozilla.org/en-US/kb/password-manager-remember-delete-change-and-import