Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

Цей вебсайт матиме обмежену функціональність, доки ми проводимо його обслуговування для поліпшення роботи. Якщо прочитана стаття не розв'язала вашу проблему і ви хочете поставити питання, наша спільнота підтримки з радістю допоможе вам на @FirefoxSupport у Twitter та /r/firefox на Reddit.

Avatar for Username

Шукати в статтях підтримки

Остерігайтеся нападів зловмисників. Mozilla ніколи не просить вас зателефонувати, надіслати номер телефону у повідомленні або поділитися з кимось особистими даними. Будь ласка, повідомте про підозрілі дії за допомогою меню “Повідомити про зловживання”

Докладніше

What exactly is encrypted by Primary Password?

  • 1 відповідь
  • 0 мають цю проблему
  • Остання відповідь від cor-el

cherryseemstolikeme
cherryseemstolikeme
more options

Good afternoon,

I have read in an article a statement that Primary Password encrypts all saved logins, therefore it is safer and recommended to use it. Well, I observed that it does not really matter if the password is set for the contents of logins.json, it does not change. What exactly is encrypted by Primary Password and how does it improve security?

I also tried to set the same password for different websites (I used a different mail tho) and the output in logins.json is different, which is even more confusing to me.

The output itself is kind of strange, the first part of it seems to be the same for almost all entries and looks like that: MEoEEPgAAAAAAAAAAAAAAAAAAAEwFAYIKoZIhvcNAwc.

Good afternoon, I have read in an article a statement that Primary Password encrypts all saved logins, therefore it is safer and recommended to use it. Well, I observed that it does not really matter if the password is set for the contents of ''logins.json'', it does not change. What exactly is encrypted by Primary Password and how does it improve security? I also tried to set the same password for different websites (I used a different mail tho) and the output in ''logins.json'' is different, which is even more confusing to me. The output itself is kind of strange, the first part of it seems to be the same for almost all entries and looks like that: '''MEoEEPgAAAAAAAAAAAAAAAAAAAEwFAYIKoZIhvcNAwc'''.

Обране рішення

That is correct, the Primary Password doesn't change the content of logins.json. The PP encrypts the encryption key (seed) that is stored key4.db and logins.json stays the same. This means that replacing this key4.db with an older copy of key4.db that doesn't have the PP applied is able to access the logins in case you forget the PP.

Читати цю відповідь у контексті 👍 1

Усі відповіді (1)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

Вибране рішення

That is correct, the Primary Password doesn't change the content of logins.json. The PP encrypts the encryption key (seed) that is stored key4.db and logins.json stays the same. This means that replacing this key4.db with an older copy of key4.db that doesn't have the PP applied is able to access the logins in case you forget the PP.

Корисно?

Запитати

Щоб відповідати на повідомлення, ви повинні ввійти у свій обліковий запис. Поставте нове питання, якщо ви ще не маєте облікового запису.