为提升您的使用体验,本站正在维护,部分功能暂时无法使用。如果本站文章无法解决您的问题,您想要向社区提问的话,请到 Twitter 上的 @FirefoxSupport 或 Reddit 上的 /r/firefox 提问,我们的支持社区将会很快回复您的疑问。

Avatar for Username

搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

详细了解

话题已存档。 如果需要帮助请提出新问题。

Firefox Android - No Authentication required to fill user credentials

Mistful
Mistful
more options

Hi,

I am an avid user of Firefox on Windows/Linux/Android. The password saving/auto-filling works great on my Windows and Linux devices. I like that the master password allows me to authenticate before any user credentials are filled in. I did however notice that on my Android Phone, there's no way to force authentication when filling in user credentials. I consider this a great privacy risk, considering that if anyone were to get access to my phone, they would without any hassle get access to a bunch of my accounts. I checked in the settings, and I cannot find a setting for it anywhere.

I am running the latest version of Firefox from Google Play. Firefox version: 84.1.4 (Build #2015785883) Phone: Samsung S10 running Android 10

Thank you.

Hi, I am an avid user of Firefox on Windows/Linux/Android. The password saving/auto-filling works great on my Windows and Linux devices. I like that the master password allows me to authenticate before any user credentials are filled in. I did however notice that on my Android Phone, there's no way to force authentication when filling in user credentials. I consider this a great privacy risk, considering that if anyone were to get access to my phone, they would without any hassle get access to a bunch of my accounts. I checked in the settings, and I cannot find a setting for it anywhere. I am running the latest version of Firefox from Google Play. Firefox version: 84.1.4 (Build #2015785883) Phone: Samsung S10 running Android 10 Thank you.

被采纳的解决方案

I think the idea of the current design is that the thief would only see •••••• and not the actual password text. When attempting to view the text, they'll need to enter your device PIN or whatever other way you've secured your device.

There probably is a way to use debugging to bypass this limited protection, so it certainly would be preferable to have a strong password to unlock the password manager as we have on desktop.

There is a feature request for this on file over here:

https://github.com/mozilla-mobile/fenix/issues/14428

I can't tell whether work is being done on it (I don't know Github that well).

定位到答案原位置 👍 1

所有回复 (1)

jscher2000 - Support Volunteer
jscher2000 - Support Volunteer
  • Top 25 Contributor
more options

选择的解决方案

I think the idea of the current design is that the thief would only see •••••• and not the actual password text. When attempting to view the text, they'll need to enter your device PIN or whatever other way you've secured your device.

There probably is a way to use debugging to bypass this limited protection, so it certainly would be preferable to have a strong password to unlock the password manager as we have on desktop.

There is a feature request for this on file over here:

https://github.com/mozilla-mobile/fenix/issues/14428

I can't tell whether work is being done on it (I don't know Github that well).