SillyDog701

Message Centre 3.0

Skip to content

Revisiting Password Managers

Firefox, Thunderbird, SeaMonkey, Camino, Mozilla, Netscape 6/7/8/9, and all Gecko-based browsers discussion and support forum.
(MozInfo701, Netscape Browser Archive)

Moderators: Fulvio, profman, Ramona, Antony, Edward

Post a reply

Revisiting Password Managers

Postby James » Tue 04 Oct, 2011 8:15 pm

Help me understand this business of PW managers and the manner in which FF stores its passwords under a Master PW.

Currently I use the extension Lastpass to store my passwords. The advantages are: 1) each PW is unique and strong (about forty of them which I could never remember otherwise); 2) the PW are stored on "their" servers in encrypted form so even if their servers were hacked, the PW would still be protected at least until they regained control of their servers AND LP does not have the master PW so even they cannot read my PW; 3) my PW are synced to my other devices (ipad, laptop) by my simply installing LP and logging into it with my master PW; 4) my PW are easily changed and on a regular basis since LP makes this process so easy.

The only disadvantage to date is that in IE LP forces me to have an extra toolbar in order to work whereas in FF or Chrome it is a simple button that adds to my taskbar.

Now... some still argue that having one's passwords stored on a server rather than one's own computer is putting them at risk. I will add that my banking and amazon pw are NOT stored anywhere but are in my mind. Still... I can partially see their argument against LP and Roboform managers.

NOW... compare the above to Firefox. As I understand it, the passwords are stored on my own computer in encrypted form and under a master password... correct? Would they easily sync with my other devices? Would they be considered safer from hacking than they are currently on LP or Roboform? What are the advantages to letting FF do this rather than an extension like LP?
UserAgent: Mozilla/5.0 (Windows NT 6.1; rv:7.0.1) Gecko/20100101 Firefox/7.0.1
James
User avatar
James
diamond member
diamond member
 
Posts: 2932
Joined: Sat 13 Jul, 2002 12:10 am
Top

Re: Revisiting Password Managers

Postby Antony » Wed 05 Oct, 2011 12:56 am

I know I told you I would give Lastpass a try, but I haven't.

As for the worry on storing the passwords on the cloud, as long as it is properly encrypted, I don't see the need to worry that much. Of course, some other people (like Don) would be able to tell you all the risks and disadvantages of doing so.

I am same with you. I don't save my banking passwords on Yojimbo. Yojimbo stores encrypted passwords in my local Macs, as well as a copy stored in Apple's sync service.

James wrote:Would they easily sync with my other devices?
This depends on the support of the software.

James wrote:Would they be considered safer from hacking than they are currently on LP or Roboform? What are the advantages to letting FF do this rather than an extension like LP?
Is your own computer safer? Usually yes. However, there are some home computers being compromised without owner's knowledge. If the password server was compromised, it would be a big news for sure.

As for the built-in password feature on Firefox, don't forget that there's a huge brand loyalty to it when you read reviews.

(Posted from Apple Store)
UserAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7) AppleWebKit/534.48.3 (KHTML, like Gecko) Version/5.1 Safari/534.48.3
User avatar
Antony
diamond member
diamond member
 
Posts: 14929
Joined: Tue 18 Jun, 2002 11:36 pm
Location: Sydney, Australia
Top
Post a reply

Return to Firefox, SeaMonkey and Netscape

Who is online

Registered users: Google [Bot], psbot [Picsearch]

Powered by phpBB © phpBB Group
support SillyDog701
[SillyDog701 home] [Netscape] [download NS] [MozInfo701] [MacCentre701] [Feedback] [Search] [Sitemap]
All messages posted in this forum do not necessarily represent SillyDog701. This forum is operated by Antony Shen. All rights reserved. Copyright Notice. Privacy Statement.		 get FirefoxMade on a Mac