Comments on: Google Chrome Master Password Still Non-Existent? http://cybernetnews.com/google-chrome-master-password/ Technology News Sun, 22 Nov 2009 18:45:09 -0600 http://wordpress.org/?v=2.8.6 hourly 1 By: HereWeGoAgain http://cybernetnews.com/google-chrome-master-password/comment-page-1/#comment-148640 HereWeGoAgain Wed, 15 Jul 2009 02:29:22 +0000 http://cybernetnews.com/?p=16287#comment-148640 Diego Sierra wrote "Have you noticed that the same thing happens with Firefox? I mean, just go to the Menu > Tools > Options > Security > Saved Passwords, and there is a “Show Passwords” button, I mean, it is as “safe” as Chrome." The above is only true if a master password has NOT been set. After you HAVE set a master password, you can only view your saved password by again typing in the master password each and every time you request to view the stored passwords. One can argue about the strength of Firefox password encryption, but it does keep one's passwords hidden from the casual user (like a kid buying stuff on Amazon.com with a parent's stored account password and account info!!!). I REALLY want to use Google Chrome, but I simply can't until they plug this feature hole. I call this a "feature hole" because, while Google is free to argue about how people don't need a master password, the fact is that people (myself included) want one. So rather than lecture Chrome users about why what they want is an "illusion of security", Google should focus on how to deliver a master password feature that IS secure. Diego Sierra wrote “Have you noticed that the same thing happens with Firefox? I mean, just go to the Menu > Tools > Options > Security > Saved Passwords, and there is a “Show Passwords” button, I mean, it is as “safe” as Chrome.”

The above is only true if a master password has NOT been set.
After you HAVE set a master password, you can only view your
saved password by again typing in the master password each
and every time you request to view the stored passwords.

One can argue about the strength of Firefox password encryption,
but it does keep one’s passwords hidden from the casual user (like
a kid buying stuff on Amazon.com with a parent’s stored account password and account info!!!).

I REALLY want to use Google Chrome, but I simply can’t until they plug this feature hole. I call this a “feature hole” because, while Google is free to argue about how people don’t need a master password, the fact is that people (myself included) want one. So rather than lecture Chrome users about why what they want is an “illusion of security”, Google should focus on how to deliver a master password feature that IS secure.

]]> By: Cad Blog http://cybernetnews.com/google-chrome-master-password/comment-page-1/#comment-148160 Cad Blog Tue, 16 Jun 2009 03:11:21 +0000 http://cybernetnews.com/?p=16287#comment-148160 I was thinking that the master password feature does look like an illusion of security but at least anyone who attempts to look for your password will have a hard time. Unlike if there was no password, it's like a sitting duck. I was thinking that the master password feature does look like an illusion of security but at least anyone who attempts to look for your password will have a hard time. Unlike if there was no password, it’s like a sitting duck.

]]> By: Diego Sierra http://cybernetnews.com/google-chrome-master-password/comment-page-1/#comment-148122 Diego Sierra Thu, 11 Jun 2009 07:20:49 +0000 http://cybernetnews.com/?p=16287#comment-148122 Have you noticed that the same thing happens with Firefox? I mean, just go to the Menu > Tools > Options > Security > Saved Passwords, and there is a "Show Passwords" button, I mean, it is as "safe" as Chrome. As Vish wrote: <div class="commentquote"><a href="#comment-146944" rel="nofollow">Vish wrote:</a><blockquote>If someone has physical access to your machine, its anyway easy for him get all your passwords and any other information(even with a master password). So, as he said, its an illusion of security.</blockquote></div> So now, or since I don't know when, anyone can see the saved passwords, sorry, but that is the stupidest thing I have ever seen. I hope Firefox takes it back. For the moment I think i'll start using Explorer, which I don't like. Have you noticed that the same thing happens with Firefox? I mean, just go to the Menu > Tools > Options > Security > Saved Passwords, and there is a “Show Passwords” button, I mean, it is as “safe” as Chrome.

As Vish wrote:

Vish wrote:
If someone has physical access to your machine, its anyway easy for him get all your passwords and any other information(even with a master password). So, as he said, its an illusion of security.

So now, or since I don’t know when, anyone can see the saved passwords, sorry, but that is the stupidest thing I have ever seen. I hope Firefox takes it back. For the moment I think i’ll start using Explorer, which I don’t like.

]]> By: BritSwedeGuy http://cybernetnews.com/google-chrome-master-password/comment-page-1/#comment-146968 BritSwedeGuy Mon, 23 Feb 2009 14:17:00 +0000 http://cybernetnews.com/?p=16287#comment-146968 ChromePass didn't work for me - maybe because I am on the dev path (version 2.0.164.0) The internals of the chrome user profile have changed quite a bit since it was first released, any program that worked one day might well stop working shortly after. ChromePass didn’t work for me – maybe because I am on the dev path (version 2.0.164.0)
The internals of the chrome user profile have changed quite a bit since it was first released, any program that worked one day might well stop working shortly after.

]]> By: Scopri Tutte le Password Salvate su Google Chrome con ChromePass http://cybernetnews.com/google-chrome-master-password/comment-page-1/#comment-146959 Scopri Tutte le Password Salvate su Google Chrome con ChromePass Sun, 22 Feb 2009 12:49:51 +0000 http://cybernetnews.com/?p=16287#comment-146959 [...] [Via] heyos_ad_user = 8808; heyos_ad_type = "G"; heyos_ad_format = "1"; heyos_color_border = "5BBF00"; heyos_color_bg = "F5FFEC"; heyos_color_link = "005B88"; heyos_color_text = "000000"; heyos_color_url = "0033FF"; Post simili6 Suggerimenti e Risorse per Usare al Meglio Google ChromeNuovo Aggiornameto di Google ChromeAnteprima delle tab di Firefox con ShowcaseScarica Rapidamente Ebooks da Google con Google Book Downloader Ecco le Prime ScreenShot di Google Chrome per Mac Scrivi un commento [...] [...] [Via] heyos_ad_user = 8808; heyos_ad_type = “G”; heyos_ad_format = “1″; heyos_color_border = “5BBF00″; heyos_color_bg = “F5FFEC”; heyos_color_link = “005B88″; heyos_color_text = “000000″; heyos_color_url = “0033FF”; Post simili6 Suggerimenti e Risorse per Usare al Meglio Google ChromeNuovo Aggiornameto di Google ChromeAnteprima delle tab di Firefox con ShowcaseScarica Rapidamente Ebooks da Google con Google Book Downloader Ecco le Prime ScreenShot di Google Chrome per Mac Scrivi un commento [...]

]]> By: Idodialog http://cybernetnews.com/google-chrome-master-password/comment-page-1/#comment-146956 Idodialog Sun, 22 Feb 2009 06:44:03 +0000 http://cybernetnews.com/?p=16287#comment-146956 "not stored in a manor that would keep" - should be "MANNER", strange coz manor is kind of rare and archaic. “not stored in a manor that would keep” – should be “MANNER”, strange coz manor is kind of rare and archaic.

]]> By: Ryan http://cybernetnews.com/google-chrome-master-password/comment-page-1/#comment-146948 Ryan Sat, 21 Feb 2009 12:21:48 +0000 http://cybernetnews.com/?p=16287#comment-146948 <div class="commentquote"><a href="#comment-146940" rel="nofollow">Michael Dobrofsky wrote:</a><blockquote>In the meantime, I can’t go past Roboform. It’s brilliant.</blockquote></div> Glad you are enjoying Roboform. It's definitely a good solution for storing passwords. <div class="commentquote"><a href="#comment-146944" rel="nofollow">Vish wrote:</a><blockquote>If someone has physical access to your machine, its anyway easy for him get all your passwords and any other information(even with a master password). So, as he said, its an illusion of security.</blockquote></div> True, but Google could encrypt the password storage using your master password, and then it would pretty much require brute force to decrypt them. Also, I found this comment to be a rather good analogy: http://code.google.com/p/chromium/issues/detail?id=1397&q=password&colspec=ID%20Stars%20Pri%20Area%20Type%20Status%20Summary%20Modified%20Owner#c36 Michael Dobrofsky wrote:
In the meantime, I can’t go past Roboform. It’s brilliant.

Glad you are enjoying Roboform. It’s definitely a good solution for storing passwords.

Vish wrote:
If someone has physical access to your machine, its anyway easy for him get all your passwords and any other information(even with a master password). So, as he said, its an illusion of security.

True, but Google could encrypt the password storage using your master password, and then it would pretty much require brute force to decrypt them. Also, I found this comment to be a rather good analogy:
[code.google.com]

]]> By: Vish http://cybernetnews.com/google-chrome-master-password/comment-page-1/#comment-146944 Vish Sat, 21 Feb 2009 02:51:09 +0000 http://cybernetnews.com/?p=16287#comment-146944 There was been a lot of discussion on this in Chrome's bug list. I too was furious about the absence of master passwords until I read the comments on the bug. See the bug @ http://code.google.com/p/chromium/issues/detail?id=53 and the 13th comment about the resolution. If someone has physical access to your machine, its anyway easy for him get all your passwords and any other information(even with a master password). So, as he said, its an illusion of security. There was been a lot of discussion on this in Chrome’s bug list.
I too was furious about the absence of master passwords until I read the comments on the bug. See the bug @ [code.google.com] and the 13th comment about the resolution. If someone has physical access to your machine, its anyway easy for him get all your passwords and any other information(even with a master password). So, as he said, its an illusion of security.

]]> By: Michael Dobrofsky http://cybernetnews.com/google-chrome-master-password/comment-page-1/#comment-146940 Michael Dobrofsky Fri, 20 Feb 2009 22:25:46 +0000 http://cybernetnews.com/?p=16287#comment-146940 I don't even trust Firefox, either...sadly :( It's one thing I don't trust a browser for yet. I wish FF would really secure their password storage - it'd be a nice icing on the cake. In the meantime, I can't go past Roboform. It's brilliant. (Hope this doesn't sound infomercial-ish since I won a copy on Cybernet...hehe) ;) I don’t even trust Firefox, either…sadly :( It’s one thing I don’t trust a browser for yet. I wish FF would really secure their password storage – it’d be a nice icing on the cake. In the meantime, I can’t go past Roboform. It’s brilliant. (Hope this doesn’t sound infomercial-ish since I won a copy on Cybernet…hehe) ;)

]]>