Hi all,
an unrelated discussion made me aware that the master password cipher
strength bug[1] is still open. Any plans to tackle that?
Other software uses strong AES algorithms for their "password
collections". Would it be hard to follow?
Jörg.
[1] https://bugzilla.mozilla.org/show_bug.cgi?id=524403
Plenty of bad press here:
https://nakedsecurity.sophos.com/2018/03/20/nine-years-on-firefoxs-master-password-is-still-insecure/
https://fossbytes.com/firefox-master-password-weak-encryption-brute-force-one-minute/
_______________________________________________
dev-platform mailing list
dev-platform@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-platform