Thanks for the detailed answer. > 1. my disk encryption keys
I'm on ecrypfs so this should be fine. > 2. my OS user account passphrase Luckily they are hashed on my Linux system. > 3. my SSH keys > 4. my GPG keys As they are normally in the home directory they are protected by ecryptfs. So this makes at least my system most vulnerable by a cold boot attack. Just to go sure: As I know if security.ask_for_password is set to 1 Firefox will always ask for the master password. I'm assuming now Firefox does overwrite it in the memory too immediately after it was entered and Firefox could (not) find the needed username/password entries. Or am I wrong? -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto