Hartmut Figge wrote:
Rufus:
»Q« wrote:
Setting the master password to the empty string is a workaround for a
specific problem the OP has. The OP doesn't want to use a master
password in the first place, so using the empty string as the password
won't decrease the OP's security.
Maybe, but I'm very surprised a user would be able do that without still
wiping out his password list - simply changing the Master to a null
string once it has been set is still a change; I question if that will
actually work...and quite hope it doesn't work, really...for all of the
reasons above.
But you need the old master password to accomplish that. ;)
Hartmut
Which can also be easily hacked, if someone is smart enough to
accomplish the foregoing.
I've been warned against using the password managers in browsers by our
IT security folks at work (and I never do, at work)...I think I'm going
to start paying closer attention to them.
--
- Rufus
_______________________________________________
support-seamonkey mailing list
[email protected]
https://lists.mozilla.org/listinfo/support-seamonkey
