Please, this is a real security issue, I just typed my password in the clear. I would go so far as to say that this is worse than the potential username guessing Stephen describes. If the attacker has physical access to the machine all security is usually lost anyway.
However, there is no need to chose between these two alternatives: if you display two text edit fields you can keep the keyboard focus on the password field while not giving away whether or not the user name is valid. -- Don't switch back to user name field if password is entered incorrectly https://bugs.launchpad.net/bugs/194905 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
