Re: are online companies breaking password manager?
- From: Grant <bugsplatter@xxxxxxxxx>
- Date: Sun, 26 Feb 2006 12:12:18 +1100
On Sat, 25 Feb 2006 20:52:20 GMT, MrC <spamno@xxxxxxxxxxxxxxxxx> wrote:
My credit card company's online login page changed in
design recently and now I have to manually type
my username and password into the form to get in.
More to the point -- are you not concerned that somebody can access
your credit card details by visiting their site on your computer?
My Internet banking access requires AccessID, PIN and Authentication
Key from a hardware keytag device -- that way even if a login session
was captured it cannot be replayed as the authentication key will
not be valid.
I'm thinking that
the new design hides the "user id" and "password"
strings as a small image so mozilla can't recognize
it's a login form? How else would this happen?
Dunno, I disable password managers. Doesn't surprise me they'd
try to sidestep them, I take it 'view source' doesn't tell you
much?
I'm guessing banking companies have decided they
don't like Password managers.
They're non-secure, and too many people are being burned by
(windoze) keystroke loggers, etc.
I'm using mozilla 1.7.12 on Fedora core 4Shouldn't matter -- this is (or should be) OS and browser neutral.
Grant.
--
.... The computer scientist, who had listened to all of this said,
"Yes, but where do you think the chaos came from?"
.
- Follow-Ups:
- References:
- Prev by Date: Re: dhcp-client cleanup
- Next by Date: Re: dhcp-client cleanup
- Previous by thread: are online companies breaking password manager?
- Next by thread: Re: are online companies breaking password manager?
- Index(es):
