[LINK] Dull Chrome
Roger Clarke
Roger.Clarke at xamax.com.au
Fri Aug 30 16:45:14 AEST 2013
[I thought Google employed *clever* people.
[Does anyone here actually use Chrome?]
All saved passwords in Google Chrome vulnerable
http://www.staysmartonline.gov.au/alert_service/alerts/google_chrome_does_not_secure_stored_passwords
16 August 2013
Users of the popular web browser Google Chrome are warned that
passwords (saved by the browser) are not secured properly, leading to
any other user being able to view all passwords that you have saved.
Chrome will typically prompt you to save your password for a site
that you visit, and remember this for future logins. While other
browsers offer the option of a "master password" that can be
activated to protect your passwords, Chrome does not.
On any Google Chrome browser, you can type
chrome://settings/passwords into the URL bar. This will display a
page listing all of the passwords held by that browser-for all users
of that computer.
This is particularly concerning for shared computers. You should
never save your passwords when using shared computers, such as public
computers at a library or airport.
Do not rely on your browser to safely store passwords for you if
someone else has physical access to that machine.
Only allow people you trust to access your computer, especially if
that computer contains confidential information.
--
Roger Clarke http://www.rogerclarke.com/
Xamax Consultancy Pty Ltd 78 Sidaway St, Chapman ACT 2611 AUSTRALIA
Tel: +61 2 6288 6916 http://about.me/roger.clarke
mailto:Roger.Clarke at xamax.com.au http://www.xamax.com.au/
Visiting Professor in the Faculty of Law University of N.S.W.
Visiting Professor in Computer Science Australian National University
More information about the Link
mailing list