Pasting passwords into browser
Posted: Tue Apr 03, 2018 2:45 pm
Hello,
I have been using a password manager (fpm2 from PuppyLinux) for years to paste username and password into web sites. Lately, it seems that this is being blocked. Keepass also does not work.
It is claimed that pasting passwords is a security risk (2012); that javascript can reveal pasted text remotely.
On the other hand, having to type the password discourages the use of long random passwords and potentially exposes them to keyloggers. (By the way, I exit the clipboard manager first so passwords don't show up in its history.)
There are workarounds, such as
https://www.ghacks.net/2014/07/26/paste ... -internet/
https://www.cyberciti.biz/linux-news/go ... n-website/.
I have tried "Don't f*** with paste" extension in Vivaldi, and it permits pasting password, but not username for some reason. However, I don't know if I can trust this extension.
I think I've googled this to death, so I'm asking for facts and opinions here, before I switch all my passwords to horse staple battery. (I don't believe that's a long password, but that's another topic!)
Thanks in advance.
I have been using a password manager (fpm2 from PuppyLinux) for years to paste username and password into web sites. Lately, it seems that this is being blocked. Keepass also does not work.
It is claimed that pasting passwords is a security risk (2012); that javascript can reveal pasted text remotely.
On the other hand, having to type the password discourages the use of long random passwords and potentially exposes them to keyloggers. (By the way, I exit the clipboard manager first so passwords don't show up in its history.)
There are workarounds, such as
https://www.ghacks.net/2014/07/26/paste ... -internet/
https://www.cyberciti.biz/linux-news/go ... n-website/.
I have tried "Don't f*** with paste" extension in Vivaldi, and it permits pasting password, but not username for some reason. However, I don't know if I can trust this extension.
I think I've googled this to death, so I'm asking for facts and opinions here, before I switch all my passwords to horse staple battery. (I don't believe that's a long password, but that's another topic!)
Thanks in advance.