User:Mconnor/Past/PasswordManagerSecurity: Difference between revisions

Revision as of 18:39, 22 November 2006

It has been suggested that

Action URL domain	First visit	After action URL change	Rationale
None (javascript changes onsubmit)	Allow save	Allow use	If the site is modifying action URLs or other things by JS, action URLs are irrelevant
Same domain	Allow save	Allow use	If you're submitting to the exact domain you're on, odds are they control enough to get your password anyway
Same TLD	Allow save	Allow use	Same argument as the same domain, roughly. They can already use domain cookies to leak your sessions to the other domain anyway, so we're not changing much here
Different TLD	Warn, but allow save	Warn, provide enough details for users to decide whether to autofill	Clearly a rare case, and likely risky. Legit sites can easily ensure no one gets the warning.

@@ Line 1: / Line 1: @@
+It has been suggested that
 {| width="800" border=1 cellpadding=5|
 ! Action URL domain
 ! First visit
 ! After action URL change
+! Rationale
 |-
 | None (javascript changes onsubmit)
 | Allow save
 | Allow use
+| If the site is modifying action URLs or other things by JS, action URLs are irrelevant
 |-
 | Same domain
 | Allow save
 | Allow use
+| If you're submitting to the exact domain you're on, odds are they control enough to get your password anyway
 |-
 | Same TLD
 | Allow save
 | Allow use
+| Same argument as the same domain, roughly.  They can already use domain cookies to leak your sessions to the other domain anyway, so we're not changing much here
 |-
 | Different TLD
 | Warn, but allow save
 | Warn, provide enough details for users to decide whether to autofill
+| Clearly a rare case, and likely risky.  Legit sites can easily ensure no one gets the warning.
 |}