Comments on: Tricking browsers that are storing passwords http://blog.jorygeerts.com/2008/02/09/tricking-browsers-that-are-storing-passwords/ Just another WordPress weblog, or something like that Sun, 16 May 2010 16:52:11 +0000 hourly 1 http://wordpress.org/?v=3.0 By: Kevin Zak http://blog.jorygeerts.com/2008/02/09/tricking-browsers-that-are-storing-passwords/comment-page-1/#comment-5683 Kevin Zak Mon, 17 Mar 2008 00:15:38 +0000 http://blog.jorygeerts.com/2008/02/09/tricking-browsers-that-are-storing-passwords/#comment-5683 It's an interesting question you pose, Jory. While some may find it an annoying quirk, I think that an extra layer of security like what you proposed is worth it. I used to worry about family members messing with things that I stay logged into. Now I generally lock my sessions if I'm going to be gone for any extended period of time. All in all, I don't think it's unreasonable to limit unessential functionality for security's sake. It’s an interesting question you pose, Jory. While some may find it an annoying quirk, I think that an extra layer of security like what you proposed is worth it. I used to worry about family members messing with things that I stay logged into. Now I generally lock my sessions if I’m going to be gone for any extended period of time. All in all, I don’t think it’s unreasonable to limit unessential functionality for security’s sake.

]]> By: Jory http://blog.jorygeerts.com/2008/02/09/tricking-browsers-that-are-storing-passwords/comment-page-1/#comment-5383 Jory Wed, 20 Feb 2008 11:15:12 +0000 http://blog.jorygeerts.com/2008/02/09/tricking-browsers-that-are-storing-passwords/#comment-5383 Wow, Seth, I had no idea there was such a thing. Seems like I'll need to use a custom doctype for this though and I'm not sure I'm 100% comfortable doing that just yet. (Knowing me, I'll break more this I fix when doing something like that.) Wow, Seth, I had no idea there was such a thing.

Seems like I’ll need to use a custom doctype for this though and I’m not sure I’m 100% comfortable doing that just yet. (Knowing me, I’ll break more this I fix when doing something like that.)

]]> By: Ben Babcock http://blog.jorygeerts.com/2008/02/09/tricking-browsers-that-are-storing-passwords/comment-page-1/#comment-5377 Ben Babcock Wed, 20 Feb 2008 03:47:27 +0000 http://blog.jorygeerts.com/2008/02/09/tricking-browsers-that-are-storing-passwords/#comment-5377 I don't think it's a big deal if you do that. While in general I prefer to let a user keep control of his or her browsing experience, there's always the exception to the rule. In a case like this, it's reasonable to prevent users from automatically filling out password forms--that's extra security, after all. And it's not like you're adding 300 layers of security complete with a CAPTCHA image, and ID image, a question, an ID phrase, and whatnot. :P *cough* My bank sucks *cough* I don’t think it’s a big deal if you do that.

While in general I prefer to let a user keep control of his or her browsing experience, there’s always the exception to the rule. In a case like this, it’s reasonable to prevent users from automatically filling out password forms–that’s extra security, after all. And it’s not like you’re adding 300 layers of security complete with a CAPTCHA image, and ID image, a question, an ID phrase, and whatnot. :P

*cough* My bank sucks *cough*

]]> By: Seth http://blog.jorygeerts.com/2008/02/09/tricking-browsers-that-are-storing-passwords/comment-page-1/#comment-5375 Seth Wed, 20 Feb 2008 02:55:04 +0000 http://blog.jorygeerts.com/2008/02/09/tricking-browsers-that-are-storing-passwords/#comment-5375 <input type="password" autocomplete="off" /> Done. <input type=”password” autocomplete=”off” />

Done.

]]>