PHWinfo - Afficher un message - Website Security - Preventing Users storing their login details intheir browser...

20/02/2008, 19h53

Danish wrote:
> Hi Jerry,
>
> You've got me worried now! Do you know how banks and such like get
> around this security loop-hole?

They don't. ALL of my accounts have the login info stored on my computer.

> I'm also wondering how the browser decides if the fields entered
> represent a Login and Password pair.
>
> I'm thinking of using the approach of randomising the two field names
> as suggested by Tony, but would the issue you've referred to still
> apply?

Not viewable easily, but as he said, still available to an admin. And
still annoying to your users.

20/02/2008, 19h53	#14
Tony Messages: n/a Hébergeur:	Re: Website Security - Preventing Users storing their login detailsin their browser... Danish wrote: > Hi Jerry, > > You've got me worried now! Do you know how banks and such like get > around this security loop-hole? They don't. ALL of my accounts have the login info stored on my computer. > I'm also wondering how the browser decides if the fields entered > represent a Login and Password pair. > > I'm thinking of using the approach of randomising the two field names > as suggested by Tony, but would the issue you've referred to still > apply? Not viewable easily, but as he said, still available to an admin. And still annoying to your users.