Security of safari saved passwords and autofill


so, downloaded newegg onto 10.5 ipad , when went login app able access safari saved passwords autofill password. able without me using touchid or putting in device passcode. on top of this, app has option "show" password—essentially showing hidden password. got me thinking websites have option reveal hidden password on password field. believe assumption our devices must first unlocked use of touchid or device password before access granted autofill our saved passwords, seem me short sighted. nefarious person need access unlocked device , view password site or app has "view" toggle or similar.

ios , macos require input of device password or touchid in order access our full list of saved passwords, why same standard not applied when autofilling passwords apps or websites? feel glaring oversight in security. there should @ least option in settings require input of device password or touchid whenever access saved passwords needed, particularly when auto filling passwords apps or websites. toggle should password protected, "find —" setting protected. have read, issue seems have been addressed in ios 11, @ least in case when app requests access saved passwords (it require touchid). security flaw still remains when auto filling website passwords.

has been addressed before? missing something? there setting i'm missing performs security functions outlined above or similar? if has been addressed , still issue, wtf apple!

have attached photo of newegg app illustrate mean option show password. also, while newegg app prompt touch id, need hit cancel , saved password prompt comes up. while flaw in newegg app, issue illustrated above still applies websites autofill passwords. great example sign in page google, have attached photo of.

img_0004.jpg img_0006.jpg
 

as security, lock devices when unattended. accident happen on unlocked device. reckon it's secure, if not more so, other cloud-storage password options. if upmost security thing, recommend using app 1password local-only vault, , can sync vault between devices on home wifi network. can use safari 1password app extension directly in safari auto-fill passwords, , can set 1password require touch id each time mentioned.
 


Forums iPhone, iPad, and iPod Touch iOS iOS 10


  • iPhone
  • Mac OS & System Software
  • iPad
  • Apple Watch
  • Notebooks
  • iTunes
  • Apple ID
  • iCloud
  • Desktop Computers
  • Apple Music
  • Professional Applications
  • iPod
  • iWork
  • Apple TV
  • iLife
  • Wireless

Comments

Post a Comment

Popular posts from this blog

How would you like to be sentenced by a computer program?

quote when chief justice john g. roberts jr. visited rensselaer polytechnic institute last month, he asked startling question , 1 overtones of science fiction. “can foresee day,” asked shirley ann jackson , president of college in upstate new york, “when smart machines, driven artificial intelligences, assist courtroom fact-finding or, more controversially even, judicial decision-making?” chief justice’s answer more surprising question. “it’s day that’s here,” said, “and it’s putting significant strain on how judiciary goes doing things.” may have been thinking case of wisconsin man, eric l. loomis, who sentenced 6 years in prison based in part on private company’s proprietary software. mr. loomis says right due process violated judge’s consideration of report generated software’s secret algorithm, 1 mr. loomis unable inspect or challenge. click expand... https://mobile.nytimes.com/2017/05/...by-a-software-programs-secre
Read more

MBP extremely slow, HDD cable replaced, what next?

hello! week ago or so, beloved sturdy workhorse (macbook pro model a1278 mid-2012) became , unreasonably slow, freezing , beachballing while performing easiest tasks. however, before managed assess situation, infamous flashing question mark on boot appeared, warranting change of hdd cable per these instructions: macbook pro 13" unibody mid 2012 hard drive cable replacement - ifixit after replacing hdd cable, relieved see files intact, laptop still running extremely slow, albeit semi-reliably , not crashing no more. since used pretty every day past 5 years, i'd installing ssd (or maybe upgrading ram) in order , appreciate inputs on should doing next. here's etrecheck report, took 35min reinforces "waning hdd" theory: etrecheck version: 3.4 (420) report generated 2017-07-19 13:11:51 download etrecheck https://etrecheck.com runtime: 35:11 performance: poor problem: computer slow description: computer slow, beachball
Read more

How much is my cMP worth?

i'm thinking on selling cmp 5,1 not powerful enough anymore. have 5,1 x5690 , 24gb of ram, idea worth in europe?   in netherlands think might €1000 it, if you're lucky . depends on ssd's , graphic card(s) in there etc etc. iused.nl , here in netherlands, have quad core 5,1's around €700-€800. keep in mind business , prices no doubt higher on second hand market. think you're realistically looking @ €750, i'd interested hear others have say.   Forums Macs Desktops Mac Pro iPhone Mac OS & System Software iPad Apple Watch Notebooks iTunes Apple ID iCloud Desktop Computers Apple Music Professional Applications iPod iWork Apple TV iLife Wireless
Read more