(3) proceeding to continue after filling in the new password field to go further without confirmation that my new password would be saved in the KeePassXC database to actually click "Save" on that Zerohedge account admin page to Save that new password, and (2) saying a thank-you to the Gods that I didn't have my KeePassXC-Browser icon buried on my browser's "Overflow Menu" where it would have been out of sight, and I certainly to not know this code well enough to know if this speculation applies here.Īfter (1) bumping BlinkTime and RedirectAllowance in my KeePassXC-Browser settings (as suggested by some other similar reports here), and If the best that can be done with this browser add-on password generator interface is to make it much easier to lose knowledge of your password(s) for a website, then it would be better to not have that interface. If that is the case, then I recommend = Removing = the interface to the KeePassXC Password Generator in the Browser add-on, as it's an invitation to shoot one's self in the foot (to set some account's password to something that will be immediately and forever after lost.) This in particular would mean = Removing = the "Show Password Generator Icons" option from the KeePassXC context menu for login credential fields, and = Removing = the "Activate password generator" option from the Preferences for this KeePassXC-Browser 1.1.13 Add-on. For some websites, I have multiple login accounts, and without some serious UI and serious logic hacking, the code that was generating a new random password in the browser (even if using the KeePassXC Password Generator) would, perhaps, not know which one of my several login accounts for that website should have its KeePassXC stored password updated. This may actually be a nearly impossible expectation on my part. If the above normally works better than this, for most users, on most systems, suggesting that there is something "special" about my system, then I may be able to assist in debugging the problem, if given some specific questions, as I am an ancient Unix/Linux kernel/utilities hacker. The newly created password never ends up back in the KeePassXC database, and is lost forever, unless I manually also enter that new password directly into "Edit entry" screen for that account in the KeePassXC application and click Apply or OK for that screen. Then I go to my account login page for that website, and endeavor to change my password there. My testing is typically when I have the KeePassXC application already opened and running, with its database unlocked, and the above stated proxy running, and with my being able to login to the test website (such as Zerohedge) using the existing login name and soon to be obsolete password obtained from KeePassXC using the (quite nice) login form recognition and field data entering of KeePassXC. so I am perhaps more sensitive than most to risks of losing an account's password when trying to update it. I do have a critical account at one website (an email service for a critical email account of mine) that, until recently, had an essentially impossible and broken password recovery mechanism. However every site I've tried this on is the same way. I'm still missing it) was my account, as that's not a critical account for me, and they have quite functional password recovery mechanisms. The particular site I have been playing around the most with this, trying to see if I was missing some user step (if I am. I am using KeePassXC 2.3.3 with the KeePassXC-Browser 1.1.13 Add-on in Firefox 60.0.2 on Gentoo Linux with the /usr/local/bin/keepassxc-proxy proxy. The way it is now, for me, is dangerous - a high risk of losing a newly generated password if I am not careful. I would like to use KeePassXC to update my passwords on dozens of websites, and it would be much easier to do so, if I could just work within the browser, rather than copying newly generated passwords back and forth between KeePassXC itself (to get it into an updated KeePassXC record) and the admin page for my account on each corresponding website. If I forget to do so, before closing the KeePassXC Password Generator popup in the browser, then my new password for that website is lost forever. I have to open KeePassXC itself, in a separate window, and update the record for that website to have the newly generated password. I can find no way whatsoever to make this happen just from within the Browser interface. When I have an existing, password protected, account on some website, where that website and login credentials are known to KeePassXC, then I expect that when I am change that password, using the KeePassXC Password Generator to make a nice new random password, that there will be someway to ensure that that new password is saved to the KeePassXC database, updating the password it has saved for that website.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |