You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Use autofill with KeePassDX and see that both dropbox and box are suggested, even though dropbox.com should clearly not match box.com and this is even on account.box.com.
Expected behavior
An entry with https://box.com might match any subdomain like example.box.com but not a domain that just has box.com at the end. While enabling the "Subdomain search" setting prevents this from happening, there should be no match because these domains are completely unrelated and it only benefits phishing.
KeePass Database
Irrelevant.
KeePassDX:
Version: 4.0.6
Build: Free
Language: en
Android:
Device: sweet
Version: 14
The text was updated successfully, but these errors were encountered:
Yeah, this looks wrong and even more odd. I wonder if there is a specific logic for matching IP addresses to cause these results.
mydomain.com:
sub1.mydomain.com entries
sub2.mydomain.com entries
mydomain.com entries
This is okay if you don't have the option "Subdomain search" enabled. The idea behind this is presumably that many domains use the same credentials on different subdomains like www. or login., for example. The problem is that it also matches sub1mydomain.com which is not a sub-domain of mydomain at all.
When the setting "Subdomain search" is disabled, entries are suggested that match only the last part of the domain name.
To Reproduce
Steps to reproduce the behavior:
Expected behavior
An entry with https://box.com might match any subdomain like example.box.com but not a domain that just has box.com at the end. While enabling the "Subdomain search" setting prevents this from happening, there should be no match because these domains are completely unrelated and it only benefits phishing.
KeePass Database
Irrelevant.
KeePassDX:
Android:
The text was updated successfully, but these errors were encountered: