New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Option to prevent autofill if a subdomain matches only #519
Comments
I think that this check has already been implemented in #333 and is available in the preferences in the autofill section: "Warn about potential phishing sites". |
Sorry for my late reply, somehow missed your comment.
The "Warn about potential phishing sites" is very intrusive, unfortunately, since it always pops up a modal dialogue. Furthermore, I am not sure — are filenames actually considered as Domains in the security warning? |
Please provide more specific examples with step-by-step instructions on how to reproduce. Then describe the current behavior with the "Warn about potential phishing sites" option enabled and then explain your desired behavior. |
Sure. So, there is a site on a subdomain, sub.example.com, and I got a password for it in pass in "web/example.com/sub.example.com". When I visit the site, the warning "There was an error parsing the URL (null) from the password database. Do you want to continue anyway? Doing so may be a security risk." appears. Desired Behavior:
|
I agree that it might make sense to compare the entry's name to the current URL in cases where an entry doesn't have a Since I'm not using the autofill feature, I don't see myself spending time on improving that feature. But if you or somebody else comes up with a contribution in this direction, I won't say "no". 🙋♂️ |
No, I meant, it'd be helpful if I could determine, WHY PassFF actually thinks this is a security risk. In the example here I have absolutely no idea why PassFF concludes that the domains are not matching.
Yeah, this is my major point here. I have no experience in developing Firefox addons yet, but I'll have a look at the code.
This implies that PassFF is currently only using the |
That's strange. When there is no |
You are right, I had actually added an |
I just opened a PR and implemented my two proposals in two different commits. What do you think? |
Environment
Versions
Status line output:
[07:31:31] show -> (0) no error message
Observations
Steps to reproduce the issue
Actual behaviour
Login credentials were autofilled.
Expected behaviour
I would prefer to have an option to enable a stricter domain checking in autofill as proposed by @thblt in #199 before (apparently, his proposal was not implemented in the end). Since test.example.com and test.foobar.org just share a subdomain, there is no point in filling the credentials for test.example.com at test.foobar.org. The fuzzy search is of course great for manual searches, but a potential security risk during autofill.
In my opinion, such an option, let's say "Strict domain matching for autofill" should behave roughly as follows:
url
field is present in the entry and has a path: the entire path must match (query can be ignored).url
field is present in the entry and has no path (i.e., it's just the domain): match this domain and any subdomain.url
field is present in the entry: match use the filename as domain as proceed as in 2.This should actually yield a solid security improvement while still being able to profit from the autofill feature.
The text was updated successfully, but these errors were encountered: