On Mon, Feb 13, 2006 at 05:52:29PM -0500, Eric Dorland wrote: > tags 352480 wontfix > thanks > > * William Ballard ([EMAIL PROTECTED]) wrote: > > Package: firefox > > Version: 1.5.dfsg-4 > > Severity: normal > > > > Firefox has a mode where it will sometimes do a google search on > > whatever the contents of your clipboard is. I don't know the exact > > mouse sequence (I think it's middle button), but I'm sure you know what > > I'm talking about. > > > > More than once I've had some sensitive data (including passwords) in the > > clipboard and had the my secret password posted to the internet! > > > > Since this feature is insecure could it be disabled by default? > > This is not a security risk, you're still the one who pasted a > password into Firefox. There's only so much a program can do to save > the user from themselves. Won't fix.
It's a misfeature. It's too easy to lean on the mouse at the wrong time and Firefox rockets your clipboard contents off to the internet. It's not as easy to accidentally lean on the keyboard and press Ctrl+V, but it's super-easy to accidentally click the middle button. This is more of a misfeature in X: I could have a bunch of rm commands in the clipboard and accidentally execute them in xterm; but in Firefox it's particularly nasty because it just jets off on you. -50 cool points. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
