|
|
|
|
|
|
by wtbob
4025 days ago
|
|
|
> > Google will store your website and WiFi passwords (along with your emails and pictures) in plaintext on their servers > You're going to need to qualify that statement. They store that information such that they can read it. Yes, it may actually be encrypted with a key they have access to, but it's effectively plaintext because they can read it. > > Mozilla utterly destroyed the security of their sync system > You're going to need to qualify that statement. https://blog.mozilla.org/services/2014/04/30/firefox-syncs-n... Your master key is stored on their servers, encrypted with a key derived from your password. That's pretty bad already, since user-memorable passwords are highly susceptible to guessing. It gets worse though, since they use Mozilla-served JavaScript to log you into your Firefox account—which means Mozilla could choose to serve someone different JavaScript and steal his password. All it would take is a court order, and they could be forced to do it. |
|
|