Comment #135 on issue 1397 by maxthelen: Master password is missing http://code.google.com/p/chromium/issues/detail?id=1397
I this topic is losing focus as a result of non-engineer anger and engineering tunnel vision. There is a lot of talk about "enormous security holes" on one side and "sufficient crypto and no real security" on the other side. Both sides overshoot the point - its not about engineer type-algorithm/hacking security and its not some monstrous security hole. No one means to say that a master password is some kind of necessary, Hi-tech black- hatter security feature. It is just a simple barrier to the most ancient form of information theft - social engineering (google it ;). Chrome stores your passwords for convenience and you can open up settings and see them all. A master password prevents some not-really-tech-savvy person who you think you can trust from doing that. Plain and simple, it is a feature that lots of people view as useful for preventing social engineering. These people think is should ship with the browser, but default to turned OFF. Most people won't know the difference and chrome will be the same to them, nothing annoying, but those who recognize it as a useful barrier against social engineering will have the option to turn it on. Its not a security hole, its a an additional barrier that your users would like as an option. Please listen to us. -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings -- Automated mail from issue updates at http://crbug.com/ Subscription options: http://groups.google.com/group/chromium-bugs
