>> ...switch to cookie authentication and forget the password, that way when >> the zero-day >> happens you only lose your cookie which is probably not as powerful as >> the actual password(ie I dont think you can change your password with >> just the cookie) plus the zero day can't "permanently" compromise >> thunderbird cause you opened it in a disposable
yes, it can't probably change the password. but this is useless, is again like "admin vs not". stealing a cookie *ONCE* and you: -can't change password -CAN impersonate user -CAN read all mails in other words can do everything someone does with his mail... and mails works in other way so... i think that Qubes way is much better than any other thing, use it and don't worry about some impractical scenarios. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/247e0dfe-3c2d-3a1f-fedb-d65df200feea%40posteo.net. For more options, visit https://groups.google.com/d/optout.