form history control
Don't get me wrong: I love the SM form manager. But now that I am using the form history control I see that every 1040 I have ever filled out is stored in the forms history because of all the funky, differently named form fields that different web site designers have used. It also includes a number of $credi-card001qz weirdynamed forms containing credit card numbers. Before I started using the form history control add-on I was totally unaware that this information was being stored on my computer somewhere. ___ support-seamonkey mailing list support-seamonkey@lists.mozilla.org https://lists.mozilla.org/listinfo/support-seamonkey
Re: form history
Rick Merrill wrote: It would not matter if they did or did not: the website designer can still use form fields for whatever. It is the fault of the website creator to use insecure methods. It is not the fault of SM forms if a field called cc is used to store a credit card number. At any rate, I was suspicious and FOUND MY credit card in a form by using the forms manager! So, bad websites are a security hole, NOT forms manager ( I misspoke above). The only way SM could supply a cc number to a form would be if you gave it the number. Are you saying SM saved your cc number without your knowledge or consent? Or are you saying you foolishly saved it yourself and then it popped up? -- War doesn't determine who's right, just who's left. -- Paul B. Gallagher ___ support-seamonkey mailing list support-seamonkey@lists.mozilla.org https://lists.mozilla.org/listinfo/support-seamonkey
Re: form history
Paul B. Gallagher wrote: Rick Merrill wrote: It would not matter if they did or did not: the website designer can still use form fields for whatever. It is the fault of the website creator to use insecure methods. It is not the fault of SM forms if a field called cc is used to store a credit card number. At any rate, I was suspicious and FOUND MY credit card in a form by using the forms manager! So, bad websites are a security hole, NOT forms manager ( I misspoke above). The only way SM could supply a cc number to a form would be if you gave it the number. Are you saying SM saved your cc number without your knowledge or consent? Yes, that is correct. The web site used javascript and the field was cc! Or are you saying you foolishly saved it yourself and then it popped up? Form suggestions are in a pull-down ;-) ___ support-seamonkey mailing list support-seamonkey@lists.mozilla.org https://lists.mozilla.org/listinfo/support-seamonkey
Re: form history
Phillip Jones wrote: Rick Merrill wrote: Phillip Jones wrote: Rick Merrill wrote: Jens Hatlak wrote: Rick Merrill wrote: how can you edit the form history? (and delete the mistaken entries I made) https://addons.mozilla.org/en-US/seamonkey/addon/12021/ In SeaMonkey 2.1 you'll have the built-in Data Manager for that (currently an extension). HTH Jens Isn't the forms manager a huge security hole!? No. the forms manager is supposed (they way it worked in 1.1.9 and lower and work in Form History manager And Auto Fill Forms is to automatically fill-in redundant information such as Name address city state zip phone. etc by copping what you fill out the first time to a Database . then when you run across the same item to fill in double click in the blank and its filled or click and hold, and a pop up window appears and choose desired info. User names and Passwords are not supposed to be affected that's a completely different database. User names and Passwords are saved for non secure sites if you choose to do so when a pop up item asked whether you wish to save username and password. IN SM 1 you could do so in secure sites.That has been changed due to pressure from Financial institutions. But if the credit card is stored in a field in the clear, what's to prevent a day zero virus from finding it? Forget passwords - this prima data. Neither form History Manager nor AutoFill Forms has credit card numbers set up. you can't remember CC numbers or even t cvc numbers. It would not matter if they did or did not: the website designer can still use form fields for whatever. It is the fault of the website creator to use insecure methods. It is not the fault of SM forms if a field called cc is used to store a credit card number. At any rate, I was suspicious and FOUND MY credit card in a form by using the forms manager! So, bad websites are a security hole, NOT forms manager ( I misspoke above). ___ support-seamonkey mailing list support-seamonkey@lists.mozilla.org https://lists.mozilla.org/listinfo/support-seamonkey
Re: form history
Jens Hatlak wrote: Rick Merrill wrote: how can you edit the form history? (and delete the mistaken entries I made) https://addons.mozilla.org/en-US/seamonkey/addon/12021/ In SeaMonkey 2.1 you'll have the built-in Data Manager for that (currently an extension). HTH Jens Isn't the forms manager a huge security hole!? ___ support-seamonkey mailing list support-seamonkey@lists.mozilla.org https://lists.mozilla.org/listinfo/support-seamonkey
Re: form history
Rick Merrill schrieb: Isn't the forms manager a huge security hole!? As long as it can't send any data to websites without your consent, it isn't. And that's one reason why we don't auto-fill forms, by the way, and we only help you complete items or propose ones in a dropdown when you double-click. Prefilling and having websites auto-submit would indeed by a privacy, perhaps even security, problem (probably only the former, though). In its current state, its not a problem because it never sends any data anywhere without you putting it in the text fields yourself. Robert Kaiser -- Note that any statements of mine - no matter how passionate - are never meant to be offensive but very often as food for thought or possible arguments that we as a community needs answers to. And most of the time, I even appreciate irony and fun! :) ___ support-seamonkey mailing list support-seamonkey@lists.mozilla.org https://lists.mozilla.org/listinfo/support-seamonkey
Re: form history
Rick Merrill wrote: Jens Hatlak wrote: Rick Merrill wrote: how can you edit the form history? (and delete the mistaken entries I made) https://addons.mozilla.org/en-US/seamonkey/addon/12021/ In SeaMonkey 2.1 you'll have the built-in Data Manager for that (currently an extension). HTH Jens Isn't the forms manager a huge security hole!? No. the forms manager is supposed (they way it worked in 1.1.9 and lower and work in Form History manager And Auto Fill Forms is to automatically fill-in redundant information such as Name address city state zip phone. etc by copping what you fill out the first time to a Database . then when you run across the same item to fill in double click in the blank and its filled or click and hold, and a pop up window appears and choose desired info. User names and Passwords are not supposed to be affected that's a completely different database. User names and Passwords are saved for non secure sites if you choose to do so when a pop up item asked whether you wish to save username and password. IN SM 1 you could do so in secure sites.That has been changed due to pressure from Financial institutions. -- Phillip M. Jones, C.E.T.If it's Fixed, Don't Break it http://www.phillipmjones.netmailto:pjon...@kimbanet.com ___ support-seamonkey mailing list support-seamonkey@lists.mozilla.org https://lists.mozilla.org/listinfo/support-seamonkey
Re: form history
Phillip Jones wrote: Rick Merrill wrote: Jens Hatlak wrote: Rick Merrill wrote: how can you edit the form history? (and delete the mistaken entries I made) https://addons.mozilla.org/en-US/seamonkey/addon/12021/ In SeaMonkey 2.1 you'll have the built-in Data Manager for that (currently an extension). HTH Jens Isn't the forms manager a huge security hole!? No. the forms manager is supposed (they way it worked in 1.1.9 and lower and work in Form History manager And Auto Fill Forms is to automatically fill-in redundant information such as Name address city state zip phone. etc by copping what you fill out the first time to a Database . then when you run across the same item to fill in double click in the blank and its filled or click and hold, and a pop up window appears and choose desired info. User names and Passwords are not supposed to be affected that's a completely different database. User names and Passwords are saved for non secure sites if you choose to do so when a pop up item asked whether you wish to save username and password. IN SM 1 you could do so in secure sites.That has been changed due to pressure from Financial institutions. But if the credit card is stored in a field in the clear, what's to prevent a day zero virus from finding it? Forget passwords - this prima data. ___ support-seamonkey mailing list support-seamonkey@lists.mozilla.org https://lists.mozilla.org/listinfo/support-seamonkey
Re: form history
Rick Merrill wrote: Phillip Jones wrote: Rick Merrill wrote: Jens Hatlak wrote: Rick Merrill wrote: how can you edit the form history? (and delete the mistaken entries I made) https://addons.mozilla.org/en-US/seamonkey/addon/12021/ In SeaMonkey 2.1 you'll have the built-in Data Manager for that (currently an extension). HTH Jens Isn't the forms manager a huge security hole!? No. the forms manager is supposed (they way it worked in 1.1.9 and lower and work in Form History manager And Auto Fill Forms is to automatically fill-in redundant information such as Name address city state zip phone. etc by copping what you fill out the first time to a Database . then when you run across the same item to fill in double click in the blank and its filled or click and hold, and a pop up window appears and choose desired info. User names and Passwords are not supposed to be affected that's a completely different database. User names and Passwords are saved for non secure sites if you choose to do so when a pop up item asked whether you wish to save username and password. IN SM 1 you could do so in secure sites.That has been changed due to pressure from Financial institutions. But if the credit card is stored in a field in the clear, what's to prevent a day zero virus from finding it? Forget passwords - this prima data. Neither form History Manager nor AutoFill Forms has credit card numbers set up. you can't remember CC numbers or even t cvc numbers. It can if you set them up in Autofill. But you have to write a rule to do so. -- Phillip M. Jones, C.E.T.If it's Fixed, Don't Break it http://www.phillipmjones.netmailto:pjon...@kimbanet.com ___ support-seamonkey mailing list support-seamonkey@lists.mozilla.org https://lists.mozilla.org/listinfo/support-seamonkey
form history
how can you edit the form history? (and delete the mistaken entries I made) ___ support-seamonkey mailing list support-seamonkey@lists.mozilla.org https://lists.mozilla.org/listinfo/support-seamonkey
Re: form history
Rick Merrill wrote: how can you edit the form history? (and delete the mistaken entries I made) https://addons.mozilla.org/en-US/seamonkey/addon/12021/ In SeaMonkey 2.1 you'll have the built-in Data Manager for that (currently an extension). HTH Jens -- Jens Hatlak http://jens.hatlak.de/ SeaMonkey Trunk Tracker http://smtt.blogspot.com/ ___ support-seamonkey mailing list support-seamonkey@lists.mozilla.org https://lists.mozilla.org/listinfo/support-seamonkey
Re: form history
Jens Hatlak wrote: Rick Merrill wrote: how can you edit the form history? (and delete the mistaken entries I made) https://addons.mozilla.org/en-US/seamonkey/addon/12021/ In SeaMonkey 2.1 you'll have the built-in Data Manager for that (currently an extension). HTH Jens Thanks - glad to find this out before the list got too humongous! ___ support-seamonkey mailing list support-seamonkey@lists.mozilla.org https://lists.mozilla.org/listinfo/support-seamonkey