Click here to Skip to main content
14,456,727 members

Welcome to the Lounge

   

For discussing anything related to a software developer's life but is not for programming questions. Got a programming question?

The Lounge is rated Safe For Work. If you're about to post something inappropriate for a shared office environment, then don't post it. No ads, no abuse, and no programming questions. Trolling, (political, climate, religious or whatever) will result in your account being removed.
 
QuestionRe: Refreshing my web dev skills Pin
Member 1189383725-Sep-18 5:49
MemberMember 1189383725-Sep-18 5:49 
AnswerRe: Refreshing my web dev skills Pin
raddevus24-Sep-18 3:39
communityengineerraddevus24-Sep-18 3:39 
AnswerRe: Refreshing my web dev skills Pin
kmoorevs24-Sep-18 4:56
Memberkmoorevs24-Sep-18 4:56 
AnswerRe: Refreshing my web dev skills Pin
Bruce Patin25-Sep-18 6:04
MemberBruce Patin25-Sep-18 6:04 
AnswerRe: Refreshing my web dev skills Pin
Gerry Schmitz25-Sep-18 7:30
mveGerry Schmitz25-Sep-18 7:30 
AnswerRe: Refreshing my web dev skills Pin
MSBassSinger25-Sep-18 8:30
professionalMSBassSinger25-Sep-18 8:30 
AnswerRe: Refreshing my web dev skills Pin
Steve Naidamast25-Sep-18 9:23
professionalSteve Naidamast25-Sep-18 9:23 
RantBad Ideas In Security: Paste Frustration PinPopular
raddevus23-Sep-18 13:18
communityengineerraddevus23-Sep-18 13:18 
Our large bank recently changed their Android app so you can no longer paste a password. Sigh | :sigh:
This is a MAJOR problem if you're using a password manager. I don't type passwords any more.

I contacted them (via their Twitter support) and explained that this is a security fallacy that pasting is dangerous.

Also, you can still paste a password when you login on their web site.
I wanted to mention that to them but was afraid they'd stop it there too.

May Only Prove That The Bank Devs/ Contractors Are Clueless
To me this only exposes the fact that the developers or security contractors or whatever actually have NO CLUE about WHAT SAFE PRACTICES are.

They could even remove copy functionality separately and I would be ok with that. But how could the paste functionality EVER be an exposure? They are just so clueless. Hmmm | :|

EDIT 09/24/2018
Look what I found from the National Cyber Security Centre:
Let them paste passwords - NCSC Site[^]
And it provides additional links as to why pasting should be allowed.
I tweeted this to the bank site.

EDIT 2 09/24/2018
Check out this Wired article and the associated quote:
https://www.wired.com/2015/07/websites-please-stop-blocking-password-managers-2015/[^]

Wired:
But accounts aren't broken into by repetitive copy and pasting. One hacker told WIRED that disabling paste on a webpage does not stop him from using automated tools to speedily gain access to users’ accounts.


modified 24-Sep-18 15:13pm.

GeneralRe: Bad Ideas In Security: Paste Frustration Pin
Mycroft Holmes23-Sep-18 13:36
MemberMycroft Holmes23-Sep-18 13:36 
GeneralRe: Bad Ideas In Security: Paste Frustration Pin
raddevus23-Sep-18 13:56
communityengineerraddevus23-Sep-18 13:56 
GeneralRe: Bad Ideas In Security: Paste Frustration Pin
Mycroft Holmes23-Sep-18 16:49
MemberMycroft Holmes23-Sep-18 16:49 
GeneralRe: Bad Ideas In Security: Paste Frustration Pin
raddevus23-Sep-18 19:00
communityengineerraddevus23-Sep-18 19:00 
GeneralRe: Bad Ideas In Security: Paste Frustration Pin
Dave Kreskowiak23-Sep-18 14:45
mveDave Kreskowiak23-Sep-18 14:45 
GeneralRe: Bad Ideas In Security: Paste Frustration Pin
raddevus23-Sep-18 18:53
communityengineerraddevus23-Sep-18 18:53 
GeneralRe: Bad Ideas In Security: Paste Frustration Pin
Nelek24-Sep-18 0:57
protectorNelek24-Sep-18 0:57 
GeneralRe: Bad Ideas In Security: Paste Frustration Pin
raddevus24-Sep-18 2:49
communityengineerraddevus24-Sep-18 2:49 
GeneralRe: Bad Ideas In Security: Paste Frustration Pin
Rajesh R Subramanian23-Sep-18 20:23
professionalRajesh R Subramanian23-Sep-18 20:23 
GeneralRe: Bad Ideas In Security: Paste Frustration Pin
lw@zi 23-Sep-18 20:49
professional lw@zi 23-Sep-18 20:49 
GeneralOnly because you asked Pin
Rajesh R Subramanian23-Sep-18 21:28
professionalRajesh R Subramanian23-Sep-18 21:28 
GeneralRe: Only because you asked Pin
lw@zi 23-Sep-18 23:54
professional lw@zi 23-Sep-18 23:54 
GeneralRe: Only because you asked Pin
Rajesh R Subramanian24-Sep-18 15:56
professionalRajesh R Subramanian24-Sep-18 15:56 
GeneralRe: Bad Ideas In Security: Paste Frustration Pin
raddevus24-Sep-18 2:47
communityengineerraddevus24-Sep-18 2:47 
GeneralRe: Bad Ideas In Security: Paste Frustration Pin
dandy7224-Sep-18 5:45
Memberdandy7224-Sep-18 5:45 
GeneralRe: Bad Ideas In Security: Paste Frustration Pin
raddevus24-Sep-18 9:36
communityengineerraddevus24-Sep-18 9:36 
GeneralRe: Bad Ideas In Security: Paste Frustration Pin
dandy7224-Sep-18 11:22
Memberdandy7224-Sep-18 11:22 

General General    News News    Suggestion Suggestion    Question Question    Bug Bug    Answer Answer    Joke Joke    Praise Praise    Rant Rant    Admin Admin   

Use Ctrl+Left/Right to switch messages, Ctrl+Up/Down to switch threads, Ctrl+Shift+Left/Right to switch pages.