undefined | Better HN

0 pointskgwxd5y ago0 comments

Mine clears the clipboard after 10 seconds.

0 comments

6 comments · 2 top-level

ProtoAES2565y ago· 4 in thread

You do realize that in 10 seconds your computer can achieve a lot of stuffs right?

I don't think a webpage can read clipboard without the user manually pasting.

If there's some malicious desktop program running on your machine at the same time as the password manager then you're probably screwed regardless of whether the password passes through the clipboard - but maybe there's some subtleties I'm missing here.

flemhans5y ago

I've accidentally pasted sensitive passwords enough times that I know the procedure is prone to errors.

If I have to do it, I immediately copy something else right afterwards, to avoid an accidental paste later on.

1 more reply

fsh5y ago

For example it could just read all the passwords from the password manager's UI.

pyhtel5y ago

Between Keepass, 1passwword, and lastpass I've never seen a password manager that just shows the password without the user explicitly choosing to reveal it

1 more reply

abdullahkhalids5y ago

The purpose of clearing clipboard is so you don't accidentally paste it into a chat window or something. Not to protect against malicious programs.

j / k navigate · click thread line to collapse

0 comments

6 comments · 2 top-level

ProtoAES2565y ago· 4 in thread

You do realize that in 10 seconds your computer can achieve a lot of stuffs right?

treesprite825y ago

I don't think a webpage can read clipboard without the user manually pasting.

If there's some malicious desktop program running on your machine at the same time as the password manager then you're probably screwed regardless of whether the password passes through the clipboard - but maybe there's some subtleties I'm missing here.

flemhans5y ago

I've accidentally pasted sensitive passwords enough times that I know the procedure is prone to errors.

If I have to do it, I immediately copy something else right afterwards, to avoid an accidental paste later on.

1 more reply

fsh5y ago

For example it could just read all the passwords from the password manager's UI.

pyhtel5y ago

Between Keepass, 1passwword, and lastpass I've never seen a password manager that just shows the password without the user explicitly choosing to reveal it

1 more reply

abdullahkhalids5y ago

The purpose of clearing clipboard is so you don't accidentally paste it into a chat window or something. Not to protect against malicious programs.

j / k navigate · click thread line to collapse