This thread was archived. Please ask a new question if you need help.
Why does Firefox Sync removes data when password was changed?
First of all let me indicate that I appreciate the job you have been doing as Firefox support / development teams.
I've just learned that firefox sync removes the stored data when password was changed right after trying to get help for not-restored settings. I think it is quite common forgetting a password and recovering by mail - reset. I am just so curious about the reason why Firefox Sync removes all data when password was changed.
All Replies (3)
hi, this is due to the security-focused design of sync - before it leaves your device, all sync data gets encrypted with a key derived from your password & only this encrypted dump is stored on the sync servers. there is no other way to get to the encrypted data, than knowing your original password (not even for mozilla or other "interested parties"). there should also be a warning about all stored sync data being gone at the beginning of the password changing procedure in firefox accounts.
the very technical details of this process are described at https://github.com/mozilla/fxa-auth-server/wiki/onepw-protocol
Anyways guys, make it better, ok? Good luck with that.
don't you think user is still authorized to view or restore them once he/she resets via e-mail?
The whole point is that Mozilla can't access your information. Your login details and browsing history would be a goldmine for governments/hackers, this way Mozilla can tell governments where to go because they really can't access it, and likewise they can't access it if someone forgets their password. If you're not that bothered about security then just choose a really weak, easy to remember password.