why do my passwords remain accessible in the browser after disconnecting from my firefox account?
I needed access to my passwords, but wasn't close to my PC so I signed into a firefox browser on a friend's PC, used my personal passwords (from the new lockwise thing) and then, logically, disconnected my firefox account agreeing to both tick-boxes for all my personal details to be deleted from the browser...ONLY TO FIND 5 minutes later that my LOCKWISE passwords where still present on the browser, with my account disconnected, but fully usable and accessible!
Now I'm scared of deleting all my passwords from the foreign-to-me PC (although I have my account disconnected) in case my passwords get deleted from my normal lockwise list...!! I can't leave these passwords on this PC though...
Am I missing something??? Thanks kind people!
Toutes les réponses (5)
Could somebody please try and re-create the issue??
ok, it's worst now... I uninstalled firefox, re-installed it AND THE PASSWORDS ARE STILL THERE!! Do I have to take this person's PC with me, burn it, or what? (just a little humour there, but seriously, a stranger has ALL MY PASSWORDS in his PC and yes, that includes the Password to log into my firefox account...smart!)
Modifié le par Pavlos
managed to get my passwords to disappear at least...
So, the way I went about it was that in Windows 10 file explorer pasted the following: %APPDATA%\Mozilla\Firefox\Profiles\
and deleted ALL Profiles... Goes without saying the I ended up re-installing Firefox but thankfully this time there where no Passwords to be imported... ufffff That was a close one, huh?
I won't vote this as a solution because it's not! It's a workaround... If there was a button for "Workaround" I would press it so people could find temporary solution in this peculiar security issue!
take care wonderful people
(ps: I also emptied the Recycle Bin so that I can sleep better at night)
I don't know if this is a viable work around as well but have you tried to use the master password option? While it doesn't "delete" your passwords in the PC. It does put it it behind another wall that's not saved from my understanding.
Doesn't change the fact that the passwords are still in the "roaming" folder though. Also not an expert to determine how much it would take to decrypt the files in the "roaming" folder. However this way your passwords is more difficult to access.
Note that you can delete logins.json in the profile folder to remove all passwords stored n the Firefox Password Manager. The Firefox Lockwise Password Manager in Firefox 70 uses the same files as the legacy Password Manager. If you would use a strong master password then the risk gets lower if you would connect to a Sync account to get access to the passwords because the logins in logins.json are encrypted using this MP (without a MP there is only a basic seed stored in key4.db used to encrypt logins).