My logged in sessions are persistant even after I completely close the browser.
Im using Master password and I like firefox to remember the tabs that I have open. As a user I would expect the master password to be asked at the start of any new browsing sessions. I would expect that if the password is not entered then any open sessions that have been restored as part of the 'remember my tabs' setting would be closed, eg Gmail.
However the behaviour appears to be that remembering tabs will also persist the logged in sites such as gmail. When I start a new browser session, my gmail is logged into automatically even though I havent entered the master password.
This is hugely annoying as firefox 'remember my tabs' isnt just remembering the URLS of the tabs, but also keeps me logged in regardless of the master password.
This cant be a good design security wise? It seems my only option is to not use the remember my tabs feature which I really like! Please help!
所有回覆 (3)
That is because the cookies are saved as part of the session data.
You can set the pref browser.sessionstore.privacy_level to 2 (never) or 1 (non-HTTPS, default in Firefox 3 versions) on the about:config page to disable saving cookies via session restore.
To open the about:config page, type about:config in the location (address) bar and press the "Enter" key, just like you type the url of a website to open a website.
If you see a warning then you can confirm that you want to access that page.
You can use the Filter bar at to top of the about:config page to locate a pref more easily.
Perfect. That seems to fix the issue for me. Thank you!
You're welcome