asked 2014-01-09 23:46:40 +0300
This post is a wiki. Anyone with karma >75 is welcome to improve it.
..... Is there a way to erase them out of any table ?
---> cannot reproduce the occurrence but it'd be great if one could purge unwanted entries to the input hash table ...
answered 2014-01-10 22:45:44 +0300
Cannot reproduce this with native Jolla browser; typed passwords in web-forms are not stored in dictionary nor suggested as word-completions.
In native browser, typing the same word three or more times adds it to auto complete suggestion.
I tested it here http://www.htmlcodetutorial.com/forms/_INPUT_AUTOCOMPLETE.html by entering the word 'qwert' and it was added, even though autocomplete supposedly shouldn't be used.
I suggested in the comments that it was invalid password fields that triggered the behavior, but it may also be android apps that are affected.
Mohjive ( 2014-01-10 23:07:33 +0300 )editanswered 2014-01-11 19:18:43 +0300
The link to the other question was hidden in comments. This is a duplicate of https://together.jolla.com/question/829/android-vkb-saves-and-suggests-passwords-in-plaintext/
Asked: 2014-01-09 23:46:40 +0300
Seen: 1,346 times
Last updated: Jan 12 '14
I ran into the same problem with some android applications using predictive input on the password field (at least Steam for Android does this.) The password field still shows asterisks instead of characters when inputting a password. I too am looking for a way to remove predictive input entries.
Ascense ( 2014-01-10 00:57:39 +0300 )editPasswords shown in plaintext in stock Jolla vkbd sounds like really serious security/privacy issue to me.
foss4ever ( 2014-01-10 03:20:06 +0300 )editThe problem here seems that Jolla adds entries to the vkb completion automatically. Together with the possibility that some app or webpage doesn't use "password" as input type but instead script the asterisks, there's the risk that the password get stored.
I like the implementation that when you tap the word you get the question if you want to add it. Also you should be able to remove added words.
Mohjive ( 2014-01-10 09:06:53 +0300 )editThis is wonderful, I just had the same experience with Opera and Amazon. I doubt they don't use the password tag. Does somebody know if the behaviour can be reproduced with a native app, i.e. the browser, as well?
I think this actually quite critical but should be easy enough to fix.
minnist ( 2014-01-10 22:26:39 +0300 )editSeems that this problem has been detected only in connection with Android apps, so could you tag and edit the title / description appropriately?
foss4ever ( 2014-01-10 22:37:09 +0300 )edit