Level Extreme platform
Subscription
Corporate profile
Products & Services
Support
Legal
Français
Passwordchar not waterproof when copy pasted
Message
From
04/10/2006 10:29:00
David Frankenbach
Austin, Texas, United States
 
 
To
04/10/2006 04:46:20
Guillaume Engelen
T.M.L. Bvba
Ternat, Belgium
General information
Forum:
Visual FoxPro
Category:
Forms & Form designer
Title:
Re: Passwordchar not waterproof when copy pasted
Environment versions
Visual FoxPro:
VFP 9 SP1
OS:
Windows XP SP2
Network:
Windows 2003 Server
Database:
Visual FoxPro
Miscellaneous
Thread ID:
01159255
Message ID:
01159346
Views:
20
Guillaume,

I'd weigh in with the others and say this really isn't a problem. Consider the fact that I have dozens of passwords to manage, I use an encrypted keystore on my system that I can open up, copy the password to the clipboard so that I can paste it in to the dialog requesting it, then I clear the clipboard. So resist the urge to disable ctrl-c/v out of respect for the end user.

The PasswordChar feature is to obscure the data to prevent someone else from reading it over a person's shoulder. If you need something more secure than that create your own txtPassword subclass and handle it a different manner.

>When using a passwordchar, you can copy the masked contents using ctrl-c
>When you paste this in a textdocument, voila, the password is revealed.
>This seems a serious issue since all protection is bypassed using two keyboard commands.
>Is there a workaround for this?
>But keep in mind a user must be able to type in the textbox to change the password.
df (was a 10 time MVP)

df FoxPro website
FoxPro Wiki site online, editable knowledgebase
Previous
Reply
Map
View

Click here to load this message in the networking platform