How to hide password even using fire bug? [closed]

Closed. This question is off-topic. It is not currently accepting answers.

---

Want to improve this question? Update the question so it's on-topic for Stack Overflow.

开发者_开发技巧

Closed 11 years ago.

Improve this question

My friend easily finding my password,using firebug..i.e when i am in login page ,my friend using inspect element to find the password element and he changes the type="password" to type="text",now its shows the password...how to avoid this????

---

Obviously your friend can only do this if he can get to your PC while it's got the page loaded and mess around in Firebug. And then, since all he's done is make the password characters visible, to find out what your password is he has to stand over your shoulder to watch you type it.

This sounds more like a prank than a serious hack attempt. There are much worse ways to get hacked than that, especially if someone has direct access to your PC while you're logged in.

If you're writing a web site, and you're really worried about this sort of thing, there are steps you can take to prevent it.

For example, instead of asking the user to enter their whole password, you could give them a set of text boxes and ask them to enter just a few random characters from their password -- eg you could ask them to enter the first, fourth and eighth characters. This means that even if someone was watching what they typed, they'd only find out part of the password, which would be useless to them next time when the site asked for a different set of characters.

There are, of course, flaws in this scheme too, and it's a lot more of a hassle for the user, but it is considered more secure.

But typically it's only banking sites and the like that go to this sort of length to protect passwords. Most normal sites don't need this sort of level of security.

---

The best solution is to .. not store your passwords in your browser.