Re: [csswg-drafts] [selectors-4] [backgrounds-3] Prevent CSS keylogging from L. David Baron via GitHub on 2018-03-09 (public-css-archive@w3.org from March 2018)

From: L. David Baron via GitHub <sysbot+gh@w3.org>
Date: Fri, 09 Mar 2018 21:28:37 +0000
To: public-css-archive@w3.org
Message-ID: <issue_comment.created-371950179-1520630916-sysbot+gh@w3.org>

As a user, you should:
* use different passwords for every site (and good passwords)
* use a password manager or similar to manage them

With every site, you're trusting the site to manage your passwords safely, and that includes doing security for both their client-side code and server-side code correctly.  Not using untrusted third-party code is just one aspect of good security for client-side code.

-- 
GitHub Notification of comment by dbaron
Please view or discuss this issue at https://github.com/w3c/csswg-drafts/issues/2426#issuecomment-371950179 using your GitHub account

Received on Friday, 9 March 2018 21:28:40 UTC