I just did a very quick check of this, Chrome, FireFox and safari all have this data stored in a reversible fashion on both Mac and Windows.

safari at least prompts you for the user login to show this data.

IE seems to not allow you to retrieve the password without 3rd party utilities.

This certainly makes me review my personal choices of full dis centryption and physical security of my computer.


On Tue, Aug 6, 2013 at 11:41 AM, Ed <plug@0x1b.com> wrote:
http://blog.elliottkember.com/chromes-insane-password-security-strategy

is Chrome the new attack vector to your stored passwords in other
browsers? would a master password protect against this kind of slurp?
Han's presentation at the last East Side PLUG meeting was really on
point - thx
---------------------------------------------------
PLUG-discuss mailing list - PLUG-discuss@lists.phxlinux.org
To subscribe, unsubscribe, or to change your mail settings:
http://lists.phxlinux.org/mailman/listinfo/plug-discuss



--
A mouse trap, placed on top of your alarm clock, will prevent you from rolling over and going back to sleep after you hit the snooze button.

Stephen