搜尋 Mozilla 技術支援網站

防止技術支援詐騙。我們絕對不會要求您撥打電話或發送簡訊,或是提供個人資訊。請用「回報濫用」功能回報可疑的行為。

了解更多

What exactly is encrypted by Primary Password?

  • 1 回覆
  • 0 有這個問題
  • 最近回覆由 cor-el

more options

Good afternoon,

I have read in an article a statement that Primary Password encrypts all saved logins, therefore it is safer and recommended to use it. Well, I observed that it does not really matter if the password is set for the contents of logins.json, it does not change. What exactly is encrypted by Primary Password and how does it improve security?

I also tried to set the same password for different websites (I used a different mail tho) and the output in logins.json is different, which is even more confusing to me.

The output itself is kind of strange, the first part of it seems to be the same for almost all entries and looks like that: MEoEEPgAAAAAAAAAAAAAAAAAAAEwFAYIKoZIhvcNAwc.

Good afternoon, I have read in an article a statement that Primary Password encrypts all saved logins, therefore it is safer and recommended to use it. Well, I observed that it does not really matter if the password is set for the contents of ''logins.json'', it does not change. What exactly is encrypted by Primary Password and how does it improve security? I also tried to set the same password for different websites (I used a different mail tho) and the output in ''logins.json'' is different, which is even more confusing to me. The output itself is kind of strange, the first part of it seems to be the same for almost all entries and looks like that: '''MEoEEPgAAAAAAAAAAAAAAAAAAAEwFAYIKoZIhvcNAwc'''.

被選擇的解決方法

That is correct, the Primary Password doesn't change the content of logins.json. The PP encrypts the encryption key (seed) that is stored key4.db and logins.json stays the same. This means that replacing this key4.db with an older copy of key4.db that doesn't have the PP applied is able to access the logins in case you forget the PP.

從原來的回覆中察看解決方案 👍 1

所有回覆 (1)

more options

選擇的解決方法

That is correct, the Primary Password doesn't change the content of logins.json. The PP encrypts the encryption key (seed) that is stored key4.db and logins.json stays the same. This means that replacing this key4.db with an older copy of key4.db that doesn't have the PP applied is able to access the logins in case you forget the PP.

有幫助嗎?

問個問題

如果您還沒有帳號,您必須先登入帳號 來回覆文章。還沒有帳號的話,只能發問新問題