After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 706873 - Password hint timeout should be considered as a security problem
Password hint timeout should be considered as a security problem
Status: RESOLVED DUPLICATE of bug 706563
Product: gtk+
Classification: Platform
Component: Widget: GtkEntry
unspecified
Other Linux
: Normal normal
: ---
Assigned To: gtk-bugs
gtk-bugs
Depends on:
Blocks:
 
 
Reported: 2013-08-27 09:48 UTC by Lukas Brabec
Modified: 2013-08-27 20:44 UTC
See Also:
GNOME target: ---
GNOME version: ---


Description Lukas Brabec 2013-08-27 09:48:27 UTC 
Since Fedora 20, there is a hint when typing a password, according to https://bugzilla.redhat.com/show_bug.cgi?id=994237 it is a problem of gtk3-3.9.10.

There is clearly visible inspiration from world of hand held devices. Typing on touch screen is far from typo-free and such hint is useful. Moreover one can easily move/hide/rotate/tilt or somehow protect the device from password stealing. 

Situation on desktops is different. There are large rigid displays faced in on way where one can see what you're doing from afar, cloning on video projector etc...  And there are keyboards, not exactly typo-free but nothing that needed such password hint.

Benefit of showing last character is overwhelmed by big security hazard when one can easily peek over else's shoulder. In world where nations spy on their people this change appears to be ill and efforts for good user experience should not pave our way to hell.

There are other ways of helping users writing passwords, such as "show password" check box or a peek icon like in Windows 8.

I beg you to see the reason.
Comment 1 Matthias Clasen 2013-08-27 20:44:17 UTC 

*** This bug has been marked as a duplicate of bug 706563 ***