Password displayed in plain text...
metany
Posted messages
73
Status
Membre
-
Pierr10 Posted messages 13775 Registration date Status Modérateur Last intervention -
Pierr10 Posted messages 13775 Registration date Status Modérateur Last intervention -
Hello,
I am very upset with Microsoft for storing my passwords and displaying them in plain text! Here’s what’s happening: upon login, if I make a mistake typing my password, a message appears below suggesting a "password suggestion." And there, in full, is an old password that I have been using for a long time, which is not the one being used for the login, and I wonder where and when the system memorized it! This is absolutely unacceptable and a clear violation of privacy. I now have to consider that this password is compromised, as well as all those I may have entered through the system, so all of them!
I want this display to disappear and for all passwords stored by Windows to be permanently deleted. The question is: how do we do this?
I contacted Microsoft support, who swore they could solve a problem they actually never understood, and of course, it didn’t yield anything except wasting an hour of my time for nothing and having to insist that everything which may have been recorded on their side be deleted, but they cut off the connection without responding to that request...
Does anyone know more about this problem and how to resolve it?
Thank you.
Configuration: Windows / Firefox 71.0
I am very upset with Microsoft for storing my passwords and displaying them in plain text! Here’s what’s happening: upon login, if I make a mistake typing my password, a message appears below suggesting a "password suggestion." And there, in full, is an old password that I have been using for a long time, which is not the one being used for the login, and I wonder where and when the system memorized it! This is absolutely unacceptable and a clear violation of privacy. I now have to consider that this password is compromised, as well as all those I may have entered through the system, so all of them!
I want this display to disappear and for all passwords stored by Windows to be permanently deleted. The question is: how do we do this?
I contacted Microsoft support, who swore they could solve a problem they actually never understood, and of course, it didn’t yield anything except wasting an hour of my time for nothing and having to insist that everything which may have been recorded on their side be deleted, but they cut off the connection without responding to that request...
Does anyone know more about this problem and how to resolve it?
Thank you.
Configuration: Windows / Firefox 71.0
10 réponses
Hello
On Chrome: Click on the 3 dots (at the top right)
Settings
Passwords.
Disable with the button.
Have a good day
Cesel45
On Chrome: Click on the 3 dots (at the top right)
Settings
Passwords.
Disable with the button.
Have a good day
Cesel45
I did the test: No visible password issue or suggestion.
(even with the wrong password)
A Windows update could fix this bug. (Windows Update)
I have W10 version 1909
CMD ==> control /name Microsoft.WindowsUpdate
--
Hello
Have a nice day
Cesel45
(even with the wrong password)
A Windows update could fix this bug. (Windows Update)
I have W10 version 1909
CMD ==> control /name Microsoft.WindowsUpdate
--
Hello
Have a nice day
Cesel45
I have the same version.
I've had this bug for quite a while, I think even before the last updates. I would even say it's become systematic.
And also, if I remember correctly, before the system reset I had to do a few days ago due to losing too many features.
It's pretty strange. I've searched the web: it seems that no one else has encountered this problem.
Moreover, according to what is displayed, it's a password I've never used for anything other than my Free email (via Thunderbird), at least since I bought this PC. How could Windows recover it???
I've had this bug for quite a while, I think even before the last updates. I would even say it's become systematic.
And also, if I remember correctly, before the system reset I had to do a few days ago due to losing too many features.
It's pretty strange. I've searched the web: it seems that no one else has encountered this problem.
Moreover, according to what is displayed, it's a password I've never used for anything other than my Free email (via Thunderbird), at least since I bought this PC. How could Windows recover it???
Thank you, but I was talking about the login screen for my session, not the browsers! The problem I'm talking about is specific to Windows. Furthermore, I never save passwords in Chrome.
You can try it yourself by attempting to log in with an incorrect password and see if Windows offers you this suggestion (in addition to the one to reset the password). I didn't have this in previous versions.
You can try it yourself by attempting to log in with an incorrect password and see if Windows offers you this suggestion (in addition to the one to reset the password). I didn't have this in previous versions.
I am bringing up this topic that has never been resolved.
I am still astonished to see that if I make a mistake entering my password to log in, Windows "suggests" another one that it somehow retrieved because I have never used it for logging in. However, I have used it a lot for other things: email passwords, file encryption passwords for Word, or passwords for ZIP files. I really valued this password, and now I will have to forget it and change it everywhere!
It is quite incredible, and it proves that Windows is a massive spyware on its own. All the passwords we use for anything should be systematically retrieved and, why not, sent to Microsoft!
I would really like to get rid of this.
I am still astonished to see that if I make a mistake entering my password to log in, Windows "suggests" another one that it somehow retrieved because I have never used it for logging in. However, I have used it a lot for other things: email passwords, file encryption passwords for Word, or passwords for ZIP files. I really valued this password, and now I will have to forget it and change it everywhere!
It is quite incredible, and it proves that Windows is a massive spyware on its own. All the passwords we use for anything should be systematically retrieved and, why not, sent to Microsoft!
I would really like to get rid of this.
Hello,
While browsing the internet, I found a link related to the Windows password manager. I'll let you take a look for yourself.
https://www.editions-eni.fr/Open/mediabook.aspx?idr=c328b194dfc910fb5b045b4a94b6affc
It seems that this password manager is strictly internal to your machine.
So your password is not "corrupted" as you say. Besides, you said yourself that you no longer use it. Moreover, a password alone is not very useful...
To conquer without peril is to triumph without glory.
Pierre Corneille, Le Cid
While browsing the internet, I found a link related to the Windows password manager. I'll let you take a look for yourself.
https://www.editions-eni.fr/Open/mediabook.aspx?idr=c328b194dfc910fb5b045b4a94b6affc
It seems that this password manager is strictly internal to your machine.
So your password is not "corrupted" as you say. Besides, you said yourself that you no longer use it. Moreover, a password alone is not very useful...
To conquer without peril is to triumph without glory.
Pierre Corneille, Le Cid
Hello,
More specifically? Why didn't it help you? It seems to be the feature that retains passwords used on Windows, and it is possible to delete saved passwords.
That's why I specified that it seems to be internal to your machine and that a password alone has no value.
(The proof is that it suggests your Thunderbird password from a Free account. And not a Windows session password)
but it didn't help me much
More specifically? Why didn't it help you? It seems to be the feature that retains passwords used on Windows, and it is possible to delete saved passwords.
I was hoping to be able to continue doing that.
That's why I specified that it seems to be internal to your machine and that a password alone has no value.
(The proof is that it suggests your Thunderbird password from a Free account. And not a Windows session password)
Good evening, I discovered this feature thanks to you, but my password was not there. If it's internal as you say, where could it come from?
So it's identity theft, in any case it's a breach of confidentiality. I would like to know if this has happened to other vict... sorry, users of Microsoft.
From what I see, there are no flights. The reason is simple: it only retains the password you enter.
If I tell you that a password is Rapanui6986, it won't be of any use to you. (You have no associated identifier or address.)
For me, there is no violation of confidentiality. I think we need to stop seeing evil everywhere.
If I tell you that a password is Rapanui6986, it won't be of any use to you. (You have no associated identifier or address.)
For me, there is no violation of confidentiality. I think we need to stop seeing evil everywhere.
@phil2k I had to take a photo of the login screen, so it's not very clear. This is what appears after I received the error message "incorrect password."
The small red rectangle obscures the password that is displayed in plain text by the system.
The small red rectangle obscures the password that is displayed in plain text by the system.
Hello,
I don't see where I got angry. I'm just explaining the situation. Windows doesn't care why you used that password. It just knows that you have a password that is this. And once again, it seems to display it only for you.
And, without wanting to offend you, you don't seem to want to understand what I'm writing. So as far as I'm concerned, I'm done here.
I don't see where I got angry. I'm just explaining the situation. Windows doesn't care why you used that password. It just knows that you have a password that is this. And once again, it seems to display it only for you.
And, without wanting to offend you, you don't seem to want to understand what I'm writing. So as far as I'm concerned, I'm done here.
I was able to reproduce the problem.
I changed my password, and in the "password hint" field, I entered the word "indicator".
That's what I see on the login screen when I enter the wrong password.
Try: change your password, and in "hint", enter, for example, "toto".
You will see it if you get the password wrong at login
--
There are 3 kinds of people: those who can count and those who can't.
There are two types of people: those who categorize everything into two categories and the others.
I changed my password, and in the "password hint" field, I entered the word "indicator".
That's what I see on the login screen when I enter the wrong password.
Try: change your password, and in "hint", enter, for example, "toto".
You will see it if you get the password wrong at login
--
There are 3 kinds of people: those who can count and those who can't.
There are two types of people: those who categorize everything into two categories and the others.
Hello
Your message #14 is interesting because it allows for a better understanding of what's happening.
The Password Hint is a feature of Windows 10 that existed in previous versions.
Normally, this hint is just information that you provide to Windows, which should help you remember your password if you have a memory lapse. It should never be the password itself.
So on my own computer:
The conclusion, even if it may not please you, is that it's you who provided this hint at the time of account creation. There may have been an inadvertent mistake. But it doesn't come from Windows.
You can remove this hint. Renew the password (re-enter the same one) and leave the password hint field empty.
A tutorial: https://www.cyclonis.com/fr/comment-modifier-ou-desactiver-lindication-de-mot-de-passe-windows-10/
Your message #14 is interesting because it allows for a better understanding of what's happening.
The Password Hint is a feature of Windows 10 that existed in previous versions.
Normally, this hint is just information that you provide to Windows, which should help you remember your password if you have a memory lapse. It should never be the password itself.
So on my own computer:
The conclusion, even if it may not please you, is that it's you who provided this hint at the time of account creation. There may have been an inadvertent mistake. But it doesn't come from Windows.
You can remove this hint. Renew the password (re-enter the same one) and leave the password hint field empty.
A tutorial: https://www.cyclonis.com/fr/comment-modifier-ou-desactiver-lindication-de-mot-de-passe-windows-10/