Javascript will be temporarily disabled during login and the data is send right to the website that you want to login to. The Domain that you are currently on and that you want to login to are compared to ensure that you are indeed at the right website. A mismatch would result in a popup warning.

Some websites use Javascript for their login routine and Secure Login offers a list that contains site that are exceptions. Just add the website as an exception if you can’t login using the Secure Login extension.

Username and Password fields are colored orange and a sound can be played (optional) to let you know that you reached a page with a login form. The shortcust ALT + N would send the login details to the server without filling out the form. this is a very convenient way to login.

Secure Login offers additional protection against cross site scripting attacks by protecting from any Javascript code during logon. This is an optional setting that can be enabled in the extension’s options.

Related posts

• Reset The Master Password In Opera (0)
• Protect your data when travelling to the US (18)
• Protect your data from physical access (3)
• Protect Data DVDs And CDs With Power Disk Lock (3)
• Password Protect Files (4)

Many popular guestbook and forum programs allow users to submit posts with html and javascript embedded in them. If for example I was logged in as “john” and read a message by “joe” that contained malicious javascript in it, then it may be possible for “joe” to hijack my session just by reading his bulletin board post. Further details on how attacks like this are accomplished via “cookie theft” are explained in detail below.

taken from “The Cross Site Scripting FAQ”. Click link to read the whole faq.

Related posts

• User Data Stolen from The Pirate Bay (0)
• Spy Tech: I see what you write (6)
• Secure Login with Firefox (0)
• NTFS Alternate Data Streams (3)
• Megaupload bypass country limit (7)