Comments
-
Hello, what keepass does is clearing the password after 10 seconds after you copied it from the software. It does not use encryption for passwords in clipboard. Thanks for that info. That really kind of scares me as I always thought the password was encrypted in memory. I confirmed it by using the Clipboard viewer in XP.…
-
Then they are most likely using a global hook. We are not targeting other programs, but you have a point. Let me think a little on this, maybe I can come up with an user story and maybe an improvement. Bump the thread if you dont' see me answering, I'm doing 4 things at once now (with 5th on the way...) so I might get…
-
It is probably how I said; they are probably using 2 programs, one writing to clipboard encrypted (the main program where the user is copying the password), and one decrypting and pasting inside the target program (either is an extension loaded in browser, or another form of injecting in the program where the paste should…
-
It is a feature. I believe the quedtion means "can someone else intercept it?": the answer is yes, because the clipboard is a public way to exchange data. For two applications exchanging data secure, they should use a clipboard format secure which both know to encrypt and decrypt. Keypass is an external program. if keypass…