9

What is it with the rising trend of password fields allowing you to see your password, and (worse than that) often having it as unmasked by default?!

Who woke up one day and said "Damn, you know what would be a great idea? Unmasking the password field, so everyone can see it! Why didn't we think of that before?!"

Dahh.

Comments
  • 1
    What kind of websites do you visit? 🤣
  • 1
    It's harder to mistype the password (especially on registration forms).

    The usual UX vs. security :(
  • 5
    I actually like having the option to unmask the password but definitely not by default. And if it's a home computer no one's trying to steal my password so it's even less important.
  • 1
    @ThatDannyBoy The option I'm not overly fussed by, though I've still hit it by accident sometimes when I didn't want to.

    The latest time I've come across it by default is with a major hosting provider (not naming names) that should really know better.
  • 1
    @AlmondSauce you should totally name names. Bad security deserves public shaming.
  • 2
    Our router that we got by our provider.
    192.168.0.1, unsecured login interface, aaaaaand... Clear text password field.
  • 0
    Masked or option to unmask, it's just as easy to run a script changing the element type from password to text, hence exposing the password in the UI. Or, changing type within the inspector, should you not want to leverage a script.
Add Comment