digg

Facebook Connect Join Digg About

Firefox user blames program for breaking up her engagement

bugzilla.mozilla.org This woman doesn't understand how Windows/Firefox profiles work and leaves her fiance of 5 years after finding info about dating sites he visited. Then she then files a bug about it on Bugzilla.

Who dugg this? Made popular Mar 22, 2006

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

195 Comments

show profanity settings
expand all
  • waffle_iron, on 10/12/2007, -49/+216Originally found on:
    http://www.squarefree.com/2006/03/21/firefox-causes-breakup/
  • snoble, on 10/12/2007, -6/+161Isn't that what he did (posting source and not blog I mean)? Then he linked to the blog in the comments because it is polite to source where you read something.
  • scbysnx, on 10/12/2007, -8/+104again.. digg is full of idiots.. he linked his source AS IS APPROPRIATE. He ALSO avoided blog spamming on digg. This person is an example of the perfect digger and yet his source post is currently -3 diggs.
  • Flankk, on 10/12/2007, -14/+97Someone explain to me how a Firefox bug goes from Jew boobs to a religious flamewar.
  • TheWriteGuy, on 10/12/2007, -4/+79CTRL + SHIFT + DEL = "Clear Private Data"
  • capn_caveman, on 10/12/2007, -8/+42She's definitely nerdy enough to post a firefox bug. I'd hit it. And now I have a better chance.

    For craps sake people: set your preferences to never remember anything you do online and to erase all tracks when you close out your browser. :)
  • gigabitten, on 10/12/2007, -2/+29um, if she was gonna marry this guy, wouldnt she want to know if there was anyone else BEFORE she married him anyway? seems kind of pointless, she's mad at firefox for breaking her engagement but it seems like it just saved her a whole bunch of time, if this guy was cheating, it would probably hurt her much farther down the road
  • the1casey, on 10/12/2007, -11/+36they're all divorces waiting to happen.
  • panaceaa, on 10/12/2007, -5/+30That's the thing, the girl's fiance DID specify to never remember passwords. But when she went into Firefox's password storage preferences, it showed that passwords for adultfriendfinder.com (etc.) would never be stored. She had never gone to those sites, so the only way that preference would be set is because her fiance logged into those sites and clicked "Never remember my password for this site". The bug is that despite him asking Firefox to never remember something, it remembered something else just as bad.
  • diesel5598, on 10/12/2007, -0/+23The fact is, she is 100% technically correct, after reading the article I went to my Windows 2000 Pro machine and went to tools > Options > Passwords > View Saved Passwords > Passwords Never Saved and there were a list of sites that I did not want passwords saved for. I then chose Clear Private Data and went back into the password manager. The list was still there. Lastly, I created a new user account, went into Password manager; guess what…the list was still there. Not only is the list not cleared with private data, it is also shared between user accounts on the same machine.

    That is definitely a bug if I ever saw one. Not saying that this will help her personal situation, however, it has the capability of impacting users in any environment. For example, what happens when one user decides not to save passwords for a certain site, then another user logs in and chooses to save the passwords for the site. Since this ifnormation is shared between profiles, the first user may inadvertently save passwords for the site after logging in after the second user.
  • Lykos, on 10/12/2007, -0/+22Fiance of 5 years?

    Honey, he's not gonna marry you anyways...
  • serra, on 10/12/2007, -1/+19It sounds like she's actually bitching about the privacy matter. Seems like she should be praising it, since she found out that her fiance was a creep that way!
  • splish, on 10/12/2007, -11/+28The last comment on bugzilla is funny
  • jer2eydevil88, on 10/12/2007, -6/+19This is my favorite digg to date, its got drama/comedy/action and its a saga in its own right....

    The comments on this page are what make it so great.... jew boobs.. women being tech inferior... its like a parade... I want to be on the rainbow float okay guys!!!
  • inactive, on 10/12/2007, -1/+13I'm guessing that it's actually the fiance that's submitted the bug report, but to avoid the hate based comments he'd probably recieve telling the truth, he did it from her perspective.
  • Majken, on 10/12/2007, -4/+16funkytaco - just because you're not the smartest girl doesn't mean you have to get all catty. Plenty of us know about IE7, we even know more about firefox than you. Also, a little monistat will fix your taco in no time, you'll feel much better. :-p
  • panique, on 10/12/2007, -0/+11You need to hit "not now", instead of "never for this site". I think.
  • capn_caveman, on 10/12/2007, -4/+15The fact that a comment box kept popping up asking to remember a password tells me that the user didn't uncheck "remember passwords" in the tools > options > passwords field. I've never been prompted to remember a password since that has been unchecked.
  • serra, on 10/12/2007, -2/+13Heeeey, come on now! I'm a geek girl, and proud of it! Girls can be ubergeeks too!
  • redpillpopper, on 10/12/2007, -1/+10He should have used Portable Firefox from a usb drive. http://portableapps.com/apps/internet/browsers/portable_firefox
  • dtfinch, on 10/12/2007, -1/+10bugzilla.mozilla.org already blocks anyone referred by slashdot. I wonder if they'll do the same with digg if this story gets enough clicks.
  • sleepless, on 10/12/2007, -3/+11 ------- Comment #5 From majken@gmail.com 2006-03-21 19:07 PST [reply] -------

    Reporter - where firefox is installed doesn't affect where the profiles are.
    If he installed it while logged in under your windows account it doesn't matter
    what folder he installed it to. This in itself isn't a flaw, but a feature.
    Anyway, that's why you experienced the behaviour you did.

    And ok, bugzilla isn't the place for this, but I can't help it. Honey, I would
    think you would be the LAST person to be bothered by this. Not only did was he
    using your computer to be unfaithful, he wasn't smart enough to cover his
    tracks, and you got to know about it BEFORE buying the goods. If you're really
    THAT upset about finding out, take him back and pretend you never knew, or hold
    it over his head and use it to keep him in line.
  • Majken, on 10/12/2007, -6/+14maybe you should mention the comment by number, seeing how people can reply to bugs changing the last one. (fwiw #5 was the last comment at the time this post was made)
  • panaceaa, on 10/12/2007, -1/+9Ianam, from an uneducated user's perspective, it makes perfect sense that if you don't want Firefox to remember something, you click the "Do not remember" button. And if Firefox implemented the do-not-remember site list as a hash, rather than a plaintext list, the problem would largely not exist. For example, default *nix systems hash their passwords in passwd so that no one can see them in plain text, but the login system can still detect a correct password. Firefox could use a similar algorithm by storing a site's hashed name in a list, and when you're visiting the site, Firefox would then behave depending on whether the hash value is in the list. The interface for removing this preference would have to be changed -- but it could still be quite intuitive. Perhaps when you're on the site in question, you could select to clear password saving preferences with no feedback as to whether anything changed.

    One difficulty to this approach is that there's a pretty small number of sites that girlfriends would care about their boyfriends viewing, and it would be easy to brute-force the hash generation for those sites and to then look them up in the list. This problem could be reduced by salting the hash on a per-system and per-login basis, therefore preventing hash values from being shared on the Internet. Though a simple Firefox extension could then brute-force the hash values locally. But this is one more step a person would have to go through to discover what sites have been viewed. Security is never 100%, and simply not having the list of names in plaintext or plaintext equivalents (unsalted hashes) -- especially in the UI -- would go a long way towards improving this issue.
  • w00gy, on 10/12/2007, -0/+8@TruboStar

    Make sure to use the smaller Delete key next to the End key and not the Delete/Backspace key.
  • whybird, on 10/12/2007, -3/+10I just wish I could digg comment #5 on the linked-to site :-)
  • starwed, on 10/12/2007, -1/+8If you read the bug report, she's not "bitching" or "mad" or anything implied in the story/comments. She's reporting an actual, reproducible bug, with actual privacy concerns. Something obvious if you read the bug, or even the blog.

    It's probably unfortunate that this got posted on a blog, but even more unfortunate that it's now being misrepresented on the front page of digg.
  • dkarlson, on 10/12/2007, -1/+7Or maybe, just maybe, you should be upfront with the ones you love and not do things like this behind their backs.

    The guy was an idiot, btw.
  • funkytaco, on 10/12/2007, -17/+23I'm sorry this has to be a fake bug report.

    No woman knows there's an IE7beta2. Hell, I didn't even know. And she makes it sound like she just "discovered" Firefox.
  • setec, on 10/12/2007, -2/+8So she points out the bug so that Mozilla fixes it and that way some other guy can more successfully cheat on his GF/wife. Good one. Knowing her luck, she will meet another guy who does the same thing with the fixed version of Firefox.
  • pwrstick, on 10/12/2007, -3/+8Nice to see all those emails exposed to data miners!
  • ianam, on 10/12/2007, -2/+7"That's the thing, the girl's fiance DID specify to never remember passwords."

    No, he didn't. He told Firefox to never remember the password for several specific sites -- that means that Firefox won't ask him for the password next time. It's obvious to anyone who isn't a blithering idiot that Firefox has to *remember the site* in order to implement that. Had he clicked "no" rather than "never", nothing would have been stored.
  • SuperSloth, on 10/12/2007, -1/+6If you can't trust your partner or your partner is not worthy of trust, you should not be in a relationship. Let alone get married.
  • Xiol, on 10/12/2007, -4/+9RTFA.
  • LouCypher, on 10/12/2007, -1/+6This is the best bug I ever read since Bug 95849
    https://bugzilla.mozilla.org/show_bug.cgi?id=95849
  • SmeRndmGy, on 10/12/2007, -1/+6i dont think "I'm an idiot and my husband is a big pussy" is a firefox bug.
  • Elranzer, on 10/12/2007, -5/+9No girl, indeed. Probably two guys. Hey, whatever puts a smile on your face...
  • WillyWonka, on 10/12/2007, -0/+4How can it remember to never remember passwords for that site without remembering the site?

    I guess it could do a hash on the domain name or something and then compare hashes, but that only really masks the name.
  • nato64, on 10/12/2007, -1/+5i totally agree. her tone seemed opposite to what i'd expect. it sounded like she DIDN'T want to know that her fiancé was cheating on her.
  • Majken, on 10/12/2007, -1/+5actually the bug she originally reported is invalid. Firefox *does* respect windows profiles. And maybe she did it tongue in cheek but she opens with "This privacy flaw has caused my fiancé and I to break-up after having dated for
    5 years."
  • rajivm, on 10/12/2007, -1/+5That doesn't work. How do you remove a site from the never list? The list should be viewable in the preferences so it can be edited.

    There is no real bug in this case, there was just a misunderstanding of Windows profiles. If you use Firefox from two different Windows accounts it will keep all your data seperate for each account; the "never" list is seperate for each account. Therefore if you want privacy, you just use your own Windows account w/ your own password. If your drive is NTFS formatted as it should be, and the other user is not an administrator, the actual Firefox data files will be protected to and there will be no way for the other user to view any of your Firefox info. This is what 2K/XP improved; in 98 and below, there were no real user accounts or profiles, security and privacy was a joke.
  • 2000, on 10/12/2007, -4/+8http://www.myspace.com/naomihall
    She's tech savy, she's single and she's on the rebound... go for it!
  • Majken, on 10/12/2007, -1/+5bugzilla users have long been aware of the spam that comes from posting there, it's nothing new.
  • tek1024, on 10/12/2007, -1/+4Wait, why is this negatively dugg? gigabitten's got a point, right?

    Still, it sucks that she had to find out this way; and if she didn't understand the way profiles worked, how could she have filed a bug report? -_- perhaps I need sleep
  • snoble, on 10/12/2007, -2/+5I'm sure this comment I'm about to write should be catagorized in the same group as comments addressing the hacker vs cracker distinction; that is this comment should probably be seen as needless and pedantic. That said, I have done some data mining myself and I know a lot of others who do a lot of data mining (in academic and professional environments). However, none of these people have any interest in plain text emails on web-pages. Although I am certain that there are people who are very interested in such things, I think calling these people data miners does a disservice to the art/science of actual data mining.
  • Murdats, on 10/12/2007, -0/+3ah, i believe the reason the list is in plain text is so you can edit the list, IE click never for this site and want to change that or you want to change the remembered password, etc. so by changing how the list is stored will either 1. not solve the problem cause it would have to be decoded, or 2. cuase the problem of not reversing/changing the desicion
  • wetelectric, on 10/12/2007, -1/+4It is a bug. If you use profiles, then everything should be profile specific. Including sve/not save password lists.

    Funny ***** though. I think the guy is lucky,...i mean putting your dirty laundry on the internet.....she sounds fully nuts. Good riddence.
  • inactive, on 10/12/2007, -1/+4nice troll.
    if your comparing free vs paid for software, show me an example of MS taking responsiblity for an act of fraud or invasion of privacy because of one of the many IE bugs over the years.

    thats right your full of *****.
  • chriswm, on 10/12/2007, -3/+6Sounds fake to me. Probably just someone trying to be funny.
  • inactive, on 10/12/2007, -2/+5i repeat. not saving passwords, is nothing to do with attempting to hide your online activities.
    what now you expect mozilla to keep a database of what sites THEY THINK a person wouldn't want others to know they are visiting.

    this is all dispite the fact, that had she gone in and seen a bunch of sites names blanked out she would have been suspicous anyway and browsed his cache and seen the cached pages anyway.
  • Fetching more discussions...
    Show 51 - 100 of 191 discussions

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...

© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.