How does thunderbird encrypt passwords?
Chrome uses keyring to store passwords. Passwords are encrypted with system's user's account. So if anyone mounts your file system in another OS he won't be able to retrieve passwords cause he doesn't know your username's password.
I don't use master password. Are my passwords encrypted in such manner? Or I am vulnerable to such kind of attack?
Master password moreover protects password database from attackers even when I'm logged in. (so if I run app X it will be unable to get my passwords without knowing master password)
Chosen solution
When you don't have a master password set, the passwords are not encrypted in any way, so if someone else gets access to your file system, s/he can read the passwords you have stored for mail/news/chat.
If you do use a master password, the database is encrypted with it. If you don't know the password, you can't read the database, so you can't retrieve the stored passwords.
Read this answer in context 👍 2All Replies (1)
Chosen Solution
When you don't have a master password set, the passwords are not encrypted in any way, so if someone else gets access to your file system, s/he can read the passwords you have stored for mail/news/chat.
If you do use a master password, the database is encrypted with it. If you don't know the password, you can't read the database, so you can't retrieve the stored passwords.