We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

What exactly is encrypted by Primary Password?

  • 1 reply
  • 0 have this problem
  • Last reply by cor-el

more options

Good afternoon,

I have read in an article a statement that Primary Password encrypts all saved logins, therefore it is safer and recommended to use it. Well, I observed that it does not really matter if the password is set for the contents of logins.json, it does not change. What exactly is encrypted by Primary Password and how does it improve security?

I also tried to set the same password for different websites (I used a different mail tho) and the output in logins.json is different, which is even more confusing to me.

The output itself is kind of strange, the first part of it seems to be the same for almost all entries and looks like that: MEoEEPgAAAAAAAAAAAAAAAAAAAEwFAYIKoZIhvcNAwc.

Good afternoon, I have read in an article a statement that Primary Password encrypts all saved logins, therefore it is safer and recommended to use it. Well, I observed that it does not really matter if the password is set for the contents of ''logins.json'', it does not change. What exactly is encrypted by Primary Password and how does it improve security? I also tried to set the same password for different websites (I used a different mail tho) and the output in ''logins.json'' is different, which is even more confusing to me. The output itself is kind of strange, the first part of it seems to be the same for almost all entries and looks like that: '''MEoEEPgAAAAAAAAAAAAAAAAAAAEwFAYIKoZIhvcNAwc'''.

Chosen solution

That is correct, the Primary Password doesn't change the content of logins.json. The PP encrypts the encryption key (seed) that is stored key4.db and logins.json stays the same. This means that replacing this key4.db with an older copy of key4.db that doesn't have the PP applied is able to access the logins in case you forget the PP.

Read this answer in context 👍 1

All Replies (1)

more options

Chosen Solution

That is correct, the Primary Password doesn't change the content of logins.json. The PP encrypts the encryption key (seed) that is stored key4.db and logins.json stays the same. This means that replacing this key4.db with an older copy of key4.db that doesn't have the PP applied is able to access the logins in case you forget the PP.

Helpful?

Ask a question

You must log in to your account to reply to posts. Please start a new question, if you do not have an account yet.