Hacker News new | past | comments | ask | show | jobs | submit login

I don't care much when it happens on a website, because I can bypass that easily, but it's enraging when I see this practice in mobile apps.

For example, my bank's app don't let you paste passwords. I have a strong random password which basically means I can't access it from my phone...




Chase.com is one of the worst. The desktop version of the site does all sorts of browser fingerprinting with javascript. It does things like tries opening up websockets to random local ports, and stuff like that.

I had to just throw up my hands and do all of my access to chase.com through a sandboxed browser profile, where I could automate logins.


> Chase.com is one of the worst. The desktop version of the site does all sorts of browser fingerprinting with javascript. It does things like tries opening up websockets to random local ports, and stuff like that.

I'm not fond of this, but what does it have to do with passwords? I (reluctantly) use Chase's online banking on the desktop, and it lets me paste passwords.




Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: