Manage Learn to apply best practices and optimize your operations.

Increase security by disabling login Autocomplete

By
  • Ziv Kenet
Published: 29 Mar 2001
Both Microsoft IE 5+ and Netscape 6.0 have the "autocompleted" feature, which store previously entered field information such as username or password on the browser. This presents an "opportunistic" security concern where users move from computer to computer. Without being a hacker, a user can stumble on a another user name (and try and guess the password) or worse have the password also appear just by entering the first few letters in the username field of the Domino login form. As opposed to changing every browser setting to disable this feature (admin nightmare to enforce), on the customized Domino login form just add the html field attribute AUTOCOMPLETE="OFF" to both the username field and the password field.
When looking from the web, the HTML would look like:
<input type="text" name="username" AUTOCOMPLETE="OFF">
<input type="password" name="password" AUTOCOMPLETE="OFF">
For more information on Autocomplete check http://msdn.microsoft.com/workshop/essentials/versions/vcard.asp
Play Safe!

Dig Deeper on Domino Resources - Part 5

SearchWindowsServer

Search400

  • Favorite iSeries cheat sheets

    Here you'll find a collection of valuable cheat sheets gathered from across the iSeries/Search400.com community. These cheat ...

  • HTML cheat sheet

    This is a really cool cheat sheet if you're looking to learn more about HTML. You'll find just about everything you every wanted ...

  • Carol Woodbury: Security

    Carol Woodbury

SearchDataCenter

SearchContentManagement

Close