Just stuff I'm brainstorming over.

Finding or Contacting Me

Planting anything on this talk page won't get you in touch with me unless I come back to edit it for whatever reason. Your best chance at finding or contacting me online is via IRC as "lech" or mail/gtalk @ unattended(-at-)gmail-dot-com.

Add requests or other stuff here

If and when I return here to add/remove/update stuff, add it here.

My brain never stops running, if I only knew how to code I'd attempt to do all this for you.

Password manager

In regards to the bug 360493 discussion on IRC and rewriting the password manager: There are a few ways I can think of which could better secure user logins and passwords by prompting a few more user interactions or confirmations. Rather than the current method of immediate auto-fill. Aside from not storing logins to sites with sensitive information within FX or on your computer in the first place.

User navigates to a site where his or her password has been saved and is prompted:

Within the sidebar: Display a list of logins for that particular domain or group of trusted domains (redirects) in the sidebar, prompting the user to either click on a login name or drag it into the form field to be filled into the proper form. It's not exactly elegant, but it could serve as an access point to manage passwords if one choses to.

with the Opera-like "wand" button: Switches the cursor to a wand and momentarily turns the user into a fairy princess and or wizard. Which then allows the user to populate login and password by clicking within any of the form fields. Side effects may include defecation of glitter and or pixie dust, along brief instances of feeling less like a man. In short, this one is fairly self-explanatory.

Within the status or address bar: Similar to how security icons appear within the status and address bars. However the icon could present a small menu of options to either auto-fill, add or edit login details for that site. Alternately this icon/menu could also (at the cost of screwing someone else's CSS) appear within or outside the login form fields as well.

Within a Firefox generated overlay or pop-up login: Depending on how servers treat referrer requests could make this tricky, but in a sense modifying it so that no forms on a page get filled out at all if we already know the login info. This could be done in either a pop-up or within an overlay drawn over the form itself which takes the known form action and input names and submits it from Firefox directly. This way while the login can still be submitted, site and page elements can't (shouldn't) directly manipulate or be able to steal a users info.

Notes: Additionally, color coding the backgrounds of text elements or the color of icons similarly to how the address bar background changes according to the type of connection. This would be relative and could alert the user if the form is duped or XSS is detected.