Just a reminder that every developer who disables paste on a web form can die a horrible painful death. ESPECIALLY on every field on a form with many inputs. That is all.
Post
Replies:
17
@markwyner came here to add that a similar threat should apply to any developer of a web site that disables pastas on it !
@markwyner can AND should 😤
@markwyner and those who dont prefill the password reminder email with the one you tried to log in with
@bananamangodog right! It’s a usability issue for most of us. Don’t even get me started on the accessibility issues.
Actually do…
Eye gaze trackers (head-worn laser pointers). Manually typing words with those is extremely diffcult. Impossible, even, for some people.
Neurodivergent folks and/or people with neurological disabilities/conditions. Typing long passwords or other data is arduous for them.
@markwyner it seems you *will* comply given the right environment 👍🏻
@markwyner ah the illusion that a typed password is safer than a pasted ..
@alchemicacht right. And that’s always the excuse. That somehow pasting is a security vulnerability.
Right before posting this I was making an online purchase with a debit card. I was allowed to paste the number and date, but NOT the CVV.
I’d love to hear the logic on that one.
@markwyner @alchemicacht I still don't understand the logic of CVVs. They are just three more numbers.
That one is a Visa/Mastercard requirement. If paste is allowed, then copy can be re-enabled, and they've had a lot of issues with malicious extensions trying.
They could always shift to any of the other actually secure things, like TOTP, hardware tokens, etc. and then be accessible. But nah. Gotta keep things looking the same.
@markwyner Yes, and for more reasons than the obvious.
I have a device I use often that works perfectly except for the "e" key. I get around this by having an "e" copied and ready to paste. Except on those g-d- sites where it doesn't work.
(And yeah, I can use onscreen keyboard or an external keyboard if I have to, but when I'm doing something on the fly, I don't want to. And I *really* don't want to replace the device. It works how I want, and it doesn't shove excrement-generating "AI" features down my throat.)
@markwyner Just a reminder that every browser team that *implemented* that capability is equally at fault.
@markwyner there’s a browser plugin that will prevent fucking with copy/paste. It’s called StopTheMadness. It does a lot more as well (however it is NOT an ad blocker). Made by @lapcatsoftware
