Especially for things like account numbers. No, you’re not increasing security, you idiots, you’re increasing human error!
It isn’t right you need an extension for it, but here we are. Don’t F*** With Paste
On Firefox it is some setting under about:config, no need for an extension.
no, thats another layer down. hell + ultra
Lol yea the comic artist needs to come up with a follow-up 4panel with extra-extra-hell lmao
I ran into this when trying to paste my generated password into the password field on some kind of financial site and I think it is still the most egregious case of security theater I’ve seen yet.
Anyway, you want the “don’t fuck with paste” extension, available on both chrome and firefox.
You don’t need this - In about:config, set dom.event.clipboardevents.enabled to false. No Addon needed.
The comment hero!
I blame browsers
Well, stop. The problem is caused by mid-level managers who think they know better than the Worldwide Web Consortium.
No. The problem is browsers enforcing it.
Came here hoping someone would explain how to use dev tools to remove that block or if there an addon for that, really hate this kind of restriction
In about:config, set dom.event.clipboardevents.enabled to false.
Firefox often let’s you bypass this shit with holding shift + right click or select the text you want to paste and drag and drop it into the field.
Man, that extension fucked with my Vivaldi. I couldnt send msgs on Twitch, couldnt delete cells on GoogleSheets and spent like an hour trying to figure out what caused it. Not worth the trouble tbh
Also on vivaldi, I now have three extensions that destroy half the pages on the web (and save the other half). With a little bit of whitelisting or just temporarily enabling, they work fine.
you da MVP
TBF, I kind of get it. If someone is using a public computer you wouldn’t want someone to be able to sign into a site they left open because they copied their password.
However, this won’t prevent anyone from copying the password into something like notepad and just typing it out. So in the end, it’s useless and makes things less user friendly. Which is what I expect these days.
- User pastes something into site
- data still pasted as normal
- JScript event clears clipboard and tells user this.
Literally just as secure and better behavior. Just use your brain for a few seconds.
Edit: Actually its MORE secure because disallowing paste leaves the password or whatever in the clipboard without the user necessarily realizing it…
Public computers should just have their pastebin locked.
They shouldn’t mess with things on my personal computer.
No they shouldn’t. They should require a guest account that clears the session on logout. If you fail to log out when you’re finished, well, mistakes have consequences. I’m tired of being handcuffed so incompetent people can have their hands held.
I suspect the reasoning for it was more along the lines of “if you’re pasting the password, that means you probably saved it in a text file on your desktop or something, and you shouldn’t do that so let’s stop you from doing it”. In reality, it probably didn’t work to make anyone store passwords more securely, and only made life unnecessarily harder for people with password managers
Just as evil are the pages that don’t let you select text or pictures for copying.
You can’t copy our JPEGs! That’s stealing! If you want to look at these JPEGs whenever you want, you need to register for an account and tag your favorites so we can monitor your viewing habits and sell your personality profile to advertisers and government entities!
I believe you can hold ALT then select on Firefox when that comes up, but I don’t think I’ve seen it in years.
Meanwhile:
Sure thing, pal! I’m just gonna take a peek at the HTML real quick…
Or for the lazy, screenshot!
Or training videos that pause if the window playing the video is not the last thing clicked on.
Which makes taking notes while the video is playing basically impossible
You can sometimes do it anyway by right clicking (or long hold tap) on the text field to get a contextual menu popup
They’ve started blocking that too on phones, which is what led to this meme lol. Curiously, GBoard has a little button on the top row that shows for freshly copied text when you go into a text field that still works, GBoard must not send the text as a paste when it’s done that way. But its only visible once
Unexpected Keyboard has a similar optional key — which website are you using with this behavior? I wonder if pasting from it would trigger the detection. Also, it lets you bind strings to keys — I wonder if that would act in a similar manner.
