Clear clipboard manager after configurable duration
The Windows Office Clipboard Manager stores the last 20 clips, so having the password in the clipboard is a minor security issue. The old Kaspersky desktop app would auto-delete the clipboard entry after a certain amount of time (30 or 60 seconds). This would be a good enhancement for Proton Pass.
-
Per Eriksson commented
Important!
-
joe commented
Yes, please.
-
DatGuy commented
It would also be amazing if we could get some salt and hash into keyboard inputs like https://www.majorgeeks.com/files/details/keyscrambler.html this would really make the tool top tier in the industry. I'd gladly pay a little extra for it too. if paired with some monitering client side it might end up being better than roguekiller https://www.adlice.com/roguekiller-clipboard-protection/
-
Anonymous commented
Also on Mac. After copying the password the clipboard should be automatically cleared.
-
Tyler Durden commented
Yes ! Just like KeePass is deleting it automatically, Proton Pass should do this as well !
-
Jean-Charles commented
More than important!
-
Chris commented
Enpass does this very well. It has a user-defined timeout and disappears automatically from the (Mac) clipboard.
-
Leccho commented
Yes! Allow to set different times before erasing
-
Geoff Jones commented
Yes, this is definitely a required feature. Perhaps increase the time to two minutes max though, just to allow for slow we b page loading, etc
-
protablo commented
This should be a critical security issue. The clipboard in general is an attack surface, and clearing the clipboard is a basic security feature.
-
Anonymous commented
We need to have this feature. It's a basic security measure.
-
Jurko commented
I am using windows app now and this is missing there. Very needed feature especially when you are an administrator.
-
TheVoice commented
Really need this clear clipboard feature in all platforms especially browser
-
ProtonUser commented
I've been missing this feature since switching to Proton Pass.
Most password managers I've used have this feature as mentioned by others in the comments.
Not sure on the code behind it but there are different implementations from clearing the specific items (passwords/usernames/etc) from the cliboard after a set time (e.g. 10s) to skipping the clipboard entirely, simulating user entry & using obfuscation where possible to make it harder for keyloggers (more secure, especially with linked devices).@AET good example but they'll probably need to come up with their own code due to the paid teirs of Proton Pass conflicting with the KeePass license agreement.
-
Kimaro commented
I wonder if this is something that can be done on Android aswell because I found my clipboard location (didn't even know I had one) and it had stored ALL MY PASSWORDS. Like every single one I had used on my phone.
-
Zoltán Bathó commented
This feature (clear sensitive data from clipboard) is a general standard in this category.
I believe a decent request from customer and also very useful for service provider business. -
Zoltán Bathó commented
This feature (clear sensitive data from clipboard) is a general standard in this category.
I believe a decent request from customer and also very useful for service provider business. -
Marnie Demand commented
Profile --> Settings --> Clipboard --> Clear Clipboard
-
AET commented
Like KeePassXC does, ANYTHING copied from ProtonPass should be hidden from the OS' clipboard history!
This is a CRUCIAL feature, also because some OSes sync clipboard across multiple devices (like the Windows clipboard which is synced across any device where your account is logged on, and even mobile devices if you use the SwiftKey keyboard), allowing for a huge security issue.
@devs This is feasible by setting the clipboard's mimetype according to each OS requirements. This is how KeePassXC does it, on multiple platforms:
https://github.com/keepassxreboot/keepassxc/blob/b8f9ac85ecba642f74f7b15ae3cd3e459e5ceec5/src/gui/Clipboard.cpp#L46-L82 -
AUser commented
Yeah, I believe Bitwarden does this too. Sounds easy to do and incredibly valuable from the security standpoint.