When you start Mozilla, you are asked to enter a profile. Then when you choose the profile, you should be able to have it so that it asks a password before you have access to your profile. Obviously, entering a password would be optional. Currently, you can't password protect whole profiles (I think).

A dependant of this bug is about encrypting profile information such as cache, bookmarks, etc.

*** Bug 60465 has been marked as a duplicate of this bug. ***

Adding blocks

Brian, This looks like duplicate of bug 16489- please confirm and I can mark this so and change dependencies etc.

Actually this isn't a profile migration issue, it's a profile manager issue. Reassigning.

dup of 16489, looks like. *** This bug has been marked as a duplicate of 16489 ***

thanks for looking up the duplicate sairuh

Sorry, I was going to make this a parent of 19184 but I guess it has already been done.

There is no need to encrypt the actual files in the profile's directory. That would be overkill. All we need is to be able to deter someone from accidentally entering our profile by hitting ENTER in the profile manager. It will also deter 99% of people (wives, children, colleague, etc.) who want to take a "peek" at our mail and bookmarks. It would be the same feature as in NC 4.x - a simple password that allows entry into ones profile. Those who are willing to read through hundreds of pages of difficult to read text files to read our mail will likely not be able to be deterred by encryption either. Please create a simple password protection for profiles for the 99% of us "casual" users. This should be simple enough to implement in a near nightly build ;-)

One thing though is that cache needs to be protected too. For instance, if someone is looking at certain documents that require a password, someone that has access to their computer could browser their cache, causing a security hazard. Any plaintext files and images should be encrypted. But for now, the password protection is more important.