Passwords saved in Google Chrome are visible to everyone. This is a normal thing that has been there for years . But to my surprise many people seemed not to know about this. People all over the internet is furious over this finding and wants Google to fix it.
Protecting Google Chrome passwords and settings
If you go to Settings> scroll down to ‘Show advanced settings…’ > scroll down and open ‘Manage saved passwords’, you will get all the passwords stored like in the above figure.
Here is a quick solution:
1) Open the folder where your Google Chrome has been installed.
(Windows most likely location: C:\Program Files\Google\Chrome\Application\~Chrome version number like 28.0.1500.95 ~ ).
(Mac: Locate where Chrome is installed and search for ‘resources.pak’ file or file with a “.pak” extension)
2) There you should see a file named “resources.pak”. Remove the file (Cut and paste it to another secret place) and rename it.
3) You’re done. Now none of your settings,extensions, password and every page related to settings will just go blank.
What will happen if I remove the “resources.pak” file?
What are the effects of not having the “resources.pak” file?
The missing file only affects slight design changes on small things like the Chrome app font, recently closed text, other devices and few other things. However if you are a normal user and more concerned about your security, this won’t matter to you.
Any easier and weaker alternative?
The above method is likely to keep most of the password sealers away from your passwords. However you have to keep in mind that nothing is unhackable which means it’s best if you don’t save password in browser.
ChromePW: This is a chrome extension that will help you lock your browser. This will only help you if your browser is closed and tries to open it. If they try to open it, it will prompt to enter password and if not closes.
This however is going to keep only a very tiny percentage of people who know nothing except going to the settings page. But if you choose not to try the first method, at least install the ChromePW extension.
(Note: While some people have called it a flaw, it more likely isn’t a flaw.
It has been there since I started using it some years back. In one of it’s redesign, it made the saved password more harder to find(the current one). It was way more easier in some of the previous versions of Chrome.)