Once you install it, a small “P” icon will show up in your browser’s status bar.  All you have to do is click on it, and a password will be generated using the settings you have put in.  By default, the password will be shown to you and copied to your clipboard.  To change the options, all you need to do is right-click on the icon and select options.  From there you have a number of specific settings you can change, such as what the first and last characters start with, the password length, if you want to display the password or not or if you wish to copy the password to the clipboard or not.

Why use a complicated password?  Well, if a password is too short or simple, it is vulnerable to attack.  The simpler the password is, the easier time somebody will have to figure it out.  On the flip side, the more complicated the password, the harder it will be to figure out.

All in all, the pwgen – Password Generator extension for Firefox is a perfect one for those of you who may have a hard time coming up with a random mix of letters and numbers to use for your next secure password.

The Secure Login extension does the trick. So I bet your asking, “well, how do I login then?”. It uses the built-in password manager, but deactivates the pre-filling of login forms. You are now able to login with one click or a keyboard shortcut (ALT+N – changeable via settings). Just add the Secure Login tool bar button to your tool bar, or use the provided status bar icon.

The handiest feature of all the things this security tool does is the disabling the pre-filling of login forms prevents malicious JavaScript code to automatically steal your login data. If your worried about your login information being grabbed by the wrong folks – this extension might be right up your paranoid ally.

Webconverger is an evolution of the hybrid client for deployments in places like offices or Internet cafes where only Web applications are used. Unlike thin or hybrid clients, Webconverger is faster and more responsive by providing a Web browser that runs locally.

I haven’t had the time to try it out myself, but I will be soon. This would be a great tool to use if you don’t want people messing up your machine, or you run a series of local machines and you need a cheap and easy way of making them usable. I am sure this might give life to an old machine too!

Check out the project, support them if you think it is good – and most of all let me know how you like it or what could be done to it to make it better. I’ll be sure to pass any feedback you have back to the developer.

+ Check Out the Webconverger Live CD!

The Remember Mismatched Domains extension for Firefox is here to save the day.

The Remember Mismatched Domains extension for Firefox and Thunderbird adds a “Don’t warn me again about this certificate for this domain” checkbox to the Domain Mismatch and Expired Certificate warning windows. When selected the domain name and security certificate domain pair (or certificate and expiration date pair) is stored in a Firefox / Thunderbird preference and the security error dialogue will be bypassed on subsequent visits.

Well now if this bugs you as much as it bugs me, you can get rid of it with the Remember Mismatched Domains extension.

In fact, even if you change your Google Calendar bookmark URL to https, you’ll often be redirected to a plain old http connection. boo, Google! That’s why I’ve found Mark Pilgrim’s GMail Secure Greasemonkey script invaluable. It’s built to force a secure connection for GMail, but the script itself is so generic that it works for other sites.

+ Read More About Securing Google Calendar in Firefox!