Who decided I can't paste the password when downlo...
Sign Up

Why sign in to the Community?

  • Submit a question
  • Check your notifications
or and start working on your taxes
Announcements
TurboTax has you covered during Covid. Get the latest second stimulus info here.
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Who decided I can't paste the password when downloading from a financial institution.\?

That's pretty much it.  I have impossible-to-remember difficult-to-type passwords stored securely electronically. Since Turbo Tax won't let me paste a password, I have to enter all the information by hand.

9 Replies
Expert Alumni

Who decided I can't paste the password when downloading from a financial institution.\?

I am sorry, but the dis-allowance of being able cutting and pasting of passwords is security measure.  

**Say "Thanks" by clicking the thumb icon in a post
**Mark the post that answers your question by clicking on "Mark as Best Answer"
Level 2

Who decided I can't paste the password when downloading from a financial institution.\?

I will claim that this restriction does NOT improve security. In fact, it will make it worse and will lead to

  • User temporarily change the password to a simpler/shorter string to type.
  • and will cause user endless frustration (imagining having to type blindly 64 random characters that just echoing '*****'. If user makes a mistake, how does s/he figure out which is the bad characters?)

The NIST Digital Identity guideline called this out

Verifiers SHOULD permit claimants to use “paste” functionality when entering a memorized
secret. This facilitates the use of password managers, which are widely used and in many cases
increase the likelihood that users will choose stronger memorized secrets.
I've put up with it for a few years now but I can't anymore. This year wealthfront requires an auto-generated app-only password that is 32 characters long and I just can't type all that without making mistakes.
 
I wrote a tool to work-around that, you can get more information here: https://github.com/hleofxquotes/entertext/wiki 
 
Level 4

Who decided I can't paste the password when downloading from a financial institution.\?

I just came here to complain about the exact same thing, and it's also because of Wealthfront. I will check out your solution, thanks.

New Member

Who decided I can't paste the password when downloading from a financial institution.\?

Not allowing pasting of a password is just plain stupid and removes the utility of import of data. This worked fine last year.

 

Sarcasm ON: "Yes, Of Course I like manually typing my 16+ digit password consisting of a random jumble of caps, normal letters, numbers and symbols." And I don't feel like turning off the sarcasm. This is just plain stupid.

 

And BAD for security.

Level 4

Who decided I can't paste the password when downloading from a financial institution.\?

I don't think it did work previously, given tax2019-iinnttuuiitt's comment. In any event, their solution worked great for me. I highly recommend checking it out!

Level 2

Who decided I can't paste the password when downloading from a financial institution.\?

The import worked fine last year, before Wealthfront went to the app-specific password.      Unfortunately, I am not all that tech savvy and I am extremely reluctant to download a solution that I know nothing about,  especially when I am using to access my tax software.  

New Member

Who decided I can't paste the password when downloading from a financial institution.\?

I'm sorry but this is so wrong as expressed by all the other folks posting. We are forever told by the security experts to make our passwords long and unrecognizable so everyone uses password managers to do this. So to now have to manually enter a long unrecognizable password without an error is extremely unworkable. Please rethink what you are doing here.

Level 1

Who decided I can't paste the password when downloading from a financial institution.\?

Not allowing pasting is not "security" in any way. I have the password in a vault on the pc, so I have control of it. Do you think the ruskies are going to steal it as I move the mouse across the screen?

 

Next, the password is 20 random characters. My wife read it to me as I typed it. We failed the first time by either her misreading the garbage string or my mistyping it. I refuse to feel guilty if I mistyped it and I don't blame her at all if it was her glitch. WE SHOULDN'T HAVE HAD TO DO THIS!

 

The same bozo appears to have thought that not showing the password was another security requirement. Since I couldn't see the **bleep** thing we just had to start the entire transcription effort all over again. So, it only took two times, but I AM PISSED OFF!

 

If you want to not show the password since you think your customers are so stupid as to do their taxes in a Starbucks, then put in a radio button to suppress the view.

 

That's two extremely stupid decisions in the same place!

Level 4

Who decided I can't paste the password when downloading from a financial institution.\?

Exactly. It's one poor decision made even worse by another poor decision. If you could at least see what you're typing, not being able to paste it in would be at least bearable. 

Dynamic Ads
v
Privacy Settings