Here’s a question: Using any of Firefox, Thunderbird, SeaMonkey, the Mozilla Suite, or Netscape, have you ever purposely clicked on the ‘Remove All’ button, in the password manager?
Follow up question: Have you ever clicked on it by accident?
Clicking on it by accident, is easy, when it sits right beside ‘Remove’ button. Luckily, the closest I’ve come to that, is removing all cookies, not passwords. The scary part is that there is no “Are you sure” prompt, asking for confirmation. One accidental click, and ‘poof’, data is gone.
I’ve been able to avoid this by removing the ‘Remove All’ button. If you’re using Firefox or Thunderbird, add the following script to your userChrome.css file, to remove the ‘Remove All’ button from the password manager:
#removeAllSignons {display: none !important;}