Assuming you are creating an account, UN: Hello PW: World123
My largest issue is that its extremely possible to fat-finger your UN to be Hellow, and its extremely easy to see and fix that mistake.
However since passwords are hidden its hard to see ######## is actually Worls123. Now your new account has essentially a one-time login because you have no idea what your password is. Typing it out again, ensures you catch your mistake
Pasting the password from an authoritative source like a password manager also eliminates that mistake, and works safely whether there's a password confirmation field or not. Even better if your password manager can generate a new password, fill it into all applicable spots on a registration form and save it into its database from a single button press so you have no chance to screw anything up.
I agree. I wish there was an easy way to say "disable password hiding (always/for this session/while I'm in my current network configuration)."
I never need passwords hidden in my home. I've been in work environments where I know I'm not doing anything where I'd want passwords hidden. I especially don't want passwords hidden on my phone, where it's easy to make a typo.
OP isn't talking about password confirmation fields, which are similar to my other comment about email confirmation fields. They are talking about sign-in forms.
My largest issue is that its extremely possible to fat-finger your UN to be Hellow, and its extremely easy to see and fix that mistake.
However since passwords are hidden its hard to see ######## is actually Worls123. Now your new account has essentially a one-time login because you have no idea what your password is. Typing it out again, ensures you catch your mistake