Firesheep - Firefox Pluggin to Hijack Facebook Twiiter Cookies

[Guest Hacker News]

Hey Web 2.0:

Start protecting user privacy instead of pretending to

Eric Butler

Ian 'craSH' Gallagher

 

Cookies need to be kept secret

 

Logging out doesn't guarantee session is invalidated.

 

http://www.imperialviolet.org/2010/06/25/overclocking-ssl.html

 

http://codebutler.github.com/firesheep/

[Guest Luke]

Firesheep #10 trending search on Google in the US.

 

http://codebutler.github.com/firesheep/tc12/

 

[Guest EFF]

HTTPS Everywhere is a Firefox extension produced as a collaboration between The Tor Project and the Electronic Frontier Foundation. It encrypts your communications with a number of major websites.

 

Many sites on the web offer some limited support for encryption over HTTPS, but make it difficult to use. For instance, they may default to unencrypted HTTP, or fill encrypted pages with links that go back to the unencrypted site.

 

https://www.eff.org/https-everywhere

[Guest Hacker News]

Idiocy is a warning shot to people browsing the internet insecurely.

 

For more information: http://jonty.co.uk/idiocy

 

Idiocy quietly watches for people insecurely visiting twitter on public wifi networks, then hijacks their session to post a tweet warning them about the dangers. It was written in response to the release of Firesheep, which will result in a huge increase in session stealing attacks, with no defence other than forcing people to use SSL.

[Guest human]

hacker news, oh!!! I'm cool with hacker news.

 

Well anyways one of my favorite books to read is?

 

The hacking of America; Who's doing it,why, and how.

[Guest Hacker News]

I would advise people not to send sensitive information from a public network.

[Guest human]

I got to meet "got real lucky" a person who hacked me once, and they say that there is no god. ]:)

----------------------------------------------------------------------------------------------------

I would advise people not to send sensitive information from a public network.