Foil Firesheep and other Nuisances on Linux

 

"You've probably heard a lot about Firesheep, the Firefox extension that exposes user credentials and allows almost anyone to take over an account on Facebook, Twitter, and many other sites with a few clicks. But what do you do to defeat it? Read on, and you'll be able to foil Firesheep in no time.

"A lot of Web sites use cookies to store authentication information. You'll log in via an HTTPS connection, but then revert to HTTP when you've authenticated. Then the cookie ? with your authentication information ? is sent over plain HTTP. This is no big deal when you're on your home network (assuming you trust all the people in your home, of course, and you use WEP or WPA for your Wi-Fi). But if you're in a coffee shop, at a conference, or using some other public network then sending your cookies over HTTP makes it easy for someone else to hijack your session."

Complete Story

Related Stories:
Firefox Extensions for the Web Developer(Nov 30, 2010)
EFF Tool Offers New Protection Against 'Firesheep'(Nov 24, 2010)
12 Ubuntu Derivatives You Should Consider(Nov 22, 2010)
Anti-Firesheep Trick Protects Linux Users(Nov 16, 2010)
Blazing fast Firefox 4 beta 7 impresses(Nov 11, 2010)
Firesheep Countermeasure Tool BlackSheep(Nov 09, 2010)
10 Ways to Protect Yourself from Firesheep Attacks(Nov 08, 2010)
Firefox extension makes social network ID spoofing trivial(Oct 26, 2010)







View the original article here