Slashdot Mirror

← Back to Stories (view on slashdot.org)

How To Protect Against Firesheep Attacks

Posted by CmdrTaco on from the oh-that-helps-sure dept.

Monday we mentioned Firesheep, a plug-in that trivializes ID spoofing on social networks. Since then various security researches have come out to suggest How to Protect Yourself against Firesheep Attacks (submitted by Batblue). Of course the advice is pretty obvious: Don't use free Wi-Fi, use SSL, or a VPN. It seems to me that the big sites should start by redirecting all non-SSL traffic to https automatically. If you want to be insecure, you'd have to explicitly state that you can't encrypt for some reason.

9 of 208 comments (clear)

  1. Let's just encrypt everything all the time by Anonymous Coward · · Score: 1, Funny

    Did I mention I sell SSL certificates?

  2. Defense is Easy by The_mad_linguist · · Score: 5, Funny

    All you really need to do is stay out of the tall grass on Route 32. If you do have a firesheep attack, I recommend sending out a water type like wartortle.

    1. Re:Defense is Easy by idontgno · · Score: 2, Funny

      Blastoise, I choose you!

      Blastoise uses "SSL Fountain"!
      It's super effective!

      --
      Welcome to the Panopticon. Used to be a prison, now it's your home.
    2. Re:Defense is Easy by Monkeedude1212 · · Score: 5, Funny

      Come on, we're all adults here.

      Meaning, you should have a Blastoise by now.

  3. Re:slashdot's method by astrashe · · Score: 2, Funny

    My precious, precious karma. :)

  4. Re:slashdot's method by NatasRevol · · Score: 3, Funny

    I *did* make the same post!

    --
    There are two types of people in the world: Those who crave closure
  5. Re:how about by Anonymous Coward · · Score: 1, Funny

    simply not using social networks?

    *gasp* HERETIC!!!

  6. Re:slashdot's method by ALeavitt · · Score: 2, Funny

    What kind of idiot would use his real name for a Slashdot account?

    --
    This sig has been stolen. Return it to its original user for a reward.
  7. Re:slashdot's method by betterunixthanunix · · Score: 2, Funny

    Oh the horror! You might look like an idiot on Slashdot of all places!

    In all seriousness, people should not be using Facebook in a way that could cause any damage to them if their accounts are hijacked. Facebook is a toy, and treating it like anything other than a toy is asking for trouble.

    --
    Palm trees and 8