Slashdot Mirror


HTTPS Everywhere Gets Firesheep Protection

coondoggie writes "The Electronic Frontier Foundation today said it rolled out a version of HTTPS Everywhere that offers protection against 'Firesheep' and other tools that seek to exploit webpage security flaws. Hitting the streets in October, Firesheep caused a storm of controversy over its tactics, ethics and Web security in general. Firesheep sniffs unencrypted cookies sent across open WiFi networks for unsuspecting visitors to Web sites such as Facebook and Twitter, and lets the user take on those visitors' log-in credentials."

1 of 77 comments (clear)

  1. Apps? by Anonymous Coward · · Score: -1, Redundant

    I use an iPhone - how safe am I when using the ebay or Facebook apps
    Do iPhone apps use encryption by default or will firesheep pick up login information from these as easily as it would if I accessed the site using safari?
    Or is encryption something that is optional for the app developer - and in that case is there any way of telling which are secure?