Firesheep isn't about capturing passwords though, it's capturing the session cookies instead. Yeah, if you're logging in, it's handy to protect your password - but on an open network someone could come in after you've logged in to Facebook, and still get access to your FB account.Pu-239 wrote:Your username/password will still be encrypted at least. Hm, actually, looking at the source, it's encrypted even via the normal HTTP link, although that's vulnerable to MITM.Uraniun235 wrote:It doesn't work. Navigate around the Facebook website and it just tosses you back to plain HTTP.
Careful where you surf on an open network...
Moderator: Thanas
-
Uraniun235
- Emperor's Hand
- Posts: 13772
- Joined: 2002-09-12 12:47am
- Location: OREGON
- Contact:
Re: Careful where you surf on an open network...
"There is no "taboo" on using nuclear weapons." -Julhelm
What is Project Zohar?
"On a serious note (well not really) I did sometimes jump in and rate nBSG episodes a '5' before the episode even aired or I saw it." - RogueIce explaining that episode ratings on SDN tv show threads are bunk
"On a serious note (well not really) I did sometimes jump in and rate nBSG episodes a '5' before the episode even aired or I saw it." - RogueIce explaining that episode ratings on SDN tv show threads are bunk