Home
Latest images
Search
Register
Log inHTTPS Everywhere now protects against Firesheep
Page 1 of 1
HTTPS Everywhere now protects against Firesheep
andry Wed Dec 15, 2010 3:24 am
The EFF launched a new version of HTTPS Everywhere, a security tool that offers enhanced protection for Firefox browser users against Firesheep and other exploits of webpage security flaws.
HTTPS secures web browsing by encrypting both requests from your browser to websites and the resulting pages that are displayed. Without HTTPS, your online reading habits and activities are vulnerable to eavesdropping, and your accounts are vulnerable to hijacking.
Unfortunately, while many sites on the web offer some limited support for HTTPS, it is often difficult to use. Websites may default to using the unencrypted, and therefore vulnerable, HTTP protocol or may fill HTTPS pages with insecure HTTP references. EFF's HTTPS Everywhere tool uses carefully crafted rules to switch sites from HTTP to HTTPS.
This new version of HTTPS Everywhere responds to growing concerns about website vulnerability in the wake of Firesheep, an attack tool that could enable an eavesdropper on a network to take over another user's web accounts - on social networking sites or webmail systems, for example - if the browser's connection to the web application either does not use cryptography or does not use it thoroughly enough.
Source: http://www.net-security.org
HTTPS secures web browsing by encrypting both requests from your browser to websites and the resulting pages that are displayed. Without HTTPS, your online reading habits and activities are vulnerable to eavesdropping, and your accounts are vulnerable to hijacking.
Unfortunately, while many sites on the web offer some limited support for HTTPS, it is often difficult to use. Websites may default to using the unencrypted, and therefore vulnerable, HTTP protocol or may fill HTTPS pages with insecure HTTP references. EFF's HTTPS Everywhere tool uses carefully crafted rules to switch sites from HTTP to HTTPS.
This new version of HTTPS Everywhere responds to growing concerns about website vulnerability in the wake of Firesheep, an attack tool that could enable an eavesdropper on a network to take over another user's web accounts - on social networking sites or webmail systems, for example - if the browser's connection to the web application either does not use cryptography or does not use it thoroughly enough.
Source: http://www.net-security.org
andry- Moderator
- Posts : 467
Join date : 2010-05-07
Similar topics» HTTPS Everywhere
» BlackSheep – Firefox Add-on - Protect Against Firesheep
» Improving HTTPS Side Channel Attacks
» Firesheep - Firefox HTTP session hijacking extension
» BlackSheep – Firefox Add-on - Protect Against Firesheep
» Improving HTTPS Side Channel Attacks
» Firesheep - Firefox HTTP session hijacking extension
Page 1 of 1
Permissions in this forum:
You cannot reply to topics in this forum|
|
|