Facebook HTTPS

Facebook is adding https functionality spanning the entire web site. Previously, only pages that required authentication credentials to be entered were encrypted; this meant that authentication cookies could be captured in plaintext, as with the Firesheep tool. This should put an end to that.

The capability can be activated by end users on the “Account Settings” page.

Leave a Reply

Your email address will not be published. Required fields are marked *