Language Selection

English French German Italian Portuguese Spanish

EFF Tool Offers New Protection Against 'Firesheep'

Filed under
Security

The Electronic Frontier Foundation (EFF) has launched a new version of HTTPS Everywhere, a security tool that offers enhanced protection for Firefox browser users against "Firesheep" and other exploits of webpage security flaws.

HTTPS secures web browsing by encrypting both requests from your browser to websites and the resulting pages that are displayed. Without HTTPS, your online reading habits and activities are vulnerable to eavesdropping, and your accounts are vulnerable to hijacking.

Unfortunately, while many sites on the web offer some limited support for HTTPS, it is often difficult to use. Websites may default to using the unencrypted, and therefore vulnerable, HTTP protocol or may fill HTTPS pages with insecure HTTP references. EFF's HTTPS Everywhere tool uses carefully crafted rules to switch sites from HTTP to HTTPS.

This new version of HTTPS Everywhere responds to growing concerns about website vulnerability in the wake of Firesheep, an attack tool that could enable an eavesdropper on a network to take over another user's web accounts -- on social networking sites or webmail systems, for example -- if the browser's connection to the web application either does not use cryptography or does not use it thoroughly enough.

rest here




More in Tux Machines

How Linux containers can solve a problem for defense virtualization

As the virtualization of U.S. defense agencies commences, the technology’s many attributes—and drawbacks—are becoming apparent. Virtualization has enabled users to pack more computing power in a smaller space than ever before. It has also created an abstraction layer between the operating system and hardware, which gives users choice, flexibility, vendor competition and best value for their requirements. But there is a price to be paid in the form of expensive and cumbersome equipment, software licensing and acquisition fees, and long install times and patch cycles. Read more

Fedora 21: Linux fans will LOVE it - after the install woes

With Fedora's installer it isn't immediately clear what you need to do – or even that you need to do something – until you click each button and find out, which runs the "select your layout" and installs. It's not that bad; it's not like installing Arch, but it did leave me wondering “why?” Why not just go with the familiar, narrative-like sliding screen animation that, well, pretty much every other OS out there uses? Read more

Customers reporting interest in cloud, containers, Linux, OpenStack for 2015

As 2014 comes to a close and IT departments reflect on their initiatives heading into the new year, we asked a group of 115 Red Hat customers -- ranging from Fortune 500 companies to small businesses -- about their priorities for 2015. What we heard from the respondents is promising going into the new year: Budgets are increasing (or at least staying the same); Linux adoption is increasing; cloud deployments will be dominantly private or hybrid; OpenStack is hot; and interest in containers is emerging. Read more

Multi-Stream Transport 4K Monitors To Become Better Supported On Linux

For a number of months David Airlie at Red Hat has been working on DisplayPort Multi-Stream Transport (DP MST) handling for Linux. Keith Packard over at Intel is now playing with DP MST too for bettering modern 4K display support on Linux within X.Org Server based environments. Read more