...wow, so a tool that lets you log in as someone else's facebook. Niceee -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of silky Sent: Tuesday, 26 October 2010 6:03 PM To: ozDotNet; [email protected] Subject: OT(ish) - Firesheep
May be of interest to some: http://codebutler.com/firesheep "When logging into a website you usually start by submitting your username and password. The server then checks to see if an account matching this information exists and if so, replies back to you with a "cookie" which is used by your browser for all subsequent requests. It's extremely common for websites to protect your password by encrypting the initial login, but surprisingly uncommon for websites to encrypt everything else. This leaves the cookie (and the user) vulnerable [...]" -- silky http://dnoondt.wordpress.com/ "Every morning when I wake up, I experience an exquisite joy - the joy of being this signature."
