Comments on: Firesheep Should Be A Call To Arms For System, Network & Web Admins https://systembash.com/firesheep-should-be-a-call-to-arms-for-system-network-web-admins/ Technology and System Administration Thu, 10 Mar 2011 13:51:00 +0000 hourly 1 https://wordpress.org/?v=6.3.1 By: Dave Drager https://systembash.com/firesheep-should-be-a-call-to-arms-for-system-network-web-admins/#comment-41814 Thu, 10 Mar 2011 13:51:00 +0000 http://systembash.com/?p=839#comment-41814 Poul, Great analysis on your part. Agreed totally that in an ideal world all connections should be encrypted with SSL unless there are some major issues to take into consideration.

]]> By: Timothy https://systembash.com/firesheep-should-be-a-call-to-arms-for-system-network-web-admins/#comment-41744 Sun, 31 Oct 2010 19:27:00 +0000 http://systembash.com/?p=839#comment-41744 A unique IP address isn’t even necessary anymore with modern web browsers, SNI (Server Name Indication) can be used to provide TLS connections for multiple virtually hosted websites on one IP using different SSL certificates. It’s probably a little wasteful of IP addresses to use one per website, especially if you’re running many on one host.

Totally agree with you about encrypting all logins, hopefully wider public knowledge of these kind of attacks will drive people to seek out better security in their browsing experience.

(Not sure if this posted the first time, it appears your website requires third party cookies for logging in…)

]]> By: Fernando Correia https://systembash.com/firesheep-should-be-a-call-to-arms-for-system-network-web-admins/#comment-41742 Thu, 28 Oct 2010 23:16:00 +0000 http://systembash.com/?p=839#comment-41742 This is indeed a huge problem. Site developers, especially at huge organizations with millions of users, must be aware of this and secure it on their side, using SSL and safe cookies.

]]>