And another thing
Having just posted about Facebook, its reminded me of something else I keep meaning to post...
A couple of months ago I pointed out that Facebook had finally enabled full site encryption, in response to the high profile release of a one click tool that enabled anyone to hijack your session, if you were using an open wifi point, such as used in public places.
At the time someone (midnightschilde I think) pointed out that if you switched this on and then used an application that didn't support it, you;d get a warning message and would be asked if you wanted to turn off https - your only option if you wanted to use that app. Annoyingly it would then remain off - not very useful. Facebook have since changed this - it still turns it off, but only for that session - it'll be back on again next time you login. As such if you jumped to activate this before, you may want to go in and check that it's still enabled, and if not, do so. If you previously ignored me, now's your big chance at redemption...
In a similar vein Twitter have now also seen the light, and offered a similar option - full details here.
A couple of months ago I pointed out that Facebook had finally enabled full site encryption, in response to the high profile release of a one click tool that enabled anyone to hijack your session, if you were using an open wifi point, such as used in public places.
At the time someone (midnightschilde I think) pointed out that if you switched this on and then used an application that didn't support it, you;d get a warning message and would be asked if you wanted to turn off https - your only option if you wanted to use that app. Annoyingly it would then remain off - not very useful. Facebook have since changed this - it still turns it off, but only for that session - it'll be back on again next time you login. As such if you jumped to activate this before, you may want to go in and check that it's still enabled, and if not, do so. If you previously ignored me, now's your big chance at redemption...
In a similar vein Twitter have now also seen the light, and offered a similar option - full details here.