Once again, it’s time for a little story. In October 2010, Eric Butler released a Firefox extension named Firesheep to highlight a huge problem on the Web that most people hadn’t been paying enough attention to. Firesheep allowed any regular ol’ user to watch the nonencrypted traffic on their local network and then hijack other users’ sessions. Firesheep exploits a type of man-in-the-middle attack called sidejacking. Sound scary? It should, because it is. Maybe you’re thinking, well this is conjecture. Alright fine, facts in. Let’s walk through an illustration ...
© Ben Edmunds 2016
Ben Edmunds, Securing PHP Apps, 10.1007/978-1-4842-2120-4_2
2. HTTPS/SSL/BCA/JWH/SHA and Other Random Letters; Some of Them Actually Matter
Ben Edmunds1
(1)Brooklyn, New York, USA
Get Securing PHP Apps now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
