We’d like to remind Forumites to please avoid political debate on the Forum.
This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
The Forum now has a brand new text editor, adding a bunch of handy features to use when creating posts. Read more in our how-to guide
Wi-Fi Hacking tool - Firesheep
Ximian
Posts: 711 Forumite
in Techie Stuff
Just thought I'd post a warning about an add-on for Firefox called Firesheep. Firesheep allows an attacker to hijack connections for popular sites such as Amazon, Facebook, Twitter etc.. when using open Wi-Fi
Firesheep sniffs the cookies that are used for authentication.
This type of hijacking isn't new, but it's now easier with tools such as Firesheep.
To protect yourself against these types of attacks a VPN can be used or HTTPS forced for the whole session, not just the initial login like most sites do, another option is to force the use of TLS (instead of SSL) as explained here: http://techcrunch.com/2010/10/25/firesheep/
Some people have mentioned that running the Firefox add-on "No Script" and setting the options to always use HTTPS on specified sites is a *prevention as follows:
NoScript->Options->Advanced->HTTPS
Force the following sites to use secure (HTTPS) connections:
twitter.com
*.twitter.com
google.com
*.google.com
facebook.com
*.facebook.com
etc.....
*In the link below, it mentions that the above configuration does not help as some sites don't support a full SSL session, meaning there may be links on the site or Java code that refer back to plain HTTP, Facebook is one culprit:
http://www.digitalsociety.org/2010/10/even-forced-ssl-is-broken-for-facebook-google-twitter/
Additional information on Firesheep:
http://www.digitalsociety.org/2010/10/firesheep-will-permanently-scare-you-from-hotspots/
Firesheep sniffs the cookies that are used for authentication.
This type of hijacking isn't new, but it's now easier with tools such as Firesheep.
To protect yourself against these types of attacks a VPN can be used or HTTPS forced for the whole session, not just the initial login like most sites do, another option is to force the use of TLS (instead of SSL) as explained here: http://techcrunch.com/2010/10/25/firesheep/
Some people have mentioned that running the Firefox add-on "No Script" and setting the options to always use HTTPS on specified sites is a *prevention as follows:
NoScript->Options->Advanced->HTTPS
Force the following sites to use secure (HTTPS) connections:
twitter.com
*.twitter.com
google.com
*.google.com
facebook.com
*.facebook.com
etc.....
*In the link below, it mentions that the above configuration does not help as some sites don't support a full SSL session, meaning there may be links on the site or Java code that refer back to plain HTTP, Facebook is one culprit:
http://www.digitalsociety.org/2010/10/even-forced-ssl-is-broken-for-facebook-google-twitter/
Additional information on Firesheep:
http://www.digitalsociety.org/2010/10/firesheep-will-permanently-scare-you-from-hotspots/
0
Comments
-
I'm interested
Not in hacking others, but I like to hack around my own wifi thanks
Owner of andrewhope.co.uk, hate cars and love them
Working towards DFD
HSBC Credit Card - £2700 / £7500
AA Loans - (cleared £9700)0 -
Fight Firesheep with FireShepherd
http://www.downloadsquad.com/2010/10/29/fight-firesheep-with-fireshepherd/Nothing to see here, move along.0 -
-
mr_fishbulb wrote: »Don't think it needs to be open, but you do need the network key.
Agreed, if you're on the same Wi-Fi network you can snoop, but traffic is still encrypted making it harder to capture data but there are ways around this. Open Wi-Fi just makes it easier
I'll be testing this on a wired network later today0 -
Wired will probably need arp spoofing. Ettercap does a good job if you're on a linux box. Someone posted a compiled firesheep xpi for Firefox on Ubuntu in this thread - http://github.com/codebutler/firesheep/pull/31Agreed, if you're on the same Wi-Fi network you can snoop, open Wi-Fi just makes it easier
I'll be testing this on a wired network later today
Haven't tried on a wired network using arp spoofing with cane & able. Might work.0 -
mr_fishbulb wrote: »Wired will probably need arp spoofing. Ettercap does a good job if you're on a linux box. Someone posted a compiled firesheep xpi for Firefox on Ubuntu in this thread - http://github.com/codebutler/firesheep/pull/31
Haven't tried on a wired network using arp spoofing with cane & able. Might work.
That's what I was going to use, C&A, keep it simple for now. 0 -
Firesheep, Fireshephard
Where's the cows and goats ? Owner of andrewhope.co.uk, hate cars and love them
Working towards DFD
HSBC Credit Card - £2700 / £7500
AA Loans - (cleared £9700)0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 353.5K Banking & Borrowing
- 254.1K Reduce Debt & Boost Income
- 455K Spending & Discounts
- 246.6K Work, Benefits & Business
- 602.9K Mortgages, Homes & Bills
- 178.1K Life & Family
- 260.6K Travel & Transport
- 1.5M Hobbies & Leisure
- 16K Discuss & Feedback
- 37.7K Read-Only Boards