Firesheep

A Firefox extension that was designed to demonstrate the serious issue of HTTP session hijacking (sidejacking). Many websites allow its users to submit a username and password on-site, and then after checking for matching account information, the server replies back with a cookie that will be used by your Web browser for all subsequent requests. The cookie in this scenario is vulnerable to HTTP session hijacking. The Firesheep Firefox extension is designed to illustrate how easy this sensitive information can be sidejacked and to encourage website owners to offer more secure login-ins, such as full end-to-end encryption (HTTPS or SSL).

Firesheep was designed by Eric Butler, a freelance web application and software developer in Seattle, WA.

See also “10 Ways to Protect Yourself from Firesheep Attacks” on eSecurityPlanet.

Vangie Beal
Vangie Beal
Vangie Beal is a freelance business and technology writer covering Internet technologies and online business since the late '90s.

Related Articles

@ Sign

Pronounced at sign or simply as at, this symbol is used in e-mail addressing to separate the user' name from the user's domain name,...

Munging

(MUHN-jing) Munging (address munging), is the act of altering an email address posted on a Web page to make it unreadable to bots and...

How to Create an RSS Feed

In the second installment of RSS how-to, we look at some of the nonrequired (optional) channel and item tags, discuss RSS specifications in-depth and...

Dictionary Attack

(n.) (1) A method used to break security systems, specifically password-based security systems, in which the attacker systematically tests all possible passwords beginning with...

ScalaHosting

ScalaHosting is a leading managed hosting provider that offers secure, scalable, and affordable...

HRIS

Human resources information system (HRIS) solutions help businesses manage multiple facets of their...

Best Managed Service Providers...

In today's business world, managed services are more critical than ever. They can...