Firesheep is a tool that allows hackers to eavesdrop on unencrypted wireless networks and, in essence, hijack the browser session. Information technology professional Mike Chapple shows you how web authentication makes session hijacking possible, how Firesheep exploits these vulnerabilities, and the measures that website administrators, web developers, and end users can take to protect against session hijacking attacks.

Read the full article: Firesheep, Fireshepherd, and Facebook: Understanding Session Hijacking

Published in Fireshepherd, and Facebook: Understanding Session Hijacking, InformIT, February 2011 on 02/22/11