[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Facebook insecure by design

Subject: Facebook insecure by design
From: jra at baylink.com (Jay Ashworth)
Date: Sun, 23 Oct 2011 19:04:27 -0400 (EDT)
In-reply-to: <[email protected]>

----- Original Message -----
> From: "Jeroen Massar" <jeroen at unfix.org>

> On 2011-10-23 19:43 , steve pirk [egrep] wrote:
> > Just about everything on Google pages is https these days, even
> > search if you enable it.
> 
> (or just use https://encrypted.google.com which is available for quite
> some time already)

Note that Lauren Weinstein has just put out a Privacy Digest posting noting
that the referer behavior differs between https://encrypted.google.com and
https://www.google.com in a way that implies that, again, someone at Google
may not have gotten the Don't Be Evil memo...

  http://lauren.vortex.com/archive/000906.html

Cheers,
-- jra
-- 
Jay R. Ashworth                  Baylink                       jra at baylink.com
Designer                     The Things I Think                       RFC 2100
Ashworth & Associates     http://baylink.pitas.com         2000 Land Rover DII
St Petersburg FL USA      http://photo.imageinc.us             +1 727 647 1274

Follow-Ups:
- Facebook insecure by design
  - From: steve at pirk.com (steve pirk [egrep])
- Facebook insecure by design
  - From: steve at pirk.com (steve pirk [egrep])

References:
- Facebook insecure by design
  - From: jeroen at unfix.org (Jeroen Massar)

Prev by Date: Facebook insecure by design
Next by Date: Facebook insecure by design
Previous by thread: Facebook insecure by design
Next by thread: Facebook insecure by design
Index(es):
- Date
- Thread