Hot on HuffPost Tech:

See More Stories
Engadget for the iPhone: download the app now
AOL Tech

Tag: SSL

Firefox 3.6.16 and 3.5.18 security updates released as Firefox 4 launches

Just because the shiny, new Firefox 4 is now ready for downloading by the general public doesn't mean Mozilla is turning its back on users who can't (or don't want to) upgrade. Security is a big priority, and 3.X users will continue to see patches for quite some time. In fact, both Firefox 3.6 and 3.5 received security updates in tandem with the Firefox 4 release. The new versions blacklist a...

Facebook for Android update improves images, security (in theory)

Facebook updated its official app for Android devices last night, bringing significant image-posting improvements, bug fixes, and a promise of "improved security using SSL." Changes for the app's handling of images include users now being able to upload photos to their friends' walls and also to groups. Photos are now supposed to always maintain their correct orientation when uploaded, but...

Twitter adds permanent HTTPS option for improved security

Those of you who don't want your Twitter account 'jacked like so many unsuspecting Firesheep victims, take heed! Twitter has added an "always use HTTPS" option to its settings page for added security while you tweet, @mention, and DM. There's really no reason not to enable permanent HTTPS, so click the drop down by your avatar, choose settings, and then head all the way to the bottom of...

Facebook to enable site-wide HTTPS and name-that-face social authentication

Tomorrow, as part of Data Privacy Day, Facebook will enable the option for site-wide HTTPS. Everything, from sending messages to stalking your friends' profiles will be encrypted, which should come as a great relief if you regularly use Facebook from public, unencrypted Wi-Fi networks. To enable it (tomorrow!), navigate to Account Settings and scroll down to Account security. Facebook will...

Picasa Web gets secure with HTTPS support

Most of Google's Web apps already supported SSL-encrypted connections. One which didn't was Picasa Web, though that has now changed -- you can now connect to Google's photo sharing site via https://www.picasaweb.com. As with many other sites, though, not everything displayed on Picasa Web is encrypted. While the home page and upload form are fully encrypted, gallery pages report as being only...

Full-time SSL goes Live -- on Hotmail, SkyDrive, Docs, Photos, and Devices

A few days ago, we were able to get Hotmail's new opt-in, full-session SSL (HTTPS) turned on, and now Microsoft has announced the general availability of the new feature. What we didn't know at the time is that the security upgrade has also been applied to other Live services -- including SkyDrive, Docs, Photos, and Devices. If you'd like to activate full session SSL (and we'd recommend you...

BlackSheep add-on detects Firesheep on your network

With all the hype about Firesheep, the Firefox add-on that snatches up social network login credentials over open wireless networks, security companies are starting to make anti-Firesheep measures available to the average user. BlackSheep, developed by "cloud security" firm Zscaler, is a Firefox add-on that detects the presence of Firesheep on your network. If someone is using Firesheep,...

Hotmail adds full-session SSL for more secure webmail

Even average users are a bit more in-tune when it comes to security and privacy on the Web nowadays (thanks in part to the recent Firesheep business). As Sebastian pointed out, there's a simple solution: browse using HTTPS whenever possible. There's a minor problem with that fix, however. Many sites log you in via an SSL-encrypted connection but then immediately redirect you to an insecure...

Fight Firesheep with FireShepherd

Earlier this week, a login-cookie-snooping Firefox plug-in called Firesheep rocked the Internet by letting anyone compromise your Facebook or Twitter account over a wireless network. Alarmed at Firesheep's 200,000 downloads, an Icelandic engineering student named Gunnar Sigurdsson created FireShepherd, a program that crashes Firesheep with floods of nonsense packets. Although Firesheep was...

Defend against Firesheep by surfing securely with HTTPS

The last couple of days have seen the launch and explosive proliferation of a Firefox add-on called Firesheep. It's an incredibly simple program that snoops unsecured Wi-Fi packets to grant you one-click masquerading of other users: if you log into Facebook at the local coffee shop, someone can use Firesheep to become you. Seriously, you can go along to any location with an unsecured Wi-Fi network...

Managing staff holidays online with WhosOff

WhosOff takes some of the stress and mess that can occur when managing staff holidays. It's a free service that is pretty easy to set up, unless you have a few hundred employees to manage. When staff names are entered into the online system together with their vacation entitlements, its WhosOff turn to work. Managers and staff are sent notifications by email when employees request leave dates,...

Using Google Accounts for Single Sign-On

Developing a web service and don't want to manage your own authentication? Use Google's! That's the gist of this article, which describes how to use SSL and XMPP to authenticate your users against Google's database of users in the same way Google Talk does. The article uses as an example Zooomr, an interesting service made more interesting by the fact that it allows authentication from a number of...