The FireSheep Dilemma - "Encrypt Everything"?
The super-hype around FireSheep has died down a little now, and I think it's time to write about some of the things that stay behind in the wake of such a revelation.
If the release of FireSheep has done nothing else - it has certainly demonstrated to people that HTTP (encryption) is necessary well beyond the login page. Sounds easy enough right? Just "SSL the whole site"?
Actually, no. It's not that simple. So to quote my favorite British show and Jeremy Clarkson "...but there's a problem".
