nationwide interception of Facebook & webmail login credentials in Tunisia

Richard W.M. Jones rich at
Tue Jan 25 11:35:27 GMT 2011

JGC's blog has the technical details:

Moral of the story is to use https:// URLs to fetch the initial form
(ie.  The Firefox HTTPS-Everywhere extension
automates this completely ( -- no
thought or technical skills required.


Richard Jones
Red Hat

More information about the ukcrypto mailing list