Facebook insecure by design

Jay Ashworth jra at baylink.com
Sun Oct 23 23:04:27 UTC 2011

----- Original Message -----
> From: "Jeroen Massar" <jeroen at unfix.org>

> On 2011-10-23 19:43 , steve pirk [egrep] wrote:
> > Just about everything on Google pages is https these days, even
> > search if you enable it.
> (or just use https://encrypted.google.com which is available for quite
> some time already)

Note that Lauren Weinstein has just put out a Privacy Digest posting noting
that the referer behavior differs between https://encrypted.google.com and
https://www.google.com in a way that implies that, again, someone at Google
may not have gotten the Don't Be Evil memo...


-- jra
Jay R. Ashworth                  Baylink                       jra at baylink.com
Designer                     The Things I Think                       RFC 2100
Ashworth & Associates     http://baylink.pitas.com         2000 Land Rover DII
St Petersburg FL USA      http://photo.imageinc.us             +1 727 647 1274

More information about the NANOG mailing list