Facebook Takes A Real Step Forward
In Improving Your Login Security
Facebook has introduced a security setting that allows you to choose to surf Facebook more securely… so be sure you don’t miss this!
If you remember the uproar not too long ago about the Firesheep exploit, which remains a huge ongoing problem, then you might recall me talking about the need for connecting to any of our important accounts using SSL/Encryption/HTTPS.
In a nutshell, SSL/Encryption/HTTPS is the method that protects your password as it moves through the internet from your computer to the server of the website you are accessing.
Banks are required by law to use when you connect to protect your personal data.
However, Facebook was not only not mandating it, but making it challenging to use this connection type to protect our logins.
The workaround was a FireFox plugin called HTTPS Everywhere, which I still highly recommend as it protects us in a lot of places besides just Facebook.
SSL/Encryption/HTTPS will not protect you from yourself if you click on infected content or enter your password on a page that does not display the green “safe”, a “padlock”, or “https://” in the address bar.
Fortunately, Facebook has introduced a way that you can enable HTTPS/SSL/encryption on your Facebook account without the use of a Firefox add-on. (Very important for Chrome users who were sitting-ducks.)
Steps To Enable Secure Connection on Your Facebook account:
From within Facebook… under the link that says “Account“, in the drop-down, select “Account Settings“.
Now, in the “Account Settings” page (for some reason re-titled as “My Account“), on the tab named “Settings“, you will see a section for “Account Security“. To the right of that there is a “Change” link that you want to click.
Once you open up the “Change” link… a number of security options become present, but what you’re looking for is the one that says: “Secure Browsing (https): Browse Facebook on a secure connection (https) whenever possible“
Put a check in that box… and then click save. (Facebook will most likely force you to log back in after that step.)
If you work by a non-password protected wireless connection, or ever check Facebook from places like libraries, airports, hotels, schools etc then this is a must. (Even to some degree cable connections are considered unprotected.)
The problem with the HTTPS/SSL/encryption within Facebook is that you may notice that Facebook is slightly slower using HTTPS. In addition, some Facebook features, including many third-party applications, are not currently supported in HTTPS. In English that means that a few custom tabs and custom applications will not load for you.
As soon as they feel they have majority of the bugs out, Facebook has indicated that they fully intend to make this a default setting.
However, I suggest you use it NOW.
Play Safe! Protect Your Business!
PS: This is the type of setting that you may need to assist your children in enabling.
Related Posts on This Topic:
Facebook Blog: A Continued Commitment to Security
AFMarCom: Protect your Facebook account from hackers!
The Facebook Setting You Should Change as Quickly as Possible
Secure Firefox With New HTTPS Everywhere Add-on