Back in undergrad, before Facebook went HTTPS only, I would setup “free wifi” and steal people’s cookies for shits and giggles. Use the cookies to authenticate with FB and send random messages to people.
Looking back, I probably shouldn’t have been doing that. Definitely illegal.
They were just barely starting to get serious about legislating cyber security, so you were only maybe breaking some laws. I remember in the 90’s it was a lawless land. There were no laws against hacking, or at least none that anyone understood, and most sites had terrible security. I gained access to someone’s Hotmail once just by trying “anon/anon” as a user/pass combo. I also used to gain access to e-commerce customer databases just by googling certain SQL strings. I’d poke around and then send the webmaster an email letting them know their site was vulnerable.
Seems that way yeah. Naturally this sort of law is selectively enforced to nab whoever they have a problem with though so probably your sister doesn’t have the clout to bring you to justice.
Back in undergrad, before Facebook went HTTPS only, I would setup “free wifi” and steal people’s cookies for shits and giggles. Use the cookies to authenticate with FB and send random messages to people.
Looking back, I probably shouldn’t have been doing that. Definitely illegal.
They were just barely starting to get serious about legislating cyber security, so you were only maybe breaking some laws. I remember in the 90’s it was a lawless land. There were no laws against hacking, or at least none that anyone understood, and most sites had terrible security. I gained access to someone’s Hotmail once just by trying “anon/anon” as a user/pass combo. I also used to gain access to e-commerce customer databases just by googling certain SQL strings. I’d poke around and then send the webmaster an email letting them know their site was vulnerable.
There isn’t a law against hacking but I am sure there are other applicable laws when you do harm while hacking.
There is, it’s called CFAA and is absurdly broad. Pretty much any time you
it’s technically illegal.
So you’re telling me every time I stole my sister’s phone and took goofy selfies with it?? Straight to jail???
Yes, you horrible criminal monster.
( ⚈̥̥̥̥̥́⌢⚈̥̥̥̥̥̀)
Seems that way yeah. Naturally this sort of law is selectively enforced to nab whoever they have a problem with though so probably your sister doesn’t have the clout to bring you to justice.
That’s a really good point
Firefox had a plug in for it!!
Firesheep!
That plugin and others that came after, was one of the things that finally got websites to start using https on everything, not just the log in page.
It did! Even worked on WEP encrypted wifi!
https://xkcd.com/792/
I wonder what happened to him in March 1997
You know that stuff you post on lemmy is probably on databases everywhere for like, forever, right?
Who’s gonna press charges for the “hey mom, today I ate my poo” message they sent 10 years ago ?
No one is going to press charges about me fucking around with their FB accounts 10 years ago.