Secure Web Applications

Jeff Atwood‘s latest post “Breaking the Web’s Cookie Jar“, covers a plugin called Firesheep; “A Firefox extension that demonstrates HTTP session hijacking attacks” (taken from the website). It’s a great example of why all web applications that process any form of information should be secured using HTTPS (yes, that includes anywhere that has a login form!)