Facebook Security: HTTPS Option
Jan 27, 2011 | 3:09 pm
#1
Original Poster
Join Date: Jul 2006
Location: California
Programs: AA EXP, lowly UA 1K; Hyatt Diamond, SPG Gold, Hilton Gold; National EC, Hertz PC
Posts: 2,227
Facebook Security: HTTPS Option
http://gawker.com/5744229/the-facebo...ly-as-possible
Facebook today is rolling out an option for a user to be signed into their entire session via a HTTPS connection. It is an option that you have to enable under Account->Account Settings->Account Security. I would highly recommend everyone enable this feature, especially if you travel frequently and are on open/public wifi networks. The setting should be rolled out to all users by the end of the day.
It sounds like this will be the default setting in a few weeks.
Facebook today is rolling out an option for a user to be signed into their entire session via a HTTPS connection. It is an option that you have to enable under Account->Account Settings->Account Security. I would highly recommend everyone enable this feature, especially if you travel frequently and are on open/public wifi networks. The setting should be rolled out to all users by the end of the day.
It sounds like this will be the default setting in a few weeks.
Jan 30, 2011 | 4:03 pm
#6
In Memoriam
Join Date: Feb 2000
Location: Easton, CT, USA
Programs: ua prem exec, Former hilton diamond
Posts: 31,801
I went looking for it on Thursday and it was there. It also allows you to set an alert anytime another machine logs into your account so you can know if somebody else is accessing it.
In case anybody is wondering, I've seen no decrease in speed because of the encryption.
In case anybody is wondering, I've seen no decrease in speed because of the encryption.
Jan 30, 2011 | 4:55 pm
#7
FlyerTalk Evangelist
Join Date: Nov 2002
Location: ORD
Posts: 14,771
You know, I've always heard SSL will slow things down but never experienced it. I suspect that SSL connections used to slow things down but that server hardware has gotten fast enough to deal with it. Of course, if you're Facebook and have a zillion incoming SSL connection requests at a time, that might be another story...
Jan 30, 2011 | 5:17 pm
#8
In Memoriam
Join Date: Feb 2000
Location: Easton, CT, USA
Programs: ua prem exec, Former hilton diamond
Posts: 31,801
I think speed may have been an issue when a 256k connection was considered high speed and nobody had it, but now when connections are ten or twenty times faster, I think any difference is so small it can't be noticed.
Feb 1, 2011 | 1:15 pm
#14
Join Date: Dec 2010
Location: ICN
Posts: 167
http://gawker.com/5744229/the-facebo...ly-as-possible
Facebook today is rolling out an option for a user to be signed into their entire session via a HTTPS connection. It is an option that you have to enable under Account->Account Settings->Account Security. I would highly recommend everyone enable this feature, especially if you travel frequently and are on open/public wifi networks. The setting should be rolled out to all users by the end of the day.
It sounds like this will be the default setting in a few weeks.
Facebook today is rolling out an option for a user to be signed into their entire session via a HTTPS connection. It is an option that you have to enable under Account->Account Settings->Account Security. I would highly recommend everyone enable this feature, especially if you travel frequently and are on open/public wifi networks. The setting should be rolled out to all users by the end of the day.
It sounds like this will be the default setting in a few weeks.
I did the steps, then logged out. It redirected me to the secure login page. Should work if you manually type in the url with https also.
Feb 1, 2011 | 1:20 pm
#15
Suspended
Join Date: Jan 2001
Location: ORD / DUB / LHR
Programs: UA 1K MM; BA Silver; Marriott Plat
Posts: 8,240
It's actually a bigger problem than before, because the processing power required increases as the link speeds increase. The move to more complex keys also adds further processing requirements.Most big web-based systems have moved to hardware that offloads the SSL acceleration - either customized in-house solutions or industry standard solutions like this: http://www.f5.com/products/big-ip/ssl-acceleration.html