* Use a temp file instead of dealing with popen/threading crap. * Removed mozpopen XPCOM module. * Added C libfiresheep and jsctypes bindings to handle non-root tasks. * Support one capture session per browser window. * Cleaned up tons of other stuff.
* This handler debunks a quite bad example of how to "protect" your site from Firesheep's sidejacking ability. * Details on the supposed "fix": http://akfpartners.com/techblog/2010/11/20/slaying-firesheep/
* This will make Firesheep requests of Facebook, Twitter, and Google encrypted, as to prevent the additional leaking of information. * Should also break how Firesheperd and Blacksheep currently detect Firesheep based on Facebook requests (though it's still certainly possible to detect and mess with it)
As far as I know, these sites are no longer insecure.