I’ve just learned that there’s been an update to Facebook’s security settings and it’s a good one.  However, you need to enable it as it’s not on by default.  Essentially, what it allows is encrypted traffic between your computer and the Facebook servers – thereby preventing your password from being captured by programs like FireSheep when you’re on an open WiFi network (coffeeshop, etc.).  To turn it on, go to the Account tab on your Facebook page and select Account Settings.  From there, go to the Account Security line in the list and click Change.  Once those settings are open, select the box next to Secure Browsing (https) and, if you want to keep track of who’s logging into your account, also enable When a new computer or mobile device logs into this account: Send me an email.  Don’t forget to click Save.

Security Changes on Facebook