ebizQ's Business Agility Watch

Elizabeth Book

Facebook's Source Code Leaked

user-pic
By Elizabeth Book on August 14, 2007 1:57 PM 0 Vote 0 Votes

Stuff just hasn't been right the last few days with my very favorite social networking tool, Facebook. The recent growth of Facebook's application tools combined with talk of either an IPO or takeover bid from one of the 800-pound Internet gorillas have put pressure on the Facebook team and there is a palpable air of unease. Not to mention that two of my applications, including Trakzor and Scrabulous, have not been displaying notifications properly! P.S. Hey, Facebook, I love what you've done with Scrabulous! It's, well... Scrabulous!

But I doubt my personal solipsistic concern with notifications has anything to do with the top Facebook issue this week, though, which is that, reportedly, portions of the site's code were leaked via a blog, and it is unknown whether these exposed codes could have compromised personal user information. It has raised an alarm around the web-savvy world about the security of social networking sites.

Joshua Block, VP of North American Operations for Cyberoam, "the leading provider of identity-based UTM solutions," recently sent around some commentary addressing where additional security concerns may lie:

"The issues surrounding consumer privacy raise the need for education on safe practices when it comes to Web 2.0 and social networking applications. But what's more is that cross-scripting attacks and cross-site request forgeries are raising new vulnerabilities. Since Web 2.0 enables users to upload content, these sites can be left open to malicious content upload, leaving innocent visitors vulnerable to targeted attacks."

However, this may all be a tempest in a teapot. Brandee Barker from Facebook has left a comment on a TechCrunch article about this:

"A small fraction of the code that displays Facebook web pages was exposed to a small number of users due to a single misconfigured web server that was fixed immediately. It was not a security breach and did not compromise user data in any way. Because the code that was released only powers the Facebook user interface, it offers no useful insight into the inner workings of Facebook. The reprinting of this code violates several laws and we ask that people not distribute it further."

Hopefully, all will be better soon. Facebook is not something anyone wants compromised, as almost everyone I know has become somewhat dependent on it to a certain extent.

Categories:
More Articles:

« New ebizQ Blogs: 'Open Source Unleashed' and 'SaaS Week' | Main | Is ITtoolbox Really Worth $58.9 million? »

Leave a comment

Recent posts from our Blogs

ebizQ’s expert blog team covers a broad range of BPM, business integration, business analytics/monitoring, collaboration, content and related issues.

Peter Schooff

Peter Schooff is Contributing Editor at ebizQ, and manager of the ebizQ Forum. Contact him at pschooff@techtarget.com

Kaitlin Brunsden

Kaitlin Brunsden is assistant editor at ebizQ. She attended SUNY Purchase and graduated with a degree in Creative Writing and a minor in Photography. Prior to joining ebizQ, Kaitlin worked as a copy editor for The Submission and Italics Mine! magazines. She can be reached at kbrunsden@techtarget.com.

Subscribe

Subscribe in a reader Add to Google
Subscribe in NewsGator Online Add BPM in Action Blog to Newsburst from CNET News.com Subscribe in Bloglines

Recently Commented On

Tag Cloud

#sweettweets, #w2e, 2010 bi predictions, 7, AADI, ActionBaes, ActionBase, Active Endpoints, Adaptive Process Guidance, Advanced SOA, Agile, Agility, Amberpoint, amberpoint, amy lipton, Anatoly Belychook, andrew smith, Andrew Smith, apache, APG, Appian, Appian Anywhere, Application Architecture Development and Integration Summit, architecture, Ashesh Badani, Autonomy, b2b, BEI, Best Practices, BI, bi, BI Forum, BI in 2010, BI Podcast, BizFeed, BizSensors, BonitaSoft, BPM, bpm, BPM forum, BPM in Action, BPM podcast, BPM Podcast, bpm podcast, BPM ROI, BPMN, Brian Gentile, Bryan Cheung, business, Business Console, business intelligence, Buzz, CALIBRE Systems, CALIBRE systems, Calvin Fudge, case management, case management podcast, castiron acquistions ibm, CEO, CFO, Channel Organizations, China, Clay Richardson, Cloud, cloud, Cloud 9, Cloud BI, Cloud changing IT, Cloud Computing, cloud computing, Cloud Forum, Cloud Governance, Cloud Podcast, cloud podcast, Cloud podcast, collaboration, conference, Connie Moore, Consected, Content Management, content management, Corticon, Courion, craig le clair, CRM, crm, customer relationship management, Data Direct, data warehousing, David Gilmour, David Linthicum, David Ulevitch, Decision Management Solutions, Derek Miers, Dr. Alexander Samarin, Dr. Ivan Misner, Dr. K Mani Chandy, Dr. Rado Kotorov, DW, Dynamic Applications, dynamic case management, Dynamic SOA, e-discovery, EA, EAI, ebizq, ebizQ Forum, ebizq newsite, ebizQ Podcast, ECM, ecology, EDA, enterprise 2.0, Enterprise Architecture, enterprise irregulars, Eric Payeur, esb, Event Driven Architecture, Event Processing, Facebook, federal, fidelis security systems, Forrester, forrester, Forum, Fujitsu, Garth Gehlbach, Gartner, gartner, Gartner AADI, Gartner BPM Summit, gartner bpm summit, Gaurish Vijay Hattangadi, Global 360, Gmail, Gomez, Gooddata, Google, Google Buzz, Google DNS, Google vs. China, Gordon Van Huizen, governance, government, Government, Green Tech, Greg Goldfarb, Ground-Floor BPM, holistic bpm, Human Process Management, Hyland Software, Ian Gotts, IBM, ibm, IBM Rational, Imad Mouline, impact 2009, Information Builders, Infostreet, infosys podcast, innovation, Innovative Process Consulting, iqu, IT, IT Business Managment, IT productivity, iTKO, itko, JackBe, Jacob Ukelson, James Taylor, Jason Bloomberg, Jaspersoft, jboss, Jeff Kaplan, jignesh shah, Jim Rudden, John Crupi, John Michelsen, John Thompson, JP Morgenthal, Kalido, Kathy Long, Keith Swenson, Kickfire, Kognitio, Laserfiche, les yeamans, liferay, Lombardi, lotus, M-Dot, Mainframe, Malcolm Ross, management, Mani Chandy, Marc Benioff, mashups, master data management, Matthew W. Calkins, MDM, mdm, Merger, Metastorm, Micro Focus, microsoft, Microsoft, middleware, Miguel Valdes-Faura, Mike Kavis, Miko Matsumura, mobile crm, Most Popular Forums, mulesoft, MWD, MWD Advisors, Neil Ward-Dutton, Nenshad Bardoliwalla, Networking Like a Pro, newsfeed, Nimbus, Nimbus Partners, Norman Nie, one degree consulting, One Degree Consulting, online communities, OnStrategies, Open Source, Open Source BI, OpenDNS, Oracle, oracle, Ovum, partnerpedia, Persona-Based BPM, Peter Schooff, Phil Ayres, Pierre Fricke, podcast, Podcast, Portals. Ken Burns, Predictive Analytics, process design, process discovery, process governance, process improvement, process management, Process Management, Process Management Software, process modeling, process quality, process quality management, Progress, Progress buys Savvion, Progress Software, Pure Play, QinetiQ, Quality Assurance, redhat, Revolution Analytics, Ribbit, Rich Caplow, Rob Koplowitz, Roman Stanek, SaaS, SaaS BPM, Salesforce, Samir Gulati, sandbox, SAP, Savvion, Scott Hebner, Scott Menter, See Think Do, show, siamak farah, SOA, soa, SOA Forum, soa in action, SOA in Action, SOA in action, SOA in Action Virtual Conference, SOA success, SOA testing, SOA Validation, soap, Social BPM, social media, Social Media, social networking, software ag, Software AG, Soumadeep Sen, source code, SquareTwo Financial, Stephanie Quick, Stephen Chan, Steve Weissman, Sun, Swayne Hill, Sybase, Tarak Modi, taraneon, the Holly Group, ThinkStrategies, Thinkstrategies, Thomas Olbrich, Thomas Wayman, Tivoli, Tony Baer, travel, twitter, Twitter, vista, Wave, Web 2.0, web 2.0, web services, weblayers, windows, wozniak, xp, Yefim Natis, ZapThink, ZL Technologies,

Monthly Archives

Blogs

ADVERTISEMENT