1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

It's Way Too Easy to Read Facebook's Source Code!

Discussion in 'BlackHat Lounge' started by The Scarlet Pimp, Dec 18, 2014.

  1. The Scarlet Pimp

    The Scarlet Pimp Senior Member

    Joined:
    Apr 2, 2008
    Messages:
    884
    Likes Received:
    3,324
    Occupation:
    Chair moistener.
    Location:
    Cyberspace
    this could be useful! :cow04:

    According to commenters on a Hacker News message board, Facebook's source code is incredibly easy to read, and they warn that it could ultimately cause trouble for the site and its users.

    The code was discovered when a digital security expert working for firm Sinthetic Labs was fixing a few bugs and Googled an error message. Through his search, he found a link that led to Pastebin, a service used to store and share text. What he found when he clicked was a ton of Facebook's names and commands, out in the open for anyone to find.

    "It's clear this output was intended to be seen by another engineer at Facebook, so posting it on Pastebin probably wasn't the smartest move," the security expert, Nathan Malcolm, wrote. "This person may have made other slip ups which could make them a target if an attacker sees an opportunity."

    Though this information wouldn't mean anything to the vast majority of Internet users, it would certainly prove helpful to individuals looking to wreak havoc with Facebook's operations behind the scenes. With a website as large as Facebook, there's bound to be some oversights about the information that's out there, but such a glaringly huge hole in its security is troubling - to say the least.

    https://news.ycombinator.com/item?id=8760714

    http://www.businessinsider.com/facebook-source-code-exposed-2014-12

    http://facecrooks.com/Internet-Safe...ay-Too-Easy-Read-Facebook’s-Source-Code.html/