An exclusive gaming industry community targeted
to, and designed for Professionals, Businesses
and Students in the sectors and industries
of Gaming, New Media and the Web, all closely
related with it's Business and Industry.
A Rich content driven service including articles,
contributed discussion, news, reviews, networking, downloads,
and debate.
We strive to cater for cultural influencers,
technology decision makers, early adopters and business leaders in the gaming industry.
A medium to share your or contribute your ideas,
experiences, questions and point of view or network
with other colleagues here at iVirtua Community.
The digg despite 1000+ diggs was removed... http://digg.com/tech_news/Facebook_Source_Code_Leaked_Actual_PHP_Code
Quote:
Sender Information: Facebook Legal Sent by: [Private] [Private] USA
Recipient Information: [Private] Digg, Inc. USA
Sent via: email Re: Notice of Copyright Infringement
Greetings,
You are hereby notified that copies of source code taken from the www.facebook.comhttp://www.facebook.com website have been posted in the following locations:
The posting of these materials infringes the copyrights of Facebook, Inc., and we request that you immediately remove the materials from your site. I may be contacted at this e-mail address, or by telephone at [private]. I hereby state my good faith belief that the posting of this material is not authorized by the copyright owner, its agent or the law, and that the information contained in this notice is accurate. Under penalty of perjury, I am authorized to act on behalf of the copyright owner. If these materials are not expeditiously removed, we reserve the right to pursue all legal remedies available to us, including seeking damages and injunctive relief.
Signed, [private]
You may download the facebook homepage source code here: http://pastebin.com/pastebin.php?dl=f23937796
You may also view it here in PHP syntax colouring http://pastebin.com/f23937796
You can't do anything with this. This doesn't have any of the actual functions or anything. It's just making a bunch of calls. This is no big deal. I don't see why people would make it out to be that way, but its fun! However - This may only be a set of function calls, but when you think about it, you can get a view of the directory structure. For instance, the code gives clues about how to get to all the javascript and AJAX. In the comment section of the blog... search.php source code has been posted. There are many expeltives in the code, which to many are more interesting than the code inself... ...
Code:
// Holy shit, is this the cleanest fucking frontend file you've ever seen?! ubersearch%u28$_GET, $embedded=false, $template=true%u29;
...
I'm not sure anything can be done through a C&D to those hosting the code, some people have got copies of profilephp when it is unintionally shown to them.
Last edited by Editorial Team on Mon Aug 13, 2007 8:27 pm; edited 2 times in total
I wanted to clarify a few things in your story. Some ofFacebook’s source code was exposed to a small number of users due to abug on a single server that was misconfigured and then fixedimmediately. It was not a security breach and did not compromise userdata in any way. The reprinting of this code violates several laws andwe ask that people not distribute it further.Thanks to you and the TC readers for helping us out on this one.
Brandee Barker
Facebook
Interestingly, The Wrong Advice points out a blog entry which used to contain the source to profile.phpand a commenter who claims to have gotten photo.php. Others have postedsearch and groups code online. Facebook isn’t just hacked, it’s leakingsource code all the time.
The alleged source code contains some humorous comments, which I will list here:
Quote:
// FIXME?: is it sub-optimal to call this both in requests_get_cache_data and here?
Quote:
// make sure big tunas haven’t moved around
/
Quote:
/ Merman’s Admin profile always links to the Merman’s home
// Holy shit, is this the cleanest fucking frontend file you've ever seen?!
I’ve got the feeling that Facebook, just like MySpace, is a web 2.0site strung together with glue; glancing at the alleged code doesn’tmake me feel great about their infrastructure. They have hugewin32-api-esque functions likemultiget_fresh_notstale_hashed_network_with_orientation (i made thisup), a procedural, rather than object oriented structure, and no cleanabstractions or MVC scheme. At least they’re using smarty fortemplating, though….
index.php and photo.php are posted here, too http://opensc.ws/showthread.php?p=14387 a site which has the source code for many sites.
It seems quite a few 'web2.0' sites are cut & shut jobs and have some rather bad, exploitable problems due to being turned out in the quickest amount of time possible for the least overhead. lol I remember the days when...
Time to get making some fake facebook sites lol (and get sued This will allow people to see how facebook was made and may even lead to them making a site that competes with facebook. Such a shame they didn't leak the MySql database. Now that would be fun