Comments on: Facebook security exposes all your pictures. http://www.christophermercer.net/2007/11/28/facebook-security-exposes-all-your-pictures/ Commentary on the technology you use! Wed, 07 Jan 2009 06:53:46 +0000 http://wordpress.org/?v=2.1.3 By: Andrew http://www.christophermercer.net/2007/11/28/facebook-security-exposes-all-your-pictures/#comment-296 Andrew Wed, 28 Nov 2007 19:09:06 +0000 http://www.christophermercer.net/2007/11/28/facebook-security-exposes-all-your-pictures/#comment-296 I think that I read somewhere in the Facebook "Terms" that you can disable the cookies which ALWAYS track you. But you still need cookies to log into facebook. I think that I read somewhere in the Facebook “Terms” that you can disable the cookies which ALWAYS track you. But you still need cookies to log into facebook.

]]> By: Andrew http://www.christophermercer.net/2007/11/28/facebook-security-exposes-all-your-pictures/#comment-297 Andrew Wed, 28 Nov 2007 19:12:32 +0000 http://www.christophermercer.net/2007/11/28/facebook-security-exposes-all-your-pictures/#comment-297 This is what I was talking about: "By default, we use a persistent cookie that stores your login ID (but not your password) to make it easier for you to login when you come back to Facebook. You can remove or block this cookie using the settings in your browser if you want to disable this convenience feature. " I guess it isn't the same cookie that is always spying on you. This is what I was talking about:
“By default, we use a persistent cookie that stores your login ID (but not your password) to make it easier for you to login when you come back to Facebook. You can remove or block this cookie using the settings in your browser if you want to disable this convenience feature. ”

I guess it isn’t the same cookie that is always spying on you.

]]> By: john http://www.christophermercer.net/2007/11/28/facebook-security-exposes-all-your-pictures/#comment-384 john Wed, 20 Feb 2008 22:47:53 +0000 http://www.christophermercer.net/2007/11/28/facebook-security-exposes-all-your-pictures/#comment-384 actually, until the picture holes were closed about a week ago, anybody with a facebook account could see the pictures tagged of any other facebook user. it was NOT just limited to albums if i typed in: http://hs.facebook.com/photo.php?pid=2&op=1&view=all&subj=XXX&id=727650318 with XXXX being the target user id, i could see all picture of that person tagged by others. a similar url allows the same to be done with pictures tagged by that person them self. the hole was huge, and it just sat there for several years. i simply cannot understand why facebook did not find this sooner. i was in 8th grade when i found this hole myself, and i'm not even particularly bright. what is going on, facebook? actually, until the picture holes were closed about a week ago, anybody with a facebook account could see the pictures tagged of any other facebook user. it was NOT just limited to albums
if i typed in: http://hs.facebook.com/photo.php?pid=2&op=1&view=all&subj=XXX&id=727650318
with XXXX being the target user id, i could see all picture of that person tagged by others.
a similar url allows the same to be done with pictures tagged by that person them self.
the hole was huge, and it just sat there for several years. i simply cannot understand why facebook did not find this sooner.
i was in 8th grade when i found this hole myself, and i’m not even particularly bright.
what is going on, facebook?

]]>