Facebook Widget Installs Zango Spyware

BaCa writes "A malicious Facebook Widget actively spreading on the social networking site ultimately prompts users to install the infamous "Zango" adware/spyware. The tremendous success and lightning fast expansion of Facebook empowered the social networking giant with an impressive user base. Needless to say, in a digital world where web traffic equals money, such a user base attracts spammers, virus/spyware seeders, and other ethic-less online marketers like honey would attract flies."

Facebook evolved to fast

[plarsen]

The evolution of facebook took place to fast for the security to catch up.

Re:

[statusbar]

Evolution is the right term - it certainly could not have been 'Intelligent Design!'

jeffk

Re:

[Anonymous Coward]

It might as well be the same thing considering that the level of knowledge of computer security for the average user of Facebook and other similar sites is quite low (Facebook and Myspace are the new AOLs).

"like honey would attract flies"

[John Hasler]

There is something else that attracts flies which it more closely resembles...

Re:

[eulernet]

Flies are not attracted by honey, bees are !

Re:

[Yetihehe]

Flies are attracted to vinegar [xkcd.org]

Re:

[ben(zen)]

I knew someone was going to post this, since someone posted about flies :D

Re:

[Fuzzums]

...shit; I knew that one...

Re:

[Bill, Shooter of Bul]

Uhmmm vinigar [xkcd.com] ?

Re:

[Ethanol-fueled]

To quote Iron Maiden:
 
  "Flies around shit, bees around honey"
 
From the song "Holy Smoke".

Without exception...

[Anonymous Coward]

All the apps are terrible. Asides from their 'myspacesqueness', they also release your entire profile & friends to an unknown entity. Facebooks TOS is bad enough, but atleast you have a sense of who your dropping all thoughts of ownership or privacy too.

'caring' - imageogram

Re:

[Scrameustache]

All the apps are terrible.

Graffiti is fun, you get to draw things.
Pretty things, if you're good.

Re:

[jo42]

Graffiti is fun, you get to draw things.
Pretty things, if you're good.

Let me fix that for you:

Microsoft Paint is fun, you get to draw things.
Pretty things, if you're good.

Re:

[Scrameustache]

Graffiti is fun, you get to draw things.
Pretty things, if you're good.

Let me fix that for you:

Microsoft Paint is fun, you get to draw things.
Pretty things, if you're good.

It's not paint, it's a simple round brush, but it has transparencies.
AND YOU GET TO SHOW OFF, because the whole point is that it's a social thing. Which, I shouldn't be surprised, is not readily understood by the /. crowd.

Obligatory

[Weaselmancer]

...such a user base attracts spammers, virus/spyware seeders, and other ethic-less online marketers like honey would attract flies.

http://xkcd.com/357/ [xkcd.com]

Re:

[Doshin]

I'm glad you posted that, it means i didn't have to.

Wouldn't install for me

[bconway]

I tried to run it from the Facebook link in my sandbox, it wouldn't take. Looks like admin privileges are a requirement. I guess it's not surprising people aren't following the basic security steps that (even) Microsoft recommends.

Re:

[slyn]

That's one of the major problems with Window's. The default security settings of a Microsoft product aren't even what Microsoft recommends.

It's times like this I'm glad I have a Mac, as I can continue to stalk people that barely know me without risk of getting a virus. =P

Oh, for god's sake

[Bozdune]

Windows supposedly has the greatest security model in the world, but I don't understand it, I've never understood it, and I've never met anyone who could explain it to me. Occasionally there's ordinary files that aren't open but that I can't modify AND I HAVE NO CLUE WHY THIS HAPPENS. Some hidden attribute, God knows what it is. Etcetera.

Vista proves what I've always suspected: even Microsoft can't set up a secure, usable Windows system without pissing me off on a continual basis with warnings and prompt

Re:

[ettlz]

Windows supposedly has the greatest security model in the world

No it doesn't, it has ACLs.

Re:

[pembo13]

That is how they have been trained for years. Part of the TCO i guess.

Re:

[urcreepyneighbor]

Typical SNS user: What's a sandbox? ... ooh! Free 3D emoticons! wee!

why are all facebook widgets so retarded?

[Anonymous Coward]

Facebook widgets are the new "I know someone who likes you" note-passing. Apps like "superpoke", "vampire bite", and now "secret crush"?

Social networking sites are like second grade classrooms.

Re:why are all facebook widgets so retarded?

[0100010001010011]

They let the highschoolers and world in.

The reason it's like a second grade class room is because majority of users are of that mentality now. Just look at most of the "groups" now. Maybe they existed and I didn't notice before but all my groups were rather sane, now they're "IF U JOIN THIS GRUP WORLD PEACE WILL START!"

I've been on facebook since the beginning. And every minor improvement seemed to rock. They added photos. I was able to share photos in one place with most of my friends. I could invite friends over to a party with out having to e-mail every one. Yes, sometimes in college you don't get the opportunity to SEE all your friends every day.

And then the flood gates opened. The Developer thread was flooded with "HEAY I LOVE FACEBOOK CAN U MKE IT SO MUSIC PLAYS LIKE MYSPACE." People would kindly remind them that the whole thread was FOR developers. People could make 3rd party apps and it seemed pretty good because all the 3rd party apps were external. Then came the day that they let those 3rd party apps on everyones website. Then it just went to hell.

Thankfully Grease Monkey and scripts like:
http://userscripts.org/scripts/show/11992 [userscripts.org]
This exist.

Which is why I maintain 2 accounts. My 'professional' account. Uses my work address. All my college friends and people I know well. You can't find it anywhere. You can't search for it by name. Even if you know me I have to add you. Then my "Hi I just met you at the bar and I'm going to add you" account. Basic info. Searchable. Etc.

Too late

[doofusclam]

Facebook have already blocked it, days ago...

Re:

[phrostie]

that should keep it from spreading further, but the people already infected still have a problem.

Re:

[doofusclam]

You're correct, but the writeup uses current tense, thus giving the impression this is still spreading when it isn't.

Re:Too late

[kebes]

It's good the Facebook is blocking that app, but this points to a deeper problem with Facebook's implementation of third-party applications. This is just the beginning of Facebook being exploited by scammers.

Whoever injected that spyware application will no doubt create a new developer account, and upload some variant of "Secret Crush". Blocking a particular application or a particular developer account is a short-term solution. I can only guess that more and more people are going to exploit Facebook apps for adware, spyware, phishing, identity theft, etc. Facebook will then be playing yet another game of "Internet whack-a-mole" where they try to block applications based on signatures, block developers based on IP address, and so on (with usual countermeasures of automated code variation, proxies, etc.). As we've seen from spam, viruses, spyware, and phishing, such games reach a stalemate where a certain fraction of users are becoming victims at any given time (typically the less savvy users, I suppose).

Personally I think Facebook should do a better job making the risks of third-party applications clear. The little "confirm that you want this application" question has already become so routine for most users that it means nothing to them. Moreover, the tight integration of third-party apps into the Facebook environment, though visually pleasing, leads most users to believe that the applications are written by and endorsed by Facebook. In fact, the code runs on third-party servers and those third-parties have access to profile data once you accept the app. Most Facebook users are surprised when you tell them this. And it's not always easy to tell who actually wrote a given application.

I think we all saw this coming, and I'm surprised Facebook didn't put in more safeguards to curtail the use of the app framework for spamming, phishing, and social engineering.

Re:

[Tsiangkun]

Interesting. I was actually blabbing on a different forum the other day on the fame of being the first to exploit apple users on a widescale, and pondering the use of facebook to social engineer the spreading. It seemed easier than attacking MacOS, just exploit the users instead of the software.

Re:

[Anonymous Coward]

I remember when Firefox faced similar criticism for its extension architecture. Facebook should attempt to create a secure repository for its applications. The Firefox problem is similar because its extensions, like Facebook applications, have the potential to convince someone to download a malicious script, and can collect and transmit data. Let people install any application, but create a reasonably safe place to get, rate, and upload the applications. Ultimately, it's a personal responsibility to ensure

The widget is "Secret Crush" (saving you a click)

[stickyc]

Quick summary:

The widget in question (according to TFA) is "Secret Crush". The app asks you to complete several steps, including signing up 5 of your friends and installing a tray applet (containing the "infamous "Zango" adware/spyware") from Zango's site.

Re:The widget is "Secret Crush" (saving you a clic

[Anonymous Coward]

According to "blog.zango.com" (found by a google search "facebook widget zango") the widget is now called "My Admirer".
Facebook is going to hell in a handbasket. They should never have opened to "anyone with an email address"; that's just asking for trouble. At least they're making money, right?

Re:

[moezaly]

At least they're making money, right?

But for how long?

intended consequences

[fermion]

In the same way that MS created IE so that third parties could gain control of your computer to generate profits(think of pop ups that were not disabled until XP SP 2, a continuing lack of Flash blocking, even though images can be blocked) I wonder if facebook has somehow facilitated this spyware. Clearly, if facebook gets a cut of revenue generated by the spyware, this would result in some large coin.

Am I the only person left?

[Joce640k]

Am I the only person left who doesn't know what facebook is?

From reading the press it seems to be some sort of web site where you upload all your private stuff for other people to see. I've never seen it though.

Re:

[Nimey]

Are you this guy?

http://www.theonion.com/content/node/28694 [theonion.com]

Don't feel bad, I don't get it either.

[maillemaker]

If you aren't the last person, you're not by much.

I only went and checked it out a few weeks ago, after not being able to stand all the hype any longer.

I can't figure out what it's for. I've said as much here on Slasdot before, and was told that basically it's a mechanism to find/keep in touch with friends.

It's kind of like "classmates.com", except it's free.

I went and tried it out. First of all, they want you to use your real name. Like you noted, your "private stuff". Myself, I am seeking to /limit/ my online exposure, not enhance it, so of course I created a fake account.

Once you have an account, there is very little to actually /do/, that I can see. You are supposed to join "networks", but there weren't any that seemed interesting to me.

I don't have any long lost friends to look up, and the couple of names I did plug in didn't get any hits. All of the people currently in my life that I want to keep up with I currently keep up with by other means, like email, telephone, or face-to-face.

I still don't understand the appeal of these "myspace" and "facebook" social web sites. What they really look like to me is an html-based web page creation utility, that allows people to create a personal web page without having to pay a hosting fee.

Since most ISPs these days give you a 5MB or so space where you can make a little web page if you want, I don't know why people don't just use that, except I guess they don't know how to make web pages. So MySpace, Facebook, etc., are like mini web-page software wizards to help you make a web page. Since all the web pages are centralized on one "server", they are thus also easily searchable / linkable.

If I wanted a web page to post things about myself, I'd go register a domain and some web hosting services and make one. I guess Facebook and MySpace are for people who don't want to go to the trouble.

Re:Don't feel bad, I don't get it either.

[uglyduckling]

I created a fake account... I don't have any long lost friends to look up, and the couple of names I did plug in didn't get any hits.

Hmmm... well, if you used a fake name, then maybe all your former friends did too. The site only works if people use their real names. Facebook is exactly that for most people - kind of like classmates.com and Friends Reunited. It enables the maintenance of casual friendships without having to write/phone explicitly.

If you think about it, this is how most casual friendships work - I don't specifially talk to John down the hall at work to catch up, I might bump into him in the coffee room, see he's got a new shirt, find out it was his birthday yesterday etc. etc.. Just seeing and bumping into someone lets you stay in touch without it being an effort. Social networking sites let you do this. Email works for people you really want to stay in touch with, and chat forums work for a bunch of people who want to discuss the same topic(s). On Facebook I can find out that Fred who I went to school with is into a particular band too, and if there's a couple of other guys from school 10 years ago maybe a group of us could go to a gig. Nothing serious, nothing important, but if you like to stay loosely in touch with a whole bunch of people then it works really well.

Explicit maintenance of friendship...

[maillemaker]

>Hmmm... well, if you used a fake name, then maybe all your former friends did too.
>The site only works if people use their real names.

I really don't have any former friends. There is one guy I've lost track of over the years, but he never kept a phone (his girlfriends kept calling getting him in trouble with his live-in girlfriend) and he hated computers so I doubt he's on the web anyway. But other than him, I don't have any long-lost buddies I'm trying to keep track of. I never had friends in hig

Re:Explicit maintenance of friendship...

[EveLibertine]

If you are worthy enough of friendship than I will make the effort to maintain that friendship explicitly.

Well, what the poster before you was trying to say was that social networking sites attempt to lower the amount of effort. You mention an effort, but the idea is that in the glorious future as we develop these tools there will be virtually no effort required. Of course, nothing out there now has fully succeeded, but they are trying. Also, nobody cares about the nonsensical trivia that people enter into their profiles on these sites. It does, however, give that lady at the front desk at your work something to do when there's nobody moving through the lobby.

Let me give you an example of a "casual friend". You know that guy at the bar who tells you about his band, and it sounds cool, but you don't want to get his phone number or give out yours just so you can check out their next show. The solution here is he can just tell you what his bands myspace is, or facebook, or whatever, and you can get the info there. No need for feigned friendships when you find out his band sucks.

Re:

[budgenator]

Ultimately I figure I'm just anti-social and consequently the thrill of accumulating lots of "casual friends" just holds very little appeal to me. I'm also one of those people who never asks strangers, "How are you doing?" because I don't really care how some stranger is doing, and I know it's just a dumb little thing that people say to each other as a greeting and most people don't care how you are doing, either.
Sometimes if you just pretend that you like people long enough, you actually will, then you fin

Re:

[EggyToast]

It's not antisocial, cos I feel the same way about these websites. They're just a way to hunt for gossip on your "friends." There's a reason they all display "relationship status" and crap like that, as well as "current favorite band" and other information that, if it was actually important, it would come up in conversation with your real friends.

Thankfully, for those who prefer to know a lot of people without actually having to spend time with those people getting to know them, social networking sites

Re:

[maillemaker]

>Then why the fuck do you need to comment? Facebook obviously isn't for you.

Uh, because that's what internet BBS forums are /for/? Because the GP asked what Facebook was all about? Honestly, did you read any of the preceding?

>Unless, I dare say... You're a bit lonely?

Hah. Look, I'm married and I have a wonderful daughter. This in itself would be fulfilling. But in addition I participate in medieval re-enactment and consequently hang out with hundreds of the same group of folks once a month, and I

Re:

[budgenator]

If you use your real name wouldn't she know who to sue for child support later on?

I agree!

[maillemaker]

>Staying in touch with a bunch of people who you do not care very much for their
>center of interest is one of the most worthless activity i've ever heard of.

My sentiments exactly. It also smacks of voyeurism to me. Maybe that is part of the appeal?

Re:

[uglyduckling]

My sentiments exactly. It also smacks of voyeurism to me. Maybe that is part of the appeal?

I think there is an element of that for some people. I suppose the flipside of voyeurism is genuine but casual interest. When I see people I was once close to have got married, had kids, got the job I knew they were dreaming of when we were 17 it gives me a warm fuzzy feeling. If that sort of thing doesn't bother you then I can see why you wouldn't be interested. Personally I find I don't have the time or perhap

Re:

[maillemaker]

>Personally I find I don't have the time or perhaps the willingness to stay up to date with the
>100 or so people who I have probably been fairly good friends with in the past 15 years

You see, I think that really sums up the problem for me, and explains why social networking sites don't appeal to me. I don't think I've had but perhaps 10 people I've been fairly good friends with in the past 15 years, and I keep in regular touch with all but 2 of them. The idea of having 100 or so fairly good friends

Re:

[phyrz]

through primary school, high school, university and 5 or 6 jobs ive put together a network of around 200 people. often enough ill head out to a gig on the weekend and find out beforehand a few facebookers i know are going and ill go out of the way to have a beer or two with them while im out.

definitely worth keeping in touch with people outside your core group of friends, even if its just to build up business opportunities. each to their own though i suppose.

Re:

[tapo]

Actually, the purpose of Facebook is to not only find friends, but to allow you to communicate with them more easily.

Facebook's core feature is the 'news feed', which basically shows what your friends have been doing on facebook, or what they've set their status to be, a little like twitter. Here's a snippet from mine:

Guy A started playing a game: Mass Effect
Girl A misses Guy A.
Girl B left the group The American Sandwich Society.
Guy B and Guy C are now friends.
Girl C is no longer listed as single.

It also al

Re:

[stuporglue]

Actually, the purpose of Facebook is to not only find friends, but to allow you to communicate with them more easily.

Sorry, no. The purpose of Facebook is to make money.

Re:

[Ma8thew]

So if someone where to ask what Slashdot was, I shouldn't say 'it's a technology site, centred around discussion of current news', but instead, 'it's to make money for Sourceforge Inc.'. Yeah, that's a lot more clear.

Check out my post here...

[maillemaker]

http://slashdot.org/comments.pl?sid=407050&cid=21926308 [slashdot.org]

Re:

[bazorg]

I went and tried it out.[...] Once you have an account, there is very little to actually /do/, that I can see.

the way I see it there is all sort of game-like application you can use with your friends. most are about "make believe" that you did something with them. It's good light-hearted fun. now if you'll excuse me I'm just getting my baseball and will be off your lawn in a second.

Re:

[fullgandoo]

I suppose the answer in the words of my generation would be "generation gap". Which seems to be occurring multiple times within a genration nowdays.

Generation gap

[maillemaker]

You know, youth may actually have a lot to do with it.

After reading the trivial things you get to keep track of from the post just above yours (I.E., guy B leaves the American Sandwich Society), I gather that this sort of things gives you very trivial data about people - things you just don't really need to know or keep track of.

When I was younger I had time for such dalliances. But as an adult with a 50+ hour work week, a wife and a child, a house, cars, and the rare time out for hobbies and gaming, I jus

Re:

[aj50]

Originally Facebook was designed to appeal to university students (I believe you had to have a uni e-mail address to sign up) and for this target market, it works very well. When you start university, you quickly meet lots of new people who you might not bump into again and whose names you're trying to remember.

One of it's most useful feature is that you can search through people at your uni who've signed up, you can search for people who are doing the same course as you, you can get enough background infor

Re:

[Scrameustache]

I can't figure out what it's for.

It's for organizing parties.

Since most ISPs these days give you a 5MB or so space where you can make a little web page if you want, I don't know why people don't just use that, except I guess they don't know how to make web pages.

Because the point is the social network.

Anecdote: So this girl I know in meatspace asks me if I'm coming to her party, I don't know what party she meant, we discuss the fact that I'm not in her facebook friends, the following day we digitize our friendship, and I finally see the event page (limited to her friends) with all the relevant details and a handy "coming/not/maybe" RSVP system.
You get to see who's going to the party, who isn't, and the whole thing is done with a nice c

Re:

[Profane MuthaFucka]

OH MY GOD! I was just masturbating and thinking about you, and then BONGO there's one of your posts. How the fuck are you doing old buddy?

Re:

[maillemaker]

>Anecdote: So this girl I know in meatspace asks me if I'm coming to her party, I don't know what party she meant...

This is where I would pull out a pencil and get the details of when and where the party was. I suppose it is marginally easier to say, "Oh, go check out my facebook page for the details" so you don't have to write anything down, but it doesn't seem to be /that/ huge of a thing to me

Re:

[Scrameustache]

>Anecdote: So this girl I know in meatspace asks me if I'm coming to her party, I don't know what party she meant...

This is where I would pull out a pencil and get the details of when and where the party was. I suppose it is marginally easier to say, "Oh, go check out my facebook page for the details" so you don't have to write anything down, but it doesn't seem to be /that/ huge of a thing to me

Well we didn't have to stop the social event to find pen, paper, and to write things down, have her spell it out over the music, etc.
It seriously was a huge improvement over the regular party planning procedure.

Re:

[hcdejong]

Well, you and me both. I never got the appeal of those 'social networking' sites.

(clicks http://images.slashdot.org/neutral.gif [slashdot.org])

Re:

[flyingfsck]

Don't worry, there are at least two of us left.

I don't do facebook, youtube or any RSS. I am too paranoid and just don't trust 'pushy' media.

Re:

[Albert Sandberg]

Slow down cowboy! I'm slowly grasping how this blog thing works!

Re:

[kcbanner]

..so the sarcasm truck drove over the guy, he got up to see what hit him and it backed up over him again. It then drove back over him and sped off, and he was left there with a confused look on his face not knowing what hit him.

Tag issues

[lpangelrob]

While the tag "shitattractsflies" is somewhat amusing when describing (as an aside, Facebook started exclusively on college campuses some 5 years ago, now), I think the more insightful tag would be "peopleattractshit".

Re:

[Eli Gottlieb]

Facebook started exclusively on college campuses some 5 years ago, now

I miss those days.

Re:

[lpangelrob]

Right. The missing noun is "Facebook", as in, "when describing Facebook".

And yes, I used preview. I think programming in PHP just greatly diminished my grammar this morning.

Personal responsibility -- don't install untrusted

[compumike]

Don't voluntarily install untrusted executable files! Period! There is no vulnerability without the user thinking that they want what's inside.

Facebook has nothing to do with the existence of this vulnerability. In fact, the browser-based app model explicitly is nice because of the sandbox effect, where such apps are very limited in what they can touch on your local machine. But when you convince people to break out of that sandbox by installing a local app, you can certainly kiss your computer goodbye.

--
Our microcontroller kit. Your gcc compiler. Learn digital electronics. [nerdkits.com]

scoble

[chris_mahan]

Well, at least Scoble is safe.

Re:

[WK2]

Yeah. We don't have to worry about anyone touching that. What is Scoble?

This could never happen here...

[Yaztromo]

Needless to say, in a digital world where web traffic equals money, such a user base attracts spammers, virus/spyware seeders, and other ethic-less online marketers like honey would attract flies.

It's a good thing that these "spammers, virus/spyware seeders, and other ethic-less online marketers" would ever take advantage of of the /. user base!

Oh wait... [slashdot.org]

Yaz.

firefox extension + script for facebook users

[Anonymous Coward]

People with Firefox can install the "stylish" extension (for controlling CSS), and, along with the "De-MySpacify" script, block all appearances of facebook apps in their browser. ( http://userstyles.org/styles/3681 [userstyles.org] ). It's about 15 lines long and incredibly helpful (not to mention aptly-named).

There's XSS-like vulnerabilities too

[Tojo-Mojo]

The Profile Hug [facebook.com] application embeds an iframe in its request notification that sometimes (but not always) redirects the user to an external site that then shows facebook in an iframe along with advertisements. Facebook has yet to do anything about this app (though I have notified them).

For those who don't know how Facebook works, basically when one person installs an app, the app will pester them to request their friends also install it. A friend of mine installed it, which sent me a request that appears o

Re:

[prostoalex]

Can you be a bit more specific? A Facebook app can choose to run FBML (display data passed back to Facebook and displayed) or an iframe, where you see Facebook navigation, but the rest of the page is iframe loaded from developer's server.

What you are describing is a bit different, and I just want to make sure I understand it right.

Re:

[keot]

For those who don't know how Facebook works, basically when one person installs an app, the app will pester them to request their friends also install it.

You need to speak with your friends.
When you install a Facebook application there is a choice at the end of the process whether or not to spam all your friends with an invite to use the application. You can't avoid Facebook itself placing a 'Person installed application Foo' into your friend's news-feeds. However you can set preferences on your own news-feed to avoid such items appearing, using the 'x' button beside the item.

I'm on a Mac, so wasn't affected.. but..

[osssmkatz]

It's worse than an app.. it's actually an ad. It may be an actual app. However, it advertises itself as a banner and says you have 11 messages waiting. Click it, and it says they delete so many messages a day, and you are down to 3. I figured out pretty quickly when they asked for my gender (which they should have already if they were really a Facebook app) that it was fake.. besides the fact, it used images.. but there was no border around the banner, and no word "Advertisement". Facebook needs to correct

FUD alert

[cavebison]

I'm afraid this is all rumour and innuendo according to Zango:

http://blog.zango.com/PermaLink,guid,94c0e12c-c69e-484f-81b8-b8b58953d71b.aspx [zango.com]
(summary: users are clearly told they are downloading something, so what's the problem?)

And try to keep up with the times, /. Don't you know: "Zango Advisory: As of this posting, the Zango security team has observed that the Secret Crush widget on Facebook is now called the "My Admirer" widget."

ethicless?

[uepuejq]

why is this bias being injected into submissions? 'online marketers' aren't necessarily 'ethic-less,' even if their ethical standpoints don't necessarily coincide with their own. i would guess they do share ethical ideas with everybody using slashdot, though. they certainly utilize facebook to spread their ideals, which is what a lot of facebook users do on a regular basis (and what every living, thinking, non-hermit person who has any effect on the world does, consciously or unconsciously). this idea t

Re:

[uepuejq]

http://www.php.net/nl2br [php.net]. seriously, it's 2008. and what's up with the 2 minute+ wait between posting? i don't even see an option for editing my post (i haven't looked very hard, so if somebody wants to just chime in if that option exists i'll be really grateful for saving me the time i might have to spend finding it, what a pointless pursuit that would be]). for a site written by people capable of understanding how to...create a site, this one sure is a pain in the ass to use.

Really?

[thexile]

Why limit your social life by posting as an ac?

Re:Ethic-less?

[vaz01]

You must use facebook a lot.

Re:

[jrp2]

'I guess "unetical" is too big a word for the average facebook user.'

Perhaps they would use the word "unethical" though.

Re:

[XnavxeMiyyep]

Nope. Unethical is an even BIGGER word!

Re:

[ben(zen)]

I don't currently have mod points :( +1 funny/hilarious

Re:Ethic-less?

[Wordsmith]

Or a slashdot poster.

Re:What is "Facebook"?

[STrinity]

Think MySpace only it looks like a corporate website c.1999 instead of a Geocities page c.1996. Oh, and with pointless activities.

Re:

[maillemaker]

Basically, what I have concluded is that these "social" websites are basically a free, web-based applications that let people create small personal web pages.

Since the web pages are on a centralized "server", they are easily indexable and searchable, which is nifty if you want to do things like go looking for long-lost friends or people who share similar interests.

Myself, I don't get the appeal.

Re:

[qopax]

So, an internet on the internet?

Re:

[maillemaker]

>So, an internet on the internet?

I guess so.

Steve

Re:

[TobyWong]

It benefits people with active social lives. Not surprising then that so many slashdotters seem to be baffled by it.

You can choose to be insulted by this or not but it's the truth.

Sounds like just the opposite...

[maillemaker]

>It benefits people with active social lives. Not surprising then that so many slashdotters seem to be baffled by it.

It sounds just the opposite though. People don't seem to be using Facebook to socialize, they use it to digitally eavesdrop on the mundanities of people they no longer keep up with very well.

Except for the examples provided where people use it as a meant so schedule physical meetings, it doesn't sound like real, honest-to-goodness socializing, it sounds like a substitute for it.

Re:

[TobyWong]

It's possible that the people I know are an anomaly when it comes to facebook usage but they all use it for socializing, co-ordinating events, etc. Any digital eavesdropping that occurs is more or less peripheral. In other words, they may eavesdrop on old "dormant" friends but they definitely use it for a lot more than that with current, "active" friends.

Re:

[bigstrat2003]

First of all, stupidity doesn't mean you deserve what you get. Second of all, using Windows has nothing to do with it. All the smart Windows users are blissfully uninfected, the problem is stupidity, not OS choice.

Re:

[Bartab]

First of all, stupidity doesn't mean you deserve what you get.

Yes it does. It's called life, and we as a society should stop putting so much futile effort into working against it.

Re:

[c6gunner]

Thank you. I hope you get modded +5 insightful.

Re:

[bigstrat2003]

No, it doesn't. We may not be able to prevent the consequences of stupidity (nor should we try to baby-sit people in that fashion), but we certainly shouldn't say that stupid people deserve what they get, feeling all smug. We should try to educate them, not finger-point and laugh.

Re:

[History's Coming To]

As is so often qouted on /., "You can't con an honest man"

You could have a website, full control over ALL the html, the ability to run php/mysql stuff, links to anything you want, a neat little script to let your friends leave comments....it'll cost you very little, I pay £60/yr for one of my websites and I get backups, halon fire suppression (which I couldn't even legally have in the UK), superb support etc etc

OR....you could get a free but very limited version of the same plus adverts, spam

Re:

[Viceroy Potatohead]

I took the advice of your SIG.

You shifted the goalposts on that one. Being smug about stupidity-with-consequences or laughing at it, is an entirely different issue than what you responded to. I agree there is no reason to feel superior or gain a sense of schadenfreude (sp?). On the whole, stupidity is kind of sad, and we all behave stupidly sometimes. However, saying stupidity deserves its results is a tautology, to my mind. If stupidity didn't have harmful results, then I don't see how a behaviour c

Re:

[bigstrat2003]

I took the advice of your SIG.

Thank you. I sincerely mean that.

I don't disagree that stupidity has harmful effects, my issue is with saying "stupid people deserve what they get". I think that saying things like that is promoting an attitude of smugness and I'm-better-than-you. Going by that logic, I really shouldn't try to educate stupid people, because they deserve the consequences of their stupid actions. Should we shield people from dumb mistakes? Of course not, we don't want to live in that kind of nanny-society. However, that do

Re:

[Stewie241]

I was quite unaware of that fact, but nonetheless... the issue here isn't facebook per se... it is the fact that any third party can write an application that gets all your data, and nobody really understands the implications of this...

Ian