Home > slashdot > Security Lessons Learned From the Diaspora Launch

Security Lessons Learned From the Diaspora Launch

September 23rd, 2010 09:52 admin Leave a comment Go to comments

patio11 writes “Diaspora, the privacy-respecting OSS social network, did a code release last week. Attention immediately focused on security. In fact the code base included several severe security bugs. This post walks through the code, showing what went wrong, and what it would let an attacker do to someone who was using Diaspora.” The developer who wrote the post ends with: “You might believe in the powers of OSS to gather experts (or at least folks who have shipped a Rails app, like myself) to Diaspora’s banner and ferret out all the issues. You might also believe in magic code-fixing fairies. Personally, I’d be praying for the fairies because if Diaspora is dependent on the OSS community their users are screwed.”

Source: Security Lessons Learned From the Diaspora Launch

Related Articles:

  1. Security Concerns Paramount After Early Reviews of Diaspora Code
  2. Facebook Competitor Diaspora Revealed
  3. First Community Release of Diaspora
  4. Diaspora On Schedule, One Month In
  5. Open-Source Social Network Diaspora Goes Live
blog comments powered by Disqus