Facebook hosted Security @Scale 2014 at its headquarters in Menlo Park, Calif., Oct. 29, and production engineer Fernanda Weiden recapped the proceedings in a post on the Facebook engineering blog, which also included videos of the event’s presentations.
Should tech companies stick with the practice of individual code ownership, where one engineer is responsible for his or her code throughout its usage? Facebook software engineer Pierre Raynaud-Richard explained why the process is not used at the social network in a post on its engineering blog.
Facebook continued its focus on security with two announcements Wednesday related to its white-hat program: The social network is doubling the bounties that it will pay out to researchers who discover white-hat bugs its ads code, and it released a “Bounty Hunter’s Guide” containing detailed instructions on how to submit those bugs.
Facebook engineers have solved a long-term mobile bugging issue in iOS, reducing its crash rate by more than 50 percent. According to the company’s engineering blog, one of mobile’s top crashes was in the Apple Core Data system. The team received the crashes into a report analyzer, but it took months for them to create the correct approach to the problem.
Facebook responded via email to advertisers who were victimized by a bug Tuesday night, which resulted in several of them receiving receipts that detailed other advertisers’ campaigns and spending.
Facebook offered some statistics about its bug bounty program in a note on its Protect the Graph page, saying that it received 14,763 submissions in 2013, up 246 percent from the previous year, and 687 of those submissions qualified for awards.
Facebook, Google, LinkedIn, and Twitter face similar challenges in working with open-source database MySQL, and Thursday, the four companies announced that they joined forces to form WebScaleSQL, aimed at sharing a common set of changes to the upstream MySQL branch via open source.
To the average person, lint is something that gets caught by filters in clothes dryers, but to computer programmers, lint is actually helpful, as in lint programs, which help them sniff out bugs and coding errors in C programs. But why did Romanian C++ programmer and author Andrei Alexandrescu choose to write flint, Facebook’s lint program, in the D language? He explained the reasoning in a post on the Facebook engineering blog.
Facebook is working to remedy a vulnerability discovered by application security provider MyPermissions, which blocks users of the social network from revoking permissions granted to apps that allow them to access those users’ information.