←back to thread

Facebook adds 5 divs, 9 spans and 30 CSS classes to every post in the timeline

(twitter.com)
550 points polskibus | 5 comments | 08 Feb 19 16:04 UTC | HN request time: 0s | source
Show context
locklock ◴[08 Feb 19 16:47 UTC] No.19116039[source]
I'm really thankful I haven't yet had a job where all I'm developing is new ways to force people to see ads. Imagine working on a 'feature' like this for weeks or months, and the end result is simply that people who don't want to see ads now have to see ads.
replies(18): >>19116155 #>>19116176 #>>19116284 #>>19116297 #>>19116323 #>>19116487 #>>19116513 #>>19116720 #>>19116769 #>>19116867 #>>19116940 #>>19117235 #>>19117240 #>>19117870 #>>19118148 #>>19118153 #>>19118697 #>>19119394 #
spyspy ◴[08 Feb 19 17:10 UTC] No.19116323[source]
Ethics aside, this actually sounds kind of fun to me. It's the kind of clever puzzle solving many of us love about programming - it's basically a cat and mouse game.
replies(9): >>19116425 #>>19116468 #>>19116642 #>>19116691 #>>19116817 #>>19116869 #>>19117150 #>>19117156 #>>19120024 #
1. tenaciousDaniel ◴[08 Feb 19 17:40 UTC] No.19116691[source]
I had a job where I had to reverse engineer broker API's. A few brokers sent us warning letters since it's technically legal but brokers obviously hate it.

That was the best cat-and-mouse game. We had a revolving door of proxies that we would use to hit their endpoints so they couldn't catch us. So much fun.

replies(1): >>19116756 #
2. matthewwiese ◴[08 Feb 19 17:48 UTC] No.19116756[source]
In what context was this done/could you provide more details (without giving away any information that you don't care to share)? Sounds like something I would enjoy doing as well!
replies(1): >>19117714 #
3. tenaciousDaniel ◴[08 Feb 19 19:21 UTC] No.19117714[source]
It was from a previous employer and I can't remember what I signed in my NDA, so I'd rather not put myself at risk. Sorry!
replies(1): >>19117762 #
4. tenaciousDaniel ◴[08 Feb 19 19:26 UTC] No.19117762{3}[source]
Although I can say that most financial institutions are not nearly as scrupulous in checking their systems as you would expect.

When I would work my way through their auth layer, I'd be sending them like 500 login requests every hour. They never contacted the account I used, so I have to assume they weren't checking for abnormalities like that.

The only time I really fucked up was when I tried to do that with a particular broker in Singapore. Singaporean companies have their shit _locked down_. I spent one hour debugging one of their endpoints, and it let off so many alarms that the CTO of their company was woken up in the middle of the night.

replies(1): >>19119526 #
5. matthewwiese ◴[08 Feb 19 23:09 UTC] No.19119526{4}[source]
I respect the need to abide by an NDA, and I assumed something along those lines would be the case. Thanks for the tidbits nonetheless! The intersection between finance and tech at the highest levels like that has always intrigued me.