Facebook Developers

I just talked to my Trend Micro contact and he said although they do the best to connect with big sites, BUT it is up to the site to make sure that the app does not get misidentified.

That is not the issue. The issue is that phishing sites will target the app and make it look like a Facebook Connect widget. Then when you try to log in they will grab the username and login and send a bunch of spam on Facebook. As soon as that happens Trend Micro will disable the app or block sites.

Don't think so? They blocked AdSense when phishing sites spoofed AdSense panels. ADSENSE, you know, by Google? True Trend Micro is closely aligned with Microsoft. But if they are willing to block Google's best source of income do you really think Facebook Connect could not suffer the same fate?

What I am concerned about is clients suing me! I could care less about Facebook. I want to make sure my clients don't get blocked. If Trend Micro blocks a site, it disappears from cyberspace. No email is delivered with the domain in it, TM blocks all web requests and IE 7 disables the site.

I have a top level connection in Trend Micro and I can get my clients sites whitelisted. However if it was not for this I would not touch this thing. I hope someone kicks this upstairs to Facebook and they get with TM and save us, them and our clients the loss of their business.

This is not something to shrug off and say "Microsoft will take care of it." My five year old domain got blocked due to a false positive. I lost $30K before I got to the bottom of it. Now tell me some little blog cannot suffer the same fate because some Phisher bastard spamed all of Facebook and got the app blacklisted because it is unsecured.

Then the guy goes broke and sues me and then I go broke. Now my kids don't eat. Not something I am willing to leave up Microshaft.

BTW Microsoft has a go with it now fix it later rep. Bought any of their products lately? Ever notice Microsoft is not real popular with the hacker crowd? The pro Google hate anything Microsoft does crowd? They would pull this just to screw MS.

Chris Lang
emaildeliveryjedi.com

@vt_mruhlin

I know about Trend Micro because they blocked my site, destroyed my business and cost me over $30,000 in income.

I was making $5K a week, then nothing. WENT BROKE and LOST EVERYTHING!

http://emaildeliveryjedi.com/email-blog … m-filters/

My contact is the lead developer at Trend Micro for anti phishing.

BTW fbcdn.net the site Facebook uses to run scripts just got listed in Firefox and Chrome as a phishing site just now and you can't even browse to the site.

Not listed in Trend Micro, just checked. TIN FOIL stuff? Try feeding your kids when Trend Micro blocks your domain with URL RBLs. Then tell my concerns are TIN FOIL STUFF!!!!!!!!!!!!!!

Better yet install an unsecured Facebook app on a client's site and when they get blocked and you get sued by your client and can't feed your kids let me tell you it's TIN FOIL STUFF! Please do not insult me like that again.

Thanks for your sympathy to another human beings plight...

fbcdn.net was listed as a phishing site, but it has now been resolved. Thanks for the heads-up Chris.

@vt_mruhlin: there is an outstanding bug where the login dialog gets shown in a lightbox. it happens if you go to a site while you are logged into Facebook, so the login_status call fetches your logged-in credentials. You then log out of Facebook in a separate tab, go back to the site, and it will show you the lightbox version. it's on the bug list and we plan to fix it. aside from that edge case, all logins are done through browser popups now.

Ha, it is kind of ironic that they got blocked right after you rambled about it.  You didn't do something sneaky, did you?

Seriously though, I'm not surprised that a site called "How to Avoid Spam Filters" got flagged as spam.  Removing the big popup asking people to give you their email addresses might also help you look more legit.