Hacker News new | past | comments | ask | show | jobs | submit login

They should spend time to refactor their code, it's a mess: http://pastebin.com/a45dp3Q1

With that source is much harder to make a security analysis and is easier to create side effects leading to security holes




Per meowface's comment, this code is ~4 years old. It's in a much better place now, but there's still a lot of room for improvement.

The vulnerability wasn't in the main application. I'll write more about it on my personal blog in the coming days (http://chrishateswriting.com).


Have you ever thought about re-writing 4chan and making it open source? I think a large portion of the community would be willing to contribute.


IIRC they had open source code called Futabally, but as time went on they closed the sources to protect their interests. Projects like it exist, such as Kusaba X.


That code was leaked in 2010 and is quite out of date. Since then they've updated their codebase quite a bit.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: