All requests from fb pass a signature using a shared secret key. There is no way a hacker could generate this sig without knowing the secret key. The default libraries use this key to validate the user, so anyone simply following the example apps would have a pretty secure app.
Ryan
· 1 year ago
Ha! I saw this coming five months ago. Scope this post....
All Comments
http://deftlabs.com/2007/10/facebook-applicatio...