apparently it's trivial to impersonate any facebook applications

just get the application id from the URL, impersonate it and get it banned (roofles)

and having to distribute the api keys in the source? how insecure is fecesbook?!

and while I'm whining about things, why the hell si firefox hiding the http:// part in all the urls (or whatever the protocol is)

nvm that, I've just been told they aped that from chrome. bloody idiots

they only do that if it IS the http protocol, anything nonstandard is shown iirc

I found an option to turn it off at aan rate, whee!