Hacker News new | ask | show | jobs
by zaidf 5002 days ago
If an engineer at Bank of America said something to this tune, it'd have tremendous negative consequence as it should. Facebook is reaching a point where breaking things should not be okay simply because it opens up the possibility of breaking privacy settings and causing great damage.

Lots of people have pretty sensitive data within facebook with very granular privacy settings. When I read this attitude from facebook, it scares the shit out of me.

I'd love to hear more about why I shouldn't fear that their "Show this post to only x group of people" feature will break and result in everyone being able to see all my posts. What are your testing procedures for that and at what point are those kind of bugs caught?
4 comments
antics 5002 days ago
Facebook is, by a huge margin, the buggiest release software that I use every day. When I look hard, I notice at least a dozen UI bugs a week. Yet, Facebook is hugely successful -- so successful, in fact, that it's hard for me to think of ways in which it could be more successful. Your comment implies that there is some threshold that they will pass, at which point they will be forced to adopt more stable sensibilities. There are 1 billion active users [1], so I ask: if they haven't gotten to this point, when exactly will they?

I don't believe the lack of quality in Facebook code poses an existential threat to Facebook, and I don't believe it ever will:

(1) Facebook code is not Google code, but it is not bad code, it's just not needlessly good code. If Google is consistently buggy, anyone can switch to Bing. On the other hand, switching from Facebook is really hard. Their core services are not easily replaceable. People are willing to put up with more. Note that this is even true in the case of businesses: Facebook is horrible to develop against, but developers don't have a choice.

As the network grows, this cost will be higher, which means Facebook can throw its weight around more, not less. This is exactly opposite of the situation you predict. The only thing that can really reverse this is if there is a viable competitor, but the increased growth of Facebook makes this increasingly unlikely. It is clear, in any event, that G+ is not quite there.

(2) By maintaining a lower bar, Facebook actually has an advantage. It is a website, and can fix its product at will. Code can be deployed quickly and rolled back accordingly, making failure cheap. This means they can concentrate on things that really matter like user acquisition.

(3) Facebook does not run nuclear reactors or bank systems. There is a high incentive to switch from buggy bank systems. There is little incentive to switch from buggy social network websites.

footnotes:

[1] whatever that means

link
zaidf 5002 days ago
(3) Facebook does not run nuclear reactors or bank systems. There is a high incentive to switch from buggy bank systems. There is little incentive to switch from buggy social network websites.

I'm arguing that facebook wants to run something even more important than a banking system. For example, Facebook wants me to share posts that are only visible to me. Such a post could contain secrets that could have huge consequences on my life and life of others' if they became public. It is pretty clear from facebook's history that each year, they want you to share more of such private data.

They started with you being able to share your drunk party pics. They are headed towards actually becoming something like PayPal. Really, facebook should behave more like a bank than just-another-social-network if it wants its users remain confident. In this respect, looking at their past success to as proof that all is well is a mistake because I am certain facebook intends to be much more than what it is five years from now.

link
orijing 5002 days ago
The "break fast and move things" mantra isn't black and white, nor is it universal. It is a general alignment that, at the high level says, don't be afraid to make calculated mistakes but be prepared to quickly respond to feedback and those mistakes as appropriate.

That means a privacy or a security issue will be tackled with the utmost urgency--we would even shut down the site if we didn't have a quick fix for a security/privacy bug. However, if one of the Timeline aggregations isn't working or if a particular text box is not aligned, then we will fix it with the next release (usually in another day or half).

So it's not true that "move fast and break things" means "it's OK to introduce privacy/security holes" or even "it's OK to release shitty products". It just means we push early and push often.

link
jessedhillon 5001 days ago
Yes, you are not misunderstood, there is no need to clarify/interpret this slogan for us. The OP is saying that some mistakes are irreversible. Say, for example, a buggy privacy feature which -- because of fast and loose implementation -- allows users to see previously very private nude pics of a celebrity which he/she had only sent to their partner.

Even if it took only 30 seconds to find the error and the entire site was unplugged from the web so you could fix the bug, the damage is done, it's permanent and it's devastating. Facebook is crossing the line from failures being trivial to failures being potentially catastrophic. Sad, perhaps, by the standards around here, but some people conduct their lives on Facebook -- encouraged by Facebook to do so, mind you -- and you guys are treating it a little more seriously than a hackathon, from the sounds of it.

link
DominikR 5001 days ago
I feel that this kind of criticism is out of place, since Facebook has been working this way (successfully) for almost a decade without anything like that happening on a great scale.

Yes, mistakes can happen and they do happen everywhere, but Facebooks standards seem quite reasonable to me and they must be, since such mistakes would not be tolerated by its users.

Anyways, I doubt that Facebook ever encouraged its users to upload nude pictures. Whoever does this must be out of his/her mind.

link
ericfrenkiel 5002 days ago
While it's evident that Bank of America and Facebook are two different animals with entirely unique cultures, it's is worthwhile to mention that Facebook does balance the "Most fast, break things" mantra with proper control mechanisms.

For example, there is a layer called Gatekeeper that ensures only certain features are shown to users and that with a flick of a switch, code can be decommissioned in the event of a crash or breach.

link
coopdog 5001 days ago
Hell yes. Cases in point:

- Accidentally opening all profiles up, causing users to have to reset them.

- Accidentally setting all photos to public, causing users to have to reset them.

- Syncing many peoples contacts to @facebook email addresses, in many cases deleting the users original contact lists

- (the last straw) - letting private messages go onto the public wall. Facebook deny's this happened, but I personally know two people (no friend of a friend business) who this has happened to. In both cases there were very private messages from their ex-partners, the kind of thing they'd take extreme alarm to if they were on their wall. Both quickly deleted all messages when it happened, rather than saving the evidence.

Move fast and break things when there's private info at stake, is not the correct way to do things. I stopped posting to facebook and am going to close my account (and move to G+, who have better quality controls), and have non-tech friends who have decided that's the way to go after the private messages thing.

link