Friday, December 10, 2010

Facebook Signup Form Validation: Is it up to the mark.......

Validation of data entry in sign-up and login forms as we all know is an important aspect of online application design. It forms a prime aspect in recognising your quality of the application designed.

Facebook as we all know is $25billion company with users more than 500 million.So, Is the facebook sign-up form validation up to the mark?
Here are the some of the observations I made during my usage of facebook and its so called signup form.

Signup form of facebook is available at www.facebook.com
Here are some of the screenshots of the website's signup form which depicts some strange behaviour.





As you can observe from the above screenshot that inspite of providing some junk name as well as email address which don't exist at all it accepts it without any authentication . It doen't authenticate any user as to what his background is. This means that anyone who even don't have an email address is capable of logging into the facebook and accessing other's profiles. So is this validation enough and safe from unwanted users . Is Facebook secure against usage by unwanted intruders ? .   

email ID accepted include :ajhagfyafvydfauyfd@rajeev.com
                                           asdhjagbdagdg@hdsd.in  etc

It accepts almost any name without numbers or special characters.So,Is facebook open to unwanted users for exploitation? is the prime question that lingers our mind. 


This screenshot depicts the home page of unwanted user who wasn't authenticated at all.


Facebook security still remains a prime concern among the users.



For any comments ,suggestions and criticisms do feel free to leave a comment or mail me at rajeev.open.1991@gmail.com

3 comments:

Anonymous said...

May be you got confused with something. When you enter a junk name at username field, it generates a message saying, "Our automated system will not approve this name. If you believe this is an error, please contact us."...!!!!!!

Anonymous said...

Although you are right at some point, the above writing is applicable when the first name field is recognised as name by the system..!!

TECH GEEK said...

"May be you got confused with something. When you enter a junk name at username field, it generates a message saying, "Our automated system will not approve this name. If you believe this is an error, please contact us."...!!!!!! "
The name field can be any junk value of characters except numbers and special characters..
It accepts "dajsydvasdsafdahsdf" and stuff such as that
and even the email is accepted even if it doesnt exist .......
So the above mentioned error never generated at all when I signup with junk values......