Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
Never understood slapping a screenshot in a word document, but it seems quite common.
-
@Letmecode I'm assuming the OP stores them in a password manager like lastpass.
-
@Letmecode I find it hard to believe anyone would be stupid enough to store unhashed passwords in their application.
-
Moicanos448yjust to be more clear about our access to passwords. It is a big application for a commercial company. I just recently joined the team. We can see the passwords in the servers logs, for change password requests.
-
Moicanos448y@PiranhaGeorge, @ToshNeox yeah.. If this was the only problem this project has I would be happy. I will work a few more months in this and then get out. It is my first job, I didn't know how it was before I accepted it.
-
arminiae5658yClient of ours likes to print out an excel dump of their database table, doddle some notes on that, then scan it back in and send it to us in some HP format i can't easily open.. Bug reports? No screenshots, no username, and they've already corrected the data they thought was wrong in the DB...
Give me Word over that. ;) -
ToshNeox2528y@Moicanos I'd weigh up whether it would be better for your skills/sanity to leave, or try and get it all fixed and then have more to show off (i.e. be able to show your boss you fixed loads of stuff (also show the benefit of added security with hashed passwords etc.), then you can ask for more money! 😀
-
I have seen a case where passwords got encrypted with passports in sql and you could actually decode them. also on a university they store them as plain text. 😞
sometimes our application users can't login to our application and they report the problem to us. The fucking problem? Almost sure they forgot the password because we can login with their account.. Yeah we should not have access to their password, but we do xD. The worst is they send a Word file with only a print screen of the application error saying they can't login. Why not a .jpg??! The word takes 4 seconds to open
undefined