Do all the things like ++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatarSign Up
Get a devDuck
Rubber duck debugging has never been so cute! Get your favorite coding language devDuckBuy Now
Search - "pwnd"
Me Vs a PHP teacher
And to do login, we just do SELECT username WHERE password = (userinput)
Really? Checking raw userinput against plaintext password?
There is no point in doing it securely here because if they want, the students can go take a seperate course on security
So no point in teaching students that they should write their code secure by default and just leave it as a afterthought?
Yes, because this is how i have always done it
Okay, time for a break
*Uses the break to teach all students about sql injection, password hash and salt, rainbow tables and user input sanitizing*
Students to teacher:
He's right, if you dont teach us to code securely by default, we are likely to end up causing a data leak or be hacked, if you dont teach us properly we have no point coming here
*Smiles at the teacher with a face that says: Pwnd*
Alright then, tell me whats wrong in my code
I was so proud that i helped the class understand secure by default principles64
Being a student this was how my colleagues felt about my code and SQL procedures. They didn’t even let me create a change ticket to present to CAB 😂12
• dude chews you out for broken code
• wait patiently for dude to finish
• head on down to "git blame" town
• show him that _he_ was the author of said broken code
• tell dude to take a seat
Hey, looks like some employee of this hosting company failed to 750 his home directory and 640 the files...
I was SSHing around on our hosting account when I slipped into his home direcory where at least two(!) SSH public keys of his admin account for the server were readable!
Being an honest guy, I had to call them...
It's fixed now.2
Just found a breach somewhere in the university's meal booking system, that exposes some good 60K records of students, professors and staff orders and payments.
It's just that I am behind this shitty web UI with 20 rows per page table as the only option.
Now how 1337 is that?6
Intel management engine pwned over USB
With everyday that passes, this Intel ME rabbit hole just keeps getting deeper.