The Orange Juice Saga ....

I've just come off one of the stupidest calls ever.

Firstly, I am not in tech support, I'm a software developer - read the below with this in mind.

My client called up to say the system I created as been compromised. When he attempts to login, he is logged off his Windows machine.

He'd also apparently taken his PC to ***insert large UK computer superstore here***, who took £100 plus to look at the machine and conclude his needs to buy a new PC.

I remoted into his computer to see WTF was going on.

As he described, visiting my login form did log you out. In fact, whenever you pressed the "L" key you were logged out. Press the "M" key, all windows were minimized. Basically, all Windows hotkeys appeared to be active, without the need to press the Windows key.

Whilst connected to his PC I spent a good 30 minutes checking keyboard settings and came up short.

After asking all the normal questions (has anything changed on your PC, have you installed stuff lately etc.) without any useful answers I got nothing.

I then came across an article stating several presses of the Windows in quick succession will solve the issue.

I got the client to try this, pressed the "L" key (which would have logged me off previously) and the issue was resolved.

Basically, the Windows key was "stuck", which oddly makes your PC kind of useless.

I asked the client if they'd split anything on the keyword whilst working. His exact word were simply lol:

"Oh yer, yesterday, I was trying to drink a glass of orange quickly and split some in the corner of keyboard. I did clean it up quickly though".

Yep, the issue was due to the client spilling orange juice on their keyboard , which in turn made the Windows key stick.

Disaster averted.

A call that started with the client stating I made a system that was easily compromised (i.e. my fault), morphed into a sorry saga of cold drinks.

The client did ask why the ***superstore name*** charged him money for that and recommended a new machine. That is a good question and demonstrated some the questionable tech support practices we see nowadays, even at very large stores.

To be fair to the client, he told me to bill him for half a days work as it was his own fault.

When I'm able to stop myself involuntarily face palming, I'm off for a swim to unwind :)

Yesterday my father called me and asked if I'd have a look at his website to exchange his logo with a new one and make some string changes in the backend. Well, of course I did and hell am I glad I did it.
He had that page made a few years ago by some cousin of a friend who "is really good with computers", it's a small web shop for car parts and, as usual costumer accounts. Costumer Accounts with payment infos.
Now I've seen a lot of bad practices when it comes to handling passwords and I've surely done a few questionable things myself but this idiot took the cake. When a new account was registered his php script would read the login page, look for a specific comment and add a string "'account; password'," below into to a js array. In clear text. On the website. One doesn't even have to breach the db, it's just there, F12 and you got all the log ins.

Seriously, we really need a licensing system for devs, those were two or three years this shit was live, 53 accounts... Now I've gotta decipher this entire bowl of spaghetti just to see if he has done any more unspeakable things.

Why fix browser compatibility issues when you can just block what versions users can log in with?