backend.xylight.dev

gravistar , 10 months ago to xkcd in xkcd #2700: Account Problems

neal.fun/password-game/

palordrolap , 10 months ago to xkcd in xkcd #2700: Account Problems

Heh. I remember at one place, my password wasn't liked very much by the account creation script the sysadmin wrote. The password started with a dollar sign and I think that was being inadvertently parsed as a $variable somewhere.

Thinking about it, I have to wonder what would have happened if the password started and ended with backticks. Bobby Tables moment?

(The thought also occurs now that he might have been siphoning off the passwords something, but even though some of my generation (and moreso previous generations) are known for using the same password for everything, this was in the days before the Web really took off, so most people would have only had one place where they used a password: that system.

The system wasn't encrypted, and being the sysadmin, he had access to everything and to change passwords anyway, so keeping plaintext passwords would have been a pointless endeavour.)

Jakylla OP , 10 months ago

Password: $(sudo rm -rf /*)

cokane_88 , 10 months ago to xkcd in xkcd #2700: Account Problems

Like this? This wouldn’t take spaces or periods

https://lemmy.world/pictrs/image/1b7a60a8-a30e-4976-8f0e-cc23d9ee6084.jpeg

Jakylla OP , 10 months ago

“This wouldn’t take spaces or periods” … and doesn’t know itself

= Potential security flaw discovered

toothpaste_sandwich , 10 months ago to xkcd in xkcd #2700: Account Problems

Ooo the transcript in a little menu is a nice touch. Lemmy startin’ ta get slick.

metaStatic , 10 months ago to xkcd in xkcd #2700: Account Problems

CorrectHorseBatteryStaple')DROP TABLE users;--

Felix_Bardner , 10 months ago

And that’s why we sanitize our inputs

nottheengineer , 10 months ago

Is that you, bobby?

sanguinepar , 10 months ago

Little Bobby Tables!