It's About Liberty: A Conservative Forum
Topics => Science, Technology, & Medicine => Topic started by: charlesoakwood on February 27, 2011, 01:49:58 PM
-
http://blogs.msdn.com/b/alfredth/archive/2007/10/18/do-your-students-understand-this-cartoon.aspx
Exploits of a Mom
http://xkcd.com/327/ (http://xkcd.com/327/)
http://imgs.xkcd.com/comics/exploits_of_a_mom.png (http://imgs.xkcd.com/comics/exploits_of_a_mom.png)
"Hi, this is you son's school. We're having some computer trouble."
_ _"Oh, dear - did he do something."
"In a way.
Did you really name your son ROBERT'); DROP TABLE Students; -- ?"
_ _"Oh, yes. Little Bobby Tables, we call him."
"Well, we've lost this year's student records. I hope you're happy."
_ _"And I hope you've learned to sanitize your database inputs."
It's an example of an SQL Injection exploit of course and all the people who referenced it knew that right away. But how many regular...
http://blogs.msdn.com/b/alfredth/archive/2007/10/18/do-your-students-understand-this-cartoon.aspx (http://blogs.msdn.com/b/alfredth/archive/2007/10/18/do-your-students-understand-this-cartoon.aspx)
-
I have to admit I didn't get it either, being a veritable computer idiot and ....
"Code? Is that like dit, ditdit, dot, dot, dot?"
..... old.
-
Now I'm all funny-like about saying that I get it ::eyes::
Here's one I'm sure you'll get, but is it funny...
...Or like the mother who named her daughter La-a. She told the girl’s school that the name was pronounced Ladasha, “ the dash don’t be silent.”
::whatgives::
-
Of course, you do; that's what you DO. (Isn't it?)
Seen the "Ladasha" before. All I can say about that level of illiterate ignorance is ::facepalm::
-
I knew a kid that was named,"Sir Reginald Davis III"WTF were they thinking.
-
I did business with a guy named Mike Mike. First and last name, I sh*t you not.
-
Yes, sanitize your input. But user-facing applications should also not use database logins with permission to drop tables in the first place. If they'd done that, the dirty input wouldn't have executed anyway. :)
One thing is for sure, the next big war is going to have a whole different front. Entirely in cyberspace. It's not very encouraging when you hear about big companies and government agencies, who should definitely know better, getting exposed by some Bush-league exploit.