this post was submitted on 26 Nov 2025

532 points (98.9% liked)

Funny

12596 readers

1068 users here now

General rules:

Be kind.
All posts must make an attempt to be funny.
Obey the general sh.itjust.works instance rules.
No politics or political figures. There are plenty of other politics communities to choose from.
Don't post anything grotesque or potentially illegal. Examples include pornography, gore, animal cruelty, inappropriate jokes involving kids, etc.

Exceptions may be made at the discretion of the mods.

founded 2 years ago

MODERATORS

TheDude@sh.itjust.works

kersploosh@sh.itjust.works

example@reddthat.com

VicksVaporBBQrub@sh.itjust.works

532

I think I went wrong somewhere in development (infosec.pub)

submitted 2 weeks ago by Stamets@lemmy.dbzer0.com to c/funny@sh.itjust.works

23 comments fedilink hide all child comments

top 23 comments

sorted by: hot top controversial new old

[–] henfredemars 60 points 2 weeks ago* (last edited 2 weeks ago) (1 children)

You joke, but I’ve used this at my last job. We cannot have the same login password and it told you the name of the conflicting accounts.

[–] Jankatarch@lemmy.world 46 points 2 weeks ago (2 children)

Businesses do shit like this then say they can't let employees use Linux for cybersecurity reasons.

[–] henfredemars 17 points 2 weeks ago* (last edited 2 weeks ago) (1 children)

~~Cybersecurity~~ compliance reasons.

[–] Fuck_u_spez_@sh.itjust.works 10 points 2 weeks ago

~~Cybersecurity~~ ~~compliance~~ because their MDM platform won't run on Arch reasons.

[–] bitchkat@lemmy.world 10 points 2 weeks ago (1 children)

Recently I've seen them block all mail clients except outlook.

[–] muusemuuse@sh.itjust.works 4 points 2 weeks ago* (last edited 2 weeks ago) (1 children)

Meanwhile my customers are calling me up asking for help LEAVING outlook. Unprompted.

Yea, Microsoft shit the bed with this whole AI thing. Nobody wants locked into their shit now.

[–] bitchkat@lemmy.world 4 points 2 weeks ago

Outlook has always been shit.

[–] DarrinBrunner@lemmy.world 54 points 2 weeks ago

Now you have a working account, the message was helpful, at least.

[–] voodooattack@lemmy.world 21 points 2 weeks ago (2 children)

You think this is funny, but a codebase I once inherited did exactly this. Up until that point in my life, I never imagined I’d ever have such a violent urge to strangle someone.

Bonus: the system had two types of accounts for signups: one for employers and one for employees. Naturally, it would set the role of the created account during the signup process, but the issue was that anyone could submit a signup request with a custom payload and set themselves as the third account type: administrator.

Bonus #2: during a self-update request (avatar change, etc), users were able to change their own IDs in the database.

It was 100% vibe-coded by two imbeciles in two months. We had to rebuild 80% of that codebase.

[–] AlecSadler@lemmy.blahaj.zone 9 points 2 weeks ago

Pro tip: A lot of websites that don't let you update certain fields about your profile or other things actually do let you, because it's a full payload patch on the backend. You just need to modify the fields in dev tools.

Note: I did this on a hotel website to change my email address and then ended up creating a bad scenario where my login account email didn't match my hotel profile email...they fixed it for me and said, "we aren't sure what happened". I didn't say anything.

[–] ryannathans@aussie.zone 5 points 2 weeks ago (2 children)

People are already inheriting vibe coded codebases?

[–] filcuk@lemmy.zip 7 points 2 weeks ago

What is this, a one sentence horror contest?

[–] voodooattack@lemmy.world 3 points 2 weeks ago

Definitely! And the reason is obvious.

[–] Bonus@sh.itjust.works 16 points 2 weeks ago (1 children)

So have you hacked into starboy98's mainframe yet?

[–] fascicle@leminal.space 7 points 2 weeks ago (1 children)

Never seen someone so excited to talk to jigsaw

[–] Bonus@sh.itjust.works 4 points 2 weeks ago

Thanks for reminding me. Jigsaw is a plagiarist‽

[–] Miralyn@lemmy.dbzer0.com 12 points 2 weeks ago (1 children)

I once worked a place that required me to have access to a very confidential database. To "protect against hackers", they changed the (collective) password every week and sent me the new one in open text to my webmail account. 😳

[–] bagelberger@lemmy.world 10 points 2 weeks ago (1 children)

all this time video game computer security was based on reality

[–] mech@feddit.org 6 points 2 weeks ago* (last edited 2 weeks ago)

Except the corporations are the tutorial level, and the final boss is the home server of an anime-obsessed girl who wears Unix socks and owns an oscilloscope for some reason.

[–] TomMasz@piefed.social 7 points 2 weeks ago

TAP
TAP
TAP
"I'm in."

[–] BunScientist@lemmy.zip 6 points 2 weeks ago (1 children)

Not the same but I ordered some electronics from a local store recently and the "forgot your password" link sent me a mail with my password.

[–] voytrekk@sopuli.xyz 1 points 2 weeks ago

They are just trying to remind you to keep all of your passwords unique.

[–] stupidcasey@lemmy.world 4 points 2 weeks ago

I have this one specific program I have to use that I am not about to tell you what it is but if you get your security question wrong you can't log in ... But you can change the security question right underneath... Kn fine at least I have to have my password to change my security question right? Yup it's a good thing I can press the eye to see my password, ok but you still have to have your password to get into your account right? Well not exactly if you forget your password you can call a recovery number and convince them you are you and they can let you in ... Fine but at least you have to give them something right? Right? No, they ask you your previous address and phone number .... All public information.