A preSCRIPTion for Errors

  • Kushan 2012-11-02 06:20
    String Not Found
  • Deux 2012-11-02 06:24
    In before language fail: insteaad
  • Ama 2012-11-02 06:26
    All is in order. I speak Pseudo all day.
  • notfrist 2012-11-02 06:35
    Comment not found
  • Keld 2012-11-02 07:28
    Berend de Boer should just pay better attention.
    de Boer is of course a complex surname, and they just wanted the real part of it. So the correct entry would have to be "de".
  • OldCoder 2012-11-02 07:52
    Keld:
    Berend de Boer should just pay better attention.
    de Boer is of course a complex surname, and they just wanted the real part of it. So the correct entry would have to be "de".

    Are you saying that "Boer" is imaginary?
  • Cbuttius 2012-11-02 08:01
    Well obviously when you apply for their credit card they need to protect themselves against SQL injection and can't let you execute scripts... Where's the WTF there?

  • Dr. Clueless 2012-11-02 08:14
    Let me translate that prescription error message for those who don't speak information security:

    * We wanted a website, something that is made exclusively out of nothing but knowledge. Despite this, we didn't feel obliged to obtain any.

    * We got hacked, naturally.

    * Although some would take a significant unexpected event as a wake-up call and go acquire that knowledge "better late than never", we decided to remain asleep and aim for "never".

    * Following in the footsteps of security leaders like Microsoft, we thought we would patch -- badly -- the one tiny hole used in the one hack, instead of asking if swiss cheese is good bridge construction material.

    * We then decided to broadcast our ignorance, arrogance, and stubborn refusal to learn to the world.

    * We will remain asleep until hacked many, many more times.

    So, gentlemen, you know your duty...
  • Bobby 2012-11-02 08:21
    Your information will be kept completely confidential and will not be shared with anyone who is as stupid as we are, which is an amazingly small group. It will, however, be shared with hackers, and through them, with a worldwide organized crime infrastructure. So please enter all your financial data now. You can even use a '$'. Just don't use "exec". Or if you do, be especially careful you don't go all the way to "execute".
  • Cbuttius 2012-11-02 08:23
    yes but really it is filed as a clbuttic error.

    it is filtering "script" out of "prescription".
  • Jack 2012-11-02 08:25
    * Please enter a last name between 1 and 31 bytes.
    Obviously you should have entered "1 de Boer 31 bytes". Learn to follow instructions!
  • @Deprecated 2012-11-02 08:38
    Cbuttius:
    yes but really it is filed as a clbuttic error.

    it is filtering "script" out of "prescription".


    Great, so now where am I supposed to return my preions?
  • Warren 2012-11-02 08:51
    Perhaps "de Boer" uses more than 31 bytes in some encoding? Or less than 1 (that would be good compression)?
  • Steve 2012-11-02 09:01
    I'm just dying to know if the validation is case sensitive, so I can get a credit card to go buy the new iFrame.
  • ¯\(°_o)/¯ I DUNNO LOL 2012-11-02 09:23
    exec script (=
  • DanDan 2012-11-02 09:56
    Kushan:
    String Not Found


    frist not found
  • Captcha:ludus 2012-11-02 10:59
    Sadly, four billion spam emails does not really seem so unreasonable if you work in a very large company (though I doubt they'd use Outlook to handle them).
  • foo 2012-11-02 11:00
    Ama:
    All is in order. I speak Pseudo all day.
    Many people on this site do (including the editors).
  • foo 2012-11-02 11:01
    @John K: The answer is, of course, 42. For the question, come back in a couple million years.
  • TSA 2012-11-02 11:04
    Dr. Clueless:
    * Following in the footsteps of security leaders like Microsoft, we thought we would patch -- badly -- the one tiny hole used in the one hack, instead of asking if swiss cheese is good bridge construction material.
    Of course. That's how real security works.
  • cellocgw 2012-11-02 11:41
    OldCoder:
    Keld:
    Berend de Boer should just pay better attention.
    de Boer is of course a complex surname, and they just wanted the real part of it. So the correct entry would have to be "de".

    Are you saying that "Boer" is imaginary?


    Well, who would want to be known as "a real Boer" ? (pronounce it like a 'merican would)
  • Anon 2012-11-02 11:53
    Somebody should tell the makers of the PC Reservation system that Windows 3.1 wants it's icons back.
  • operagost 2012-11-02 12:26
    cellocgw:
    OldCoder:
    Keld:
    Mark Berend de Boer should just pay better attention.
    de Boer is of course a complex surname, and they just wanted the real part of it. So the correct entry would have to be "de".

    Are you saying that "Boer" is imaginary?


    Well, who would want to be known as "a real Boer" ? (pronounce it like a 'merican would)

    What's a 'merican? And why would they pronounce it any way other than BOW-er?
  • Matteo Italia 2012-11-02 12:34
    For anyone wondering what pseudo-localization is:

    http://blogs.msdn.com/b/michkap/archive/2011/04/11/10152035.aspx

    (actually a really nifty idea, but doesn't seem like a good language for conversation)
  • chubertdev 2012-11-02 12:40
    You wrote down: "Go." And you wagered: "For it." Go for it. You certainly did.
  • Rob 2012-11-02 13:09
    n/a n/a n/a n/a... n/a n/a n/a n/a... hey hey hey... [DELETE]

    (everybody sing along)
  • foxyshadis 2012-11-02 13:19
    Anon:
    Somebody should tell the makers of the PC Reservation system that Windows 3.1 wants it's icons back.

    I came in here to express wonderment that we were still making fun of Win3.1 software, when it was more of a miracle that your computer booted up at all without a black screen of death or completely locked up within 5 minutes, thanks to wonderful software like this.

    Then I saw the copyright dates and facepalmed. I wonder if they have to compile it on Win98 because the compiler won't work on anything newer?
  • n_slash_a 2012-11-02 13:36
    foxyshadis:
    Anon:
    Somebody should tell the makers of the PC Reservation system that Windows 3.1 wants it's icons back.

    I came in here to express wonderment that we were still making fun of Win3.1 software, when it was more of a miracle that your computer booted up at all without a black screen of death or completely locked up within 5 minutes, thanks to wonderful software like this.

    Then I saw the copyright dates and facepalmed. I wonder if they have to compile it on Win98 because the compiler won't work on anything newer?

    I work for a multinational corporation, and just last year was told to help release a tool to our customers. The tools has comments in the source code detailing how the tool is compatible for both 16-bit and 32-bit operating systems.
  • Slapout 2012-11-02 13:47
    Is reservation even a PC term these days?
  • @Deprecated 2012-11-02 15:15
    foxyshadis:
    Anon:
    Somebody should tell the makers of the PC Reservation system that Windows 3.1 wants it's icons back.

    I came in here to express wonderment that we were still making fun of Win3.1 software, when it was more of a miracle that your computer booted up at all without a black screen of death or completely locked up within 5 minutes, thanks to wonderful software like this.

    Then I saw the copyright dates and facepalmed. I wonder if they have to compile it on Win98 because the compiler won't work on anything newer?


    Compiler? That looks like a Java crapplet if I've ever seen one...
    Clunky buttons, 8 color icons, grey background, it's all there!
  • Dereleased-Work 2012-11-02 15:22
    operagost:
    cellocgw:
    OldCoder:
    Keld:
    Berend de Boer should just pay better attention.
    de Boer is of course a complex surname, and they just wanted the real part of it. So the correct entry would have to be "de".

    Are you saying that "Boer" is imaginary?


    Well, who would want to be known as "a real Boer" ? (pronounce it like a 'merican would)

    What's a 'merican? And why would they pronounce it any way other than BOW-er?


    But the pronunciation of "BOW" is ambiguous in writing. Bow like the action or bow like the object you play a violin with?
  • Spewin Coffee 2012-11-02 17:06
    What is it with ((unsigned int)-1) showing up in e-mail clients? Thunderbird also has this issue. Seems like something that should never happen.
  • Coyne 2012-11-02 17:30
    Ah, yes, TRWTF: That would be Outlook. One of my favorite messages of all time was from Outlook:

    The action failed to complete. The action failed to complete.


    ...on a dialog with an "Ok" button, of course. And, of course, totally lacking any other information, including such minor details of what Outlook was trying to do...

    After much hair-pulling, over multiple days, I finally solved it by deleting and redoing all my archival setup.
  • Gary Olson 2012-11-02 20:22
    Isn't pseudo that indecipherable aborted stuff kids type into their phones?
  • Midnight oil 2012-11-02 22:38
    Jack:
    * Please enter a last name between 1 and 31 bytes.
    Obviously you should have entered "1 de Boer 31 bytes". Learn to follow instructions!
    Hilarious!
  • Pseudo Localization 2012-11-03 08:30
    7#3 r34l w7f i5 7#47 7#053 n00b5 707411y f0rg07 1337!!!
  • Kevin Kofler 2012-11-03 22:57
    Just do what all the spammers do and spell it as "prescr!ption". :-) (No, the exclamation mark doesn't seem to be on the banned list.)
  • Smarty Tablets 2012-11-04 16:27
    operagost:
    cellocgw:
    OldCoder:
    Keld:
    Mark Berend de Boer should just pay better attention.
    de Boer is of course a complex surname, and they just wanted the real part of it. So the correct entry would have to be "de".

    Are you saying that "Boer" is imaginary?


    Well, who would want to be known as "a real Boer" ? (pronounce it like a 'merican would)

    What's a 'merican? And why would they pronounce it any way other than BOW-er?
    BOW as in BOW and Arrow?
    or
    BOW as in Bow your head?
  • Jim 2012-11-04 16:30
    Coyne:
    Ah, yes, TRWTF: That would be Outlook. One of my favorite messages of all time was from Outlook:

    The action failed to complete. The action failed to complete.


    ...on a dialog with an "Ok" button, of course. And, of course, totally lacking any other information, including such minor details of what Outlook was trying to do...

    After much hair-pulling, over multiple days, I finally solved it by deleting and redoing all my archival setup.
    Or "Outlook could not close because an error occured. Please close Outlook and try again" (or something)
  • bjolling 2012-11-04 16:51
    Smarty Tablets:
    operagost:
    cellocgw:
    OldCoder:
    Keld:
    Mark Berend de Boer should just pay better attention.
    de Boer is of course a complex surname, and they just wanted the real part of it. So the correct entry would have to be "de".

    Are you saying that "Boer" is imaginary?


    Well, who would want to be known as "a real Boer" ? (pronounce it like a 'merican would)

    What's a 'merican? And why would they pronounce it any way other than BOW-er?
    BOW as in BOW and Arrow?
    or
    BOW as in Bow your head?

    or "de Boer" pronounced like "the boohr"
  • Talis 2012-11-05 07:30
    The preSCRIPTion remains me of the story in which a freelancer didn't get many job offers. He had "cialis" on the block list. But quite some offers looked for a speCIALISt...
  • Arancaytar 2012-11-09 16:47
    The "script" thing is something I've seen far, far too often.

    It's clbuttic.
  • jas88 2012-11-10 10:25
    Kevin Kofler:
    Just do what all the spammers do and spell it as "prescr!ption". :-) (No, the exclamation mark doesn't seem to be on the banned list.)


    No, clearly he should have used SQL injection to insert the proper text!

    Putting presc'+'ription would probably do the trick here, if their escaping is as bad as their input validation.

    I'm reminded of my pen tester acquaintance who told a client "my report is in the root directory of your mail server's hard drive. Might want to tighten it up a bit."
  • ontheroadtonull 2012-11-23 02:39
    "Brad" should check all of his credit cards for charges he didn't make. One thing shopping account thieves do when they order a big item from your account is send you a buttload of spam in the hope that the order confirmation email is lost in the sea of spam.
  • tk 2013-05-16 03:50
    Lol very good