- Feature Articles
- CodeSOD
- Error'd
-
Forums
-
Other Articles
- Random Article
- Alex's Soapbox
- Announcements
- Best of…
- Best of Email
- Best of the Sidebar
- Bring Your Own Code
- Coded Smorgasbord
- Mandatory Fun Day
- Off Topic
- Representative Line
- News Roundup
- Editor's Soapbox
- Software on the Rocks
- Souvenir Potpourri
- Sponsor Post
- Tales from the Interview
- The Daily WTF: Live
- Virtudyne
Admin
Admin
Do they have federal erections in Japan?
Admin
Seriously? Standard Engrish is considered a WTF now?
http://engrish.com
Admin
"Okay, if you guys are really us, then what number are we thinking?"
Admin
Is it a Gödel box? A Schrödinger box? Or just a plain old böx?
Admin
I know what place Justin works for. I was in one of their establisments last week, and one of the staff was having a hell of a time with their dell printer.
Admin
The domain of mainstream auto makers is smaller than numbers 1 to 100. Unless your first car was a De Dion, Bouton & Trépardoux.
Admin
I know pi to 53 decimal places without even trying. I think a two digit number should be easy enough to remember, even for you plebs.
Admin
Asking for a number between 1 and 100 is better than asking for your city of birth. After all, a sufficiently diligent hacker could do some research and find your city of birth. Or guess a few big-city names and see if they can get lucky. But how could they guess a number you selected between 1 and 100? There are an infinite number of possibilities. No one said it had to be an integer, right?
I'd choose "sqrt(6)*pi".
Admin
Good for you, troll.
By the way, what happened to the first image?
Admin
TRWTF: 0. Make sure you know what the page is. (Are you telling me there is a Chinese version of the site?)
Admin
I don't understand what the problem with the "pick a number between 1 and 100 is".
The answer space is several times larger than "pick your favourite colour", and no one is complaining about that one.
(Assume people are going to answer "red", "blue", etc., not "salmonberry sunset", and that people will pick an integer number rather than a real one.)
Admin
Admin
Admin
No, what's brave is to get on here and write C++ code in a comment window... using malloc().
Admin
You are confusing "robust" with "secure".
Generally, software that is more robust is inherently more secure because robust code can minimize or eliminate security flaws caused by bad code; however, robust software can still be very insecure by a flaw in the design. Back Orifice, for example, is a very robust tool; it is also, by explicit design, a security hole.You are however exactly right in identifying the essential trade off between security and usability :)
Admin
Admin
security questions and answers are a huge WTF in the first place. Half the companies I have accounts with know my mother's maiden name. a little knowledge of me (likely to be had by people closest to me who are the most likely to try to hack into my account) would reveal my favourite book, film etc..
Security questions are like more passwords, but easier to guess. And quite how that represents security is anyone's guess.
Admin
That's no moon...
Admin
Duh, everyone knows you can't send sensitive information like passwords through email.
That's why we have all this "Copy this URL to the clipboard and paste it into the address bar entry field on your computer's web browser application to reset your password" nonsense (If you're trying to make sure people who can't figure out how to visit a URL that appears in an email message understand your instructions, what are the chances that they understand words like "copy and paste" or "browser," really?) Because it's sooo much easier than everyone just spending 10 minutes to learn how to use PGP or S/MIME.
Admin
Admin
Actually IT ISN'T. Did you people ever READ the book?
42 may have been the answer, but it was the WRONG answer. THAT was the WHOLE POINT.
Admin
I don't see the WTF on the username/password or the "Pick a number".
A number of sites send both the username and password when you enter your email address. It's not the most secure, but whats the WTF here? If there was no username/password in the email, then maybe this should have been pointed out, as I'm assuming they have been blanked out by the poster for obvious reasons.
As for the "Pick a number", whats wrong about that? I can instantly think of several numbers that stick in my mind (with one such number being the most popular). I'd much prefer an ambiguous questions such as this to someone trying to reset my password rather than a question such as "What was your first school" or "Pets name", etc, which a lot of people have access to.
Admin
...or was that "How do I love thee? Let me count the ways..."
Admin
Actually, it WAS the right answer. It's just that they didn't know what the actual question was. Did you read the book?
Admin
Only because of quantum mechanics. Colors are based on wavelengths of light, which are quantized, while there are an infinite number of real numbers between 1 and 100.
Admin
Just be happy you got Nots to do that much
Admin
Hrrm, are numbers CASE SENSITIVE?
Admin
Admin
Admin
Admin
How fantastic would it be if there were more code that ensured the user did in fact enter a number, and that it was between 1 and 100.
Admin
Except the experiment was corrupted by the Golgafrinchams, who displaced the local human population and ultimately corrupted the experiment long before it was destroyed several seconds before completion (the true answer may have been, but in all likelihood was not, the realization of Fenchurch).
Admin
Admin
This is a lot clearer than the HD instructions. You need to look at a thesaurus or something and choose some completely wrong synonyms for some of these words.
(Whenever I see badly mangled English, though, I'm reminded of something I once read about Jean-Claude Van Damme's poor English skills: "How are you in your fifth language?")
Admin
Because it's sooo much easier than everyone just spending 10 minutes to learn how to use PGP or S/MIME.
Yeah, and then manage their keys, never lose them, back them up, have them with them...
There's a reason no normal, sensible person uses that crap - because it's not worth the trouble.
Admin
Admin
42, how do you know about 42?
Did you know 42 is the center of the universe?
capicha: vulputate <- I think I did that last night
Admin
Admin
You should try the Edgefield distillery's spirits, they're pretty fantastic. The gin and whisky are my personal favorites. Also the raspberry ale they're slinging these days is pretty damn good. Nice and hoppy with just enough raspberry to make it awesome; not super-sweet like so many fruity beers.
Then, of course, you should thank whatever higher power you believe in that you live in a city where McMenamin's is the franchise-happy corporate behemoth. (Seriously, try and find a good second-run beer theater in any other city in the US. It's maddening. Can't swing a cat near my apartment without hitting one.)
Also: given their branding, random glyphs appearing in their printouts shouldn't be too big a problem, innit?
Admin
The Earth was built to find the question, not the answer.
Admin
69 dude.
// Bill S. Preston and Ted Theodore Logan respectfully agree.
Admin
Obviously, Kenneth, you just need Firebug! I've actually had a few times where I have to change the HTML on the fly so the page actually makes sense...
Admin
Admin
Yeah I don’t get the McM hate either. It’s like bitching about the crappy chocolate in the magical chocolate waterfall, and the gumdrop trees are getting a little stale. Whenever someone bitches about McM I think “here’s someone who’s never been anywhere else”
Admin
Windows does in fact have a way of showing message boxes when you're out of memory...
It uses a message box that it's allocated memory for ahead of time... so it'll work even if there's no memory left. It also rather heavily cuts down the work that MessageBox does... the text isn't word-wrapped, and is limited to 3 lines.
However, that doesn't explain the picture in the post... it's clearly using MB_ICONWARNING, not MB_ICONSTOP.
Admin
In the assemblies elucidation diagram, it appears that the author was not a native english speaker.
Admin
Or 3.14159
Admin
Provided they don't validate as a number within the stated range, your 'number between 1 and 100' could be almost anything. You might never guess that my number is 101.
It's a bit like putting you mothers maiden name as "dog biscuits". If you can give the matching response to the challenge, there is no need for it to actually make sense.
That makes an even bigger infinite range of possibilities.
Admin
I don't see how the "Pick a number" is much more insecure than the others.
Answers to questions like "Mother's birth city" are often a matter of public record and if the person is active online then finding out questions of personal preferences if often not very difficult.
The only problem I see with "Pick a number between 1 and 100" is that the range of possible answers is too small but then again if you took the top 10 most popular movie titles and tried the list of usernames your hit rate might be better. If someone tried to get the information out of you it would be obvious that they were up to no good whereas some of the other questions could easily be dropped into casual conversation without causing suspicion.
I suspect that if you chose that security question they wouldn't actually validate that you put in a digit between 1 and 100 they'd probably save the text just like they would for the other options so in theory you should be able to enter any number of digits up to the length of the string they store.