• (cs)

    doubtful really.

    Addendum (2011-07-08 11:42): #1) WTF #2) Hey look, you all got what you wanted.. overdone protection against sql injection. WTF #3) Boring. #4) Boring. #5) It's spelled shoal. #6) Well.. that's a lot of windows #7) Not a WTF, that's a valid error #8) tl;dr #9) Sounds like the option that keeps on giving. I'm all in favour of this.

  • Derp (unregistered)

    Give yourself permission to view permission settings. Problem solved :)

  • (cs)

    I wish my high school had been at 0 latitude, 0 longitude.

  • Anon (unregistered)

    You do not have permission to use "'" in this comment, unless you have used "'" within yrs ago (and not yrs ago) or have Miscellaneous Preferences enabled because <here is where you put a detailed description of the reason>.

  • (cs)

    If you haven't seen the Permissions dialog before, you probably have no business poking around on the Security tab.

    This message occurs if you're not the Creator/Owner of a folder, but you somehow do have the "Change Permissions" right on it.

    Creator/Owner is a special property of an NTFS object that always has the right to read/change permissions, regardless of NTFS settings.

  • Larry (unregistered)

    State Farm i's ju'st trying to prevent apo'strophe abu'se.

    Captcha: con'sequat Hmmm. Not working...

  • Barney Fife (unregistered)

    Miscellaneous comment

  • Carl (unregistered)

    Security questions are TRWTF. Usually much easier to guess than the password they are "protecting".

    Since I don't forget passwords, if they force me to have a security question, but let me write my own I make it "What is your password?"

  • eVil (unregistered) in reply to Barney Fife
    Barney Fife:
    Miscellaneous comment

    Miscellaneous response, containing miscellaneous insult

    Basically, Akismet can go eat a dick... continuous false positives are really pissing me off.

  • (cs)
    Louis Smith:
    ...and (3) if there isn't (a security question) for the account, then maybe go to a screen where I can enter a new one."
    No. At least, not until you've entered your password.
  • Decius (unregistered) in reply to Carl
    Carl:
    Security questions are TRWTF. Usually much easier to guess than the password they are "protecting".

    Since I don't forget passwords, if they force me to have a security question, but let me write my own I make it "What is your password?"

    Really? I figure that since the answers are probably in plaintext somewhere, I'm more secure using "What is the answer to this question?" or some such bollocks.

  • Jay (unregistered)

    We had one just like the apostrophe issue in a system I'm working on today. The web page has a bunch of program-generated Javascript, and the original programmer apparently couldn't figure out how to properly escape quotes, so he just stripped double quotes from the string and blew up if it had single quotes.

    BTW, in the same system, when I originally inherited it there were 10 different functions to apply HTML escapes to strings. One function just escaped quotes, another just escaped less thans, another escaped quotes and ampersands, another escaped less thans and ampersands, etc, for all sorts of combinations. The best I can figure is that instead of writing one function that escaped everything that needs escaping and using it everywhere, they didn't bother to escape anything until something failed. Then they said, Oh, this field had an ampersand in it, I'd better write a function to escape ampersands. Then later they'd have something fail because a field had a less-than, so they said, Oh, I'd better write a function to escape less-than's, etc.

  • Jay (unregistered) in reply to Decius
    Decius:
    Carl:
    Security questions are TRWTF. Usually much easier to guess than the password they are "protecting".

    Since I don't forget passwords, if they force me to have a security question, but let me write my own I make it "What is your password?"

    Really? I figure that since the answers are probably in plaintext somewhere, I'm more secure using "What is the answer to this question?" or some such bollocks.

    I always ignore the question and just enter a password as the answer, something different from my regular password. I use the same password for all the security questions for any given site, so I just have one extra password to write down. One site did block me from having the same answer to all three of their security questions.

    Among my favorite security questions:

    "Who was the manufacturer of your first car?" Let's see, a hacker could guess GM, Ford, Chrysler, Honda, Toyota, ... probably get it within 10 guesses most of the time. (Okay, the most likely values would be different for different countries, but I suspect you often know what country your victim lives in.)

    "What is your favorite color?" This is a sexist one. Men only know the names of about a dozen colors: red, green, blue, yellow, orange, black, white, brown, maybe a few more. You could guess a man's favorite color pretty quickly. Women have colors like "taupe" and "eggshell" and "burgundy" and hundreds of others that I have no idea what they look like, so this might be a reasonably secure password for a woman.

  • moz (unregistered) in reply to badcaseofspace
    badcaseofspace:
    This message occurs if you're not the Creator/Owner of a folder, but you somehow do have the "Change Permissions" right on it.
    Being able to reproduce something doesn't make it any less of a WTF. It just makes the original image less likely to be Photoshopped.
  • kjordan (unregistered)

    I'm guessing the problem with the "yrs ago" one is that they didn't encode the <.

  • Carl (unregistered) in reply to Decius
    Decius:
    Carl:
    Security questions are TRWTF. Usually much easier to guess than the password they are "protecting".

    Since I don't forget passwords, if they force me to have a security question, but let me write my own I make it "What is your password?"

    Really? I figure that since the answers are probably in plaintext somewhere, I'm more secure using "What is the answer to this question?" or some such bollocks.
    I didn't say the answer to my security question is the same as my real password. Just that the question, itself, is a subtle hint to the uber-script-kiddie that he might as well move along to the next victim.

    By the way, are hackers ever girls? If not, what does this say for the deplorable state of equality in our society?

  • (cs) in reply to Carl
    Carl:
    By the way, are hackers ever girls? If not, what does this say for the deplorable state of equality in our society?

    Or perhaps this says something about the deplorable ethics of males in our society.

    Now excuse me while I rape a few towns and pillage a few women.

    Then again, there was Angelina Jolie prior to her boob job.

  • TKW (unregistered) in reply to badcaseofspace
    badcaseofspace:
    If you haven't seen the Permissions dialog before, you probably have no business poking around on the Security tab.
    That's correct.
    badcaseofspace:
    This message occurs if you're not the Creator/Owner of a folder, but you somehow do have the "Change Permissions" right on it.
    That's not correct. (This happens if your effective permissions have the right to modify but not view current permissions. Creator / Owner doesn't necessarily have anything to do with it)
    badcaseofspace:
    Creator/Owner is a special property of an NTFS object that always has the right to read/change permissions, regardless of NTFS settings.
    That's not correct. (The owner always has the right to WRITE permissions, not necessarily to READ them)
  • (cs) in reply to Carl
    Carl:
    By the way, are hackers ever girls? If not, what does this say for the deplorable state of equality in our society?
    In Europe, I think. I know this one sexy-ass Hungarian hacktrix.
  • (cs) in reply to badcaseofspace
    badcaseofspace:
    If you haven't seen the Permissions dialog before, you probably have no business poking around on the Security tab.
    I know none of my users have ever seen it!
  • Hortical (unregistered) in reply to KattMan
    KattMan:
    Or perhaps this says something about the deplorable ethics of males in our society.

    I think it's more like it highlights the feminine bias in the ethical standards of our society.

    For cavemen, theft, rape and murder were just normal things to do (not to your own tribe of course). Nowadays, everyone is a member of the same tribe, so who am supposed to kill?

  • (cs) in reply to Decius
    Decius:
    Carl:
    Security questions are TRWTF. Usually much easier to guess than the password they are "protecting".

    Since I don't forget passwords, if they force me to have a security question, but let me write my own I make it "What is your password?"

    Really? I figure that since the answers are probably in plaintext somewhere, I'm more secure using "What is the answer to this question?" or some such bollocks.
    Really? I figure that if the answer may be used to reset my password, storing answers in plaintext would make the site's security worthless no matter what question/answer I use.

  • (cs) in reply to Jay
    Jay:
    You could guess a man's favorite color pretty quickly.
    Pink?
  • Larry (unregistered)

    Since you never know if your password is going to be stored in plain text, or sent by email, or other stupidities, I find it is better just to not have any.

  • Shinji (unregistered)

    The interesting part is that the nslookup <insert parameter here> entry still has those wtf's all over it.

  • zunesis (unregistered) in reply to hoodaticus
    hoodaticus:
    Jay:
    You could guess a man's favorite color pretty quickly.
    Pink?
    Just like my favorite place!
  • (cs) in reply to Jay
    Jay:
    "What is your favorite color?" This is a sexist one. Men only know the names of about a dozen colors: red, green, blue, yellow, orange, black, white, brown, maybe a few more. You could guess a man's favorite color pretty quickly.
    Not quite true. As demonstrated a while back by xkcd*, the average man also knows more interesting colors, like "gay", "dunno" and "wtf?" (Which, given a security question like "what is your favorite color", I'd argue that "wtf" is a perfectly reasonable answer.)

    That said, when I'm given the ability to answer my own security question, I do in fact often go for "what's your password?" Reasoning being that the reason I "forgot" the password in the first place probably had something to do with the silly hoops they made me jump through to find a password that fit the site's criteria, and those criteria rarely apply to security questions. What I really should do is just write the criteria in the security question, at which point it would remind me what I might have made the password, and I could thereby avoid resetting anything. But I haven't been that smart.

    EDIT:

    Hortical:
    Nowadays, everyone is a member of the same tribe, so who am supposed to kill?
    Aliens, obviously (at least if you go by pop culture.)

  • (cs) in reply to Larry
    Larry:
    Since you never know if your password is going to be stored in plain text, or sent by email, or other stupidities, I find it is better just to not have any.
    +1 for creepy hacker innuendo.
  • (cs)

    ARGHHH... pet peeve:

    Single Quote (or just Quote) is this: " Double Quote is this: ""

    ' is an apostrophe

    // And yes, maybe I am the one in fault since the apostrophe has to have a matching pair, but the time it took from my VB6 days of explaining to another coder to type "Your Entry"""&Entry&""" made me weep.

  • (cs) in reply to matthewr81
    matthewr81:
    ARGHHH... pet peeve:

    Single Quote (or just Quote) is this: " Double Quote is this: ""

    ' is an apostrophe

    // And yes, maybe I am the one in fault since the apostrophe has to have a matching pair, but the time it took from my VB6 days of explaining to another coder to type "Your Entry"""&Entry&""" made me weep.

    No, single quotes are curved at the bottom in the direction of the thing they are quoting. This is different from an apostrophe, which is vertical or forward-slanting, and an accent mark, which forward slants above a vowel.

  • The Great Lobachevsky (unregistered) in reply to Carl
    Carl:
    By the way, are hackers ever girls? If not, what does this say for the deplorable state of equality in our society?

    It says they are smart enough to keep quiet about it.

  • (cs) in reply to matthewr81
    matthewr81:
    ARGHHH... pet peeve:

    Single Quote (or just Quote) is this: " Double Quote is this: ""

    ' is an apostrophe

    // And yes, maybe I am the one in fault since the apostrophe has to have a matching pair, but the time it took from my VB6 days of explaining to another coder to type "Your Entry"""&Entry&""" made me weep.

    Wikipedia disagrees with you. http://en.wikipedia.org/wiki/Quotation_mark

    (Apparently, Askimet agrees with you, because it tried to prevent me from posting this)

  • (cs)

    What I do for the whole security question thing is make a randomly generated string and store it alongside my password.

    Once I had to read one over the phone to somebody... that was awkard.

    "Capital O, lowercase E, six, quotation mark, nine, that thing on the key to the left of 1, lowercase M."

  • anonymouser (unregistered) in reply to The Great Lobachevsky
    The Great Lobachevsky:
    Carl:
    By the way, are hackers ever girls? If not, what does this say for the deplorable state of equality in our society?

    It says they are smart enough to keep quiet about it.

    Don't know many girls, do you? They can't keep quiet about anything.

  • Hortical (unregistered) in reply to Jaime
    Jaime:
    Wikipedia disagrees with you.

    Isn't that a logical fallacy? An information source where truth is determined by who spends the most amount of time editing articles?

    Argumentum ad Geekum?

  • ted (unregistered) in reply to neminem
    neminem:
    The average man also knows more interesting colors...
    I didn't even click on the link and knew it was some fag linking xkcd. It's not clever. It's not funny. Just the word "colors" with a link under it and the short, useless, one sentence post was all I needed to know that you were linking the cartoon where the men demonstrate their knowledge of other "colors".

    It was funny to read when it came out. It's even funny when clicking on the Random button on the site and seeing it. It's NOT funny when someone links to it from a one-sentence post and thinks they're so fucking clever to have discovered xkcd.

    You probably still use lmgtfy and think you're so damn clever.

    It means in real life, you're an unoriginal hipster doofus.

    Got anything to do with sanitizing inputs to a SQL database, etc.? Link to Bobby Tables. Got a nerd-project slow-ass turing machine? Like a minecraft logic circuit from redstone? Link to the one where it's some guy alone in the world making a computer out of rocks. Got a story about password security or encryption? Link to the one where they beat the password out of the guy with a wrench.

    Fuck off. You're not clever.

  • (cs) in reply to ted
    ted:
    neminem:
    The average man also knows more interesting colors...
    I didn't even click on the link and knew it was some fag linking xkcd. It's not clever. It's not funny. Just the word "colors" with a link under it and the short, useless, one sentence post was all I needed to know that you were linking the cartoon where the men demonstrate their knowledge of other "colors".

    It was funny to read when it came out. It's even funny when clicking on the Random button on the site and seeing it. It's NOT funny when someone links to it from a one-sentence post and thinks they're so fucking clever to have discovered xkcd.

    You probably still use lmgtfy and think you're so damn clever.

    It means in real life, you're an unoriginal hipster doofus.

    Got anything to do with sanitizing inputs to a SQL database, etc.? Link to Bobby Tables. Got a nerd-project slow-ass turing machine? Like a minecraft logic circuit from redstone? Link to the one where it's some guy alone in the world making a computer out of rocks. Got a story about password security or encryption? Link to the one where they beat the password out of the guy with a wrench.

    Fuck off. You're not clever.

    Wow. You must have a huge penis!

  • ted (the other one) (unregistered) in reply to Someone You Know
    Someone You Know:
    ted:
    neminem:
    The average man also knows more interesting colors...
    I didn't even click on the link and knew it was some fag linking xkcd. It's not clever. It's not funny. Just the word "colors" with a link under it and the short, useless, one sentence post was all I needed to know that you were linking the cartoon where the men demonstrate their knowledge of other "colors".

    It was funny to read when it came out. It's even funny when clicking on the Random button on the site and seeing it. It's NOT funny when someone links to it from a one-sentence post and thinks they're so fucking clever to have discovered xkcd.

    You probably still use lmgtfy and think you're so damn clever.

    It means in real life, you're an unoriginal hipster doofus.

    Got anything to do with sanitizing inputs to a SQL database, etc.? Link to Bobby Tables. Got a nerd-project slow-ass turing machine? Like a minecraft logic circuit from redstone? Link to the one where it's some guy alone in the world making a computer out of rocks. Got a story about password security or encryption? Link to the one where they beat the password out of the guy with a wrench.

    Fuck off. You're not clever.

    Wow. You must have a huge penis!

    Are you new here?

  • Peter (unregistered) in reply to Carl
    Carl:
    Security questions are TRWTF. Usually much easier to guess than the ******** they are "protecting".

    Since I don't forget passwords, if they force me to have a security question, but let me write my own I make it "What is your ********?"

    I can't quite make out what you're trying to say here.

  • (cs) in reply to Hortical
    Hortical:
    Jaime:
    Wikipedia disagrees with you.

    Isn't that a logical fallacy? An information source where truth is determined by who spends the most amount of time editing articles?

    Argumentum ad Geekum?

    I thought about the fact that a Wikipedia reference is pretty weak before I posted. But, then I realized that I didn't want to spend the time looking up a more authoritative source just for an Internet argument. If anybody really cares, they'll look it up themselves. If Wikipedia is blatanty wrong, someone will gleefully point it out to me. It's more argumentum ad put-it-out-there-um.

    Besides, I never said Wikipedia was right, I just mentioned that Wikipedia contradicted his statement. Everyone is free to assign whatever weight they feel is appropriate to it.

  • (cs) in reply to ted (the other one)
    ted (the other one):
    Someone You Know:
    ted:
    neminem:
    The average man also knows more interesting colors...
    I didn't even click on the link and knew it was some fag linking xkcd. It's not clever. It's not funny. Just the word "colors" with a link under it and the short, useless, one sentence post was all I needed to know that you were linking the cartoon where the men demonstrate their knowledge of other "colors".

    It was funny to read when it came out. It's even funny when clicking on the Random button on the site and seeing it. It's NOT funny when someone links to it from a one-sentence post and thinks they're so fucking clever to have discovered xkcd.

    You probably still use lmgtfy and think you're so damn clever.

    It means in real life, you're an unoriginal hipster doofus.

    Got anything to do with sanitizing inputs to a SQL database, etc.? Link to Bobby Tables. Got a nerd-project slow-ass turing machine? Like a minecraft logic circuit from redstone? Link to the one where it's some guy alone in the world making a computer out of rocks. Got a story about password security or encryption? Link to the one where they beat the password out of the guy with a wrench.

    Fuck off. You're not clever.

    Wow. You must have a huge penis!

    Are you new here?

    That's very unlikely.

    --

    who wouldn't do that?

    --

    Brillant

    --

    Grow up

    --

    Lyle could have done it better

  • (cs) in reply to matthewr81
    matthewr81:
    ARGHHH... pet peeve:

    Single Quote (or just Quote) is this: " Double Quote is this: ""

    ' is an apostrophe

    // And yes, maybe I am the one in fault since the apostrophe has to have a matching pair, but the time it took from my VB6 days of explaining to another coder to type "Your Entry"""&Entry&""" made me weep.

    Dear me, that takes me back to when I once had to write a command script in DCL and it featured two strings of single asterisks each about 9 long. Can't remember what for now, I remember thinking "wtf am I doing?" but at the time I could not think of a better way of putting together what was intended to be a limited-use maintenance tool. Ah, those were the days when you could get computers to really do stuff.

  • (cs) in reply to ted
    ted:
    I didn't even click on the link and knew it was some fag linking xkcd.
    Gee, I wonder how you figured that out without clicking on the link. Possibly because I frelling tagged it as "according to xkcd", with the link off to the side so people like you wouldn't even have to be bothered by its existence? Anyway, laughing at posts like yours are pretty much the reason for the "obligatory xkcd link" in the first place. (Though, in this particular case, I also had a point: that those "colors" were more applicable than usual to this particular color discussion.)

    That said, I won't argue the "unoriginal" nor the "doofus", though I might take offense to being called a hipster. (I'm not sure where you would get a link between posting unoriginal links to web comics and, say, listening to indie rock while drinking crappy overpriced beer.)

  • (cs) in reply to Jaime
    Jaime:
    Hortical:
    Jaime:
    Wikipedia disagrees with you.

    Isn't that a logical fallacy? An information source where truth is determined by who spends the most amount of time editing articles?

    Argumentum ad Geekum?

    I thought about the fact that a Wikipedia reference is pretty weak before I posted. But, then I realized that I didn't want to spend the time looking up a more authoritative source just for an Internet argument. If anybody really cares, they'll look it up themselves. If Wikipedia is blatanty wrong, someone will gleefully point it out to me. It's more argumentum ad put-it-out-there-um.

    Besides, I never said Wikipedia was right, I just mentioned that Wikipedia contradicted his statement. Everyone is free to assign whatever weight they feel is appropriate to it.

    As Wikipedia would point out, the appeal to authority is a logical fallacy, so the source being Wikipedia does not invalidate the facts being claimed.

    Simultaneously, Wikipedia does not consider itself to be a reliable source.

    I'm pretty sure that's an unresolvable paradox.

  • ih8u (unregistered) in reply to Hortical
    Hortical:
    KattMan:
    Or perhaps this says something about the deplorable ethics of males in our society.

    I think it's more like it highlights the feminine bias in the ethical standards of our society.

    For cavemen, theft, rape and murder were just normal things to do (not to your own tribe of course). Nowadays, everyone is a member of the same tribe, so who am supposed to kill?

    If you're really asking, I vote for Carl, who started this mess.

    I agree that a stark inequality might cause people to stop and inspect, but maybe the smart girls are just too busy being doctors and lawyers and not working with fat, ugly computer geeks like Carl.

  • (cs) in reply to Decius
    Decius:
    Carl:
    Security questions are TRWTF. Usually much easier to guess than the password they are "protecting".

    Since I don't forget passwords, if they force me to have a security question, but let me write my own I make it "What is your password?"

    Really? I figure that since the answers are probably in plaintext somewhere, I'm more secure using "What is the answer to this question?" or some such bollocks.
    Mine tends to be "why aren't you looking up the password in your password manager?"

  • (cs) in reply to ih8u
    ih8u:
    Hortical:
    KattMan:
    Or perhaps this says something about the deplorable ethics of males in our society.

    I think it's more like it highlights the feminine bias in the ethical standards of our society.

    For cavemen, theft, rape and murder were just normal things to do (not to your own tribe of course). Nowadays, everyone is a member of the same tribe, so who am supposed to kill?

    If you're really asking, I vote for Carl, who started this mess.

    I agree that a stark inequality might cause people to stop and inspect, but maybe the smart girls are just too busy being doctors and lawyers and not working with fat, ugly computer geeks like Carl.

    Just more of me to love...

  • Even More Secure (unregistered) in reply to Decius
    Decius:
    Carl:
    Security questions are TRWTF. Usually much easier to guess than the password they are "protecting".

    Since I don't forget passwords, if they force me to have a security question, but let me write my own I make it "What is your password?"

    Really? I figure that since the answers are probably in plaintext somewhere, I'm more secure using "What is the answer to this question?" or some such bollocks.
    I normally just store the MD5 hash of the password. That way I can make sure it's encrypted.

  • (cs) in reply to Even More Secure
    Even More Secure:
    Decius:
    Carl:
    Security questions are TRWTF. Usually much easier to guess than the password they are "protecting".

    Since I don't forget passwords, if they force me to have a security question, but let me write my own I make it "What is your password?"

    Really? I figure that since the answers are probably in plaintext somewhere, I'm more secure using "What is the answer to this question?" or some such bollocks.
    I normally just store the MD5 hash of the password. That way I can make sure it's encrypted.
    Personally I find base64 encrypting much better.

  • Carl (unregistered) in reply to Peter
    Peter:
    Carl:
    Security questions are TRWTF. Usually much easier to guess than the ******** they are "protecting".

    Since I don't forget passwords, if they force me to have a security question, but let me write my own I make it "What is your ********?"

    I can't quite make out what you're trying to say here.
    Try changing your ******** to "hunter2" then reload the page.

Leave a comment on “High-level Usage”

Log In or post as a guest

Replying to comment #352808:

« Return to Article