Programmer Humor

28789 readers

326 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

Keep content in english
No advertisements
Posts must be related to programming or programmer topics

founded 2 years ago

MODERATORS

Feyter@programming.dev

anzo@programming.dev

BurningTurtle@programming.dev

pylapp@programming.dev

352

Mo Validation Mo Problems (lemmy.world)

submitted 1 week ago* (last edited 5 days ago) by qaz@lemmy.world to c/programmer_humor@programming.dev

68 comments fedilink hide all child comments

...

you are viewing a single comment's thread
view the rest of the comments

[–] planish@sh.itjust.works 5 points 5 days ago (1 children)

If the password is going in URLs you already have a problem.

[–] Quibblekrust@thelemmy.club 1 points 2 days ago (1 children)

It's safe for https.

[–] planish@sh.itjust.works 1 points 1 day ago (1 children)

In terms of the transport, sure.

But if you put the password in a URL, the user's browser is going to turn around and store that plaintext password in its history, then sync it to the user's other devices, and then pop it up on their screen in the address bar autocomplete, perhaps when the user is screen sharing or streaming to hundreds of people. The browser does not expect a password to be stored there and will mishandle it.

[–] Quibblekrust@thelemmy.club 2 points 1 day ago

Nah, if you type a password in a url, it gets turned into asterisks. Look: https://google.com/?password********************