738
Little Bobby Tables (imgs.xkcd.com)
top 36 comments
sorted by: hot top controversial new old
[-] teft@lemmy.world 104 points 1 year ago

I will always upvote Little Bobby Tables.

[-] bobbytables@lemmy.world 56 points 1 year ago
[-] pgetsos@kbin.social 58 points 1 year ago

Suddenly, very relatable today...

[-] Reliant1087@lemmy.world 19 points 1 year ago

I was just thinking how the developer of kbin made a post regarding a similar bug in kbin and some people made fun of him for missing something so obvious, and here we are 🤨

[-] glorious_albus@lemmy.world 44 points 1 year ago

There's only two kinds of people:

  1. Those who know no system is fool proof.
  2. Dumbasses.
[-] Reliant1087@lemmy.world 9 points 1 year ago

I think everyone is on a journey from 2 -> 1, some just get there sooner than others :)

[-] nottheengineer@feddit.de 3 points 1 year ago

I'd call the second group fools because those are generally the ones that the system is trying to be safe against.

[-] Hypersapien@lemmy.world 1 points 1 year ago

Foolproofness is an asymptote. It's not achievable but we can always get closer.

[-] marcos@lemmy.world 0 points 1 year ago

If you are creating some software in 2023, it should not be vulnerable to SQL injection.

There's no "but" or "unless".

I really wished the presentation layer and session management had that kind of clear interfaces, instead we are stuck into only solving some 99.9% of CSS and 90% of CSRF. But SQL injection is 100% complete solved for good.

[-] snooggums@kbin.social 11 points 1 year ago

The best developers can admit they missed something, fix it, and move on to the next thing.

[-] Rhaedas@kbin.social 8 points 1 year ago

The difference is that here lots of people posted about it and action was taken. If this was corporate owned, any suggestions of a problem would have been removed or denied, and months later after it hits public media they would have admitted there might have been a problem, and here's some free identity theft protection if you feel like you were affected.

[-] Reliant1087@lemmy.world 3 points 1 year ago

True. Looking at lemmy GitHub, it looks like everyone is swamped.

[-] EliasChao@lemmy.one 5 points 1 year ago
[-] sedawk@sh.itjust.works 8 points 1 year ago

Because there was a xss bug in Lemmy cause by not escaping some inputs

[-] teft@lemmy.world 7 points 1 year ago* (last edited 1 year ago)

Because he doesn't know the difference between an SQL injection and a Cross site scripting attack.

Link for those who would like to learn more.

[-] pgetsos@kbin.social 22 points 1 year ago

Or because both relate to not sanitizing your input

[-] glorious_albus@lemmy.world 14 points 1 year ago

Yeah lol. What is up with the condescension?

[-] null@slrpnk.net 2 points 1 year ago

Reddit migration side-effects.

[-] VanillaGorilla@kbin.social 41 points 1 year ago

Bobby Tables is probably old enough for his own kid, Cross Site Samantha. I bet she created a Lemmy account recently.

[-] Stan@lemmywinks.com 1 points 1 year ago

I had her naked vids on VHS in 1982 before I rode my dinosaur to GemCo.

[-] ShakeThatYam@lemmy.world 24 points 1 year ago

I have a cousin whose driver's license name is "FNU" which stands for first name unknown. This was due to some quirk in his immigration documents. I cannot imagine how much havoc this must cause.

[-] ech@lemm.ee 4 points 1 year ago

Oh man, there's this really good Radiolab episode (Null) about weird name stuff in databases. One story they got is from a guy who made his license plate NULL thinking it would be able to avoid tickets, but it ended up being the other way around.

[-] ediblerope@lemmy.world 2 points 1 year ago

Tickets were able to avoid him?

[-] ech@lemm.ee 4 points 1 year ago

More-so he got every ticket filed under NULL.

[-] bettyspaghetti@kbin.social 13 points 1 year ago

As a data engineer for the past decade, Bobby Tables has been this shared cultural reference in my industry for years. I will always upvote Bobby Tables.

[-] bobbytables@lemmy.world 12 points 1 year ago
[-] Aceticon@lemmy.world 7 points 1 year ago* (last edited 1 year ago)

In the old days you could do a lot of damage to a lot of websites with this kind of trick...

Mind you, it's only because nowadays libraries for processing web-requests and for feeding SQL queries to databases automatically do all kinds of escaping of special characters and sanitizing of inputs that things are a lot better: in my experience the "average" dev out there doesn't really has much awareness about security-adjacent concerns like "sanitize inputs coming from the outside" (and no, you can't trust Javascript on the browser for that) and, besides, tons of companies outsourced their code making work to places like India were far too many "devs" are people with zero skill for it who joined the Industry because demand was so big that anybody who knows the right side of the keyboard to type on is hired and then outsourced to some western suckers in management as a "senior developer".

[-] Corkyskog@sh.itjust.works 1 points 1 year ago

Haha the outsourcing stuff is kind of hilarious. They just usually churn and burn people through products and somehow they use it as a selling point... "Don't like your team, you can easily adjust with new members equally skilled instantly!"

So they just move people through projects, and eventually they usually learn enough coding to remain.

[-] Aceticon@lemmy.world 3 points 1 year ago

From my own experience, which even included managing a small outsourced team in India, I concluded that whilst they do have as many good devs in that country as elsewhere, their own pay scale structure pushes the good ones into management (were they usually suck) to be able to get a raise, and due to the extra demand due to the outsourcing industry for developers over there, which is well above and beyond what most countries have, the normal proportion of naturally good devs is drowned in a sea of mediocre types who have no actual skill and would never had gone into IT otherwise. Also the best guys (and a few gals) usually leave to go earn a lot more in places like the US and UK.

In my own experience with this, we (a small very senior team based in London) were forced by management to use the work of the guys in India because the company had spent lots of money setting up a division there for it, and in practice we ended up spending just as much time fixing their code as we would have spent doing it right ourselves in the first place, so at least in my team the company was just wasting money.

Funnilly enough the few guys we had based in London that came from the Indian Subcontinent (so not just India but also Pakistan, Banglasdesh and even Sri Lanka) were significantly better than the guys from that outsourcing division in India.

[-] MentalEdge@sopuli.xyz 5 points 1 year ago
[-] trouser_mouse@lemmy.world 3 points 1 year ago
[-] avidamoeba@lemmy.ca 4 points 1 year ago* (last edited 1 year ago)

Bobby Tables has at some point or another been a part of every online community backed by a SQL database.

[-] Lucidlethargy@sh.itjust.works 3 points 1 year ago

I've not seen this one before, but it might be my new all-time favorite.

[-] Hypersapien@lemmy.world 2 points 1 year ago

Really? That's probably the most famous XKCD ever. It's surprising that anyone who understands it has never seen it before.

[-] thorbot@lemmy.world 2 points 1 year ago
[-] CannedTuna@sh.itjust.works 2 points 1 year ago

Alt Text: Her daughter is named Help I'm trapped in a driver's license factory.

load more comments
view more: next ›
this post was submitted on 10 Jul 2023
738 points (95.8% liked)

General Discussion

11946 readers
1 users here now

Welcome to Lemmy.World General!

This is a community for general discussion where you can get your bearings in the fediverse. Discuss topics & ask questions that don't seem to fit in any other community, or don't have an active community yet.


🪆 About Lemmy World


🧭 Finding CommunitiesFeel free to ask here or over in: !lemmy411@lemmy.ca!

Also keep an eye on:

For more involved tools to find communities to join: check out Lemmyverse!


💬 Additional Discussion Focused Communities:


Rules

Remember, Lemmy World rules also apply here.0. See: Rules for Users.

  1. No bigotry: including racism, sexism, homophobia, transphobia, or xenophobia.
  2. Be respectful. Everyone should feel welcome here.
  3. Be thoughtful and helpful: even with ‘silly’ questions. The world won’t be made better by dismissive comments to others on Lemmy.
  4. Link posts should include some context/opinion in the body text when the title is unaltered, or be titled to encourage discussion.
  5. Posts concerning other instances' activity/decisions are better suited to !fediverse@lemmy.world or !lemmydrama@lemmy.world communities.
  6. No Ads/Spamming.
  7. No NSFW content.

founded 1 year ago
MODERATORS