Print Story A Day in the Life
Working life
By ReallyEvilCanine (Thu May 18, 2006 at 06:20:35 AM EST) A Day in the Life, cubicle, LOL What, WTF, pie (all tags)
LOL What?!

LOLLERSKATES!

I can't stop laughing!

I had a look at the queue of incoming tickets and stumbled across this one:

Can you tell us if $YourBigApp is secure from the following:
  1. Buffer Overflow
  2. SQL Injection
  3. Script Injection
  4. URL Injection
Now guess which customer it was.

x-posted flom da brog



llollerskates

Microsoft

roflcopter

Yes, that company actually submitted those questions. I forwarded it in a mail to the worldwide SysAdmin team with my dream response:

It will be when yours is.

I can't help wondering that if we answer "Yes" that they'll come back with "So how do you do it?"

There's no way in the world I'm taking that ticket because there's no possible way I'd be able to stop myself including my dream response, so I have to settle for a big glass of LMAOnade and leave this one for someone else.

While technically correct, my answer would get way too much attention from upper management. Not the good kind of attention but rather the kind that could quite possibly interfere with my addictions to food and four walls.

One guy who this was forwarded to wrote back saying his dream response would've been "Sure, if you install it on UNIX." Unfortunately $OurBigApp runs in MainWin, so even though $OurBigApp runs on stable machines, it does so in an inherently unstable and insecure manner.

I'll be in a good mood for a while today.

< You were working as a waitress in a cocktail bar | BBC White season: 'Rivers of Blood' >
A Day in the Life | 6 comments (6 topical, 0 hidden) | Trackback
oh nice by tps12 (4.00 / 2) #1 Thu May 18, 2006 at 07:06:15 AM EST
I forwarded it in a mail to the worldwide SysAdmin team with my dream response
That took some balls, dude.

The ballsiest part was the mail's subject line by ReallyEvilCanine (4.00 / 2) #4 Thu May 18, 2006 at 07:31:55 AM EST
"OMG Ponies!!!1!shiftoneshiftone ROFFLE"

Most of our techno-tards have no clue about Teh Riel Intarweb. I am so going to get busted within a few months.

A few managers saw it but the way I phrased it ad having done it only through an internal mail (along with the fact that I didn't actually take the ticket and send the response) led to chuckles even from them. None of us like being Windows-based. Except maybe Ripa even though she still doesn't understand the concept of "My Documents" appearing in different (il)logical locations depending on the OS version.

the internet: amplifier of stupidity -- discordia

[ Parent ]
Missed it by Bob Abooey (2.00 / 0) #2 Thu May 18, 2006 at 07:11:37 AM EST
I was gonna guess either Citrix or Yahoo mail.

Warmest regards,
--Your best pal Bob

'LMAOnade' (nt) by DesiredUsername (2.00 / 0) #3 Thu May 18, 2006 at 07:14:44 AM EST


---
Now accepting suggestions for a new sigline
Technically, the answer is yes. by Rogerborg (4.00 / 1) #5 Thu May 18, 2006 at 09:59:02 AM EST
Note carefully what they've actually asked.  You wouldn't want to confuse them by liberally interpreting their question, and doing something silly like giving then an accurate answer as to whether your app is actually secure or not.

-
Metus amatores matrum compescit, non clementia.
Diplomacy by ucblockhead (4.00 / 1) #6 Thu May 18, 2006 at 01:35:46 PM EST
"Yes. All our applications are based on Microsoft APIs and technologies and are thus as rock-solid as they are."
---
[ucblockhead is] useless and subhuman
A Day in the Life | 6 comments (6 topical, 0 hidden) | Trackback