I wrote a dorm network management system based on Perl and MySQL years ago. I was pretty careful to feed all the form inputs to DBI::quote(), but apparently not careful enough. No one was cruel enough to slip in a DROP TABLE, but I did get a couple of snotty mails including bits of database rows that no one should be able to see.
"nastygrams" we call those. They can be fun for all involved, if written properly between good-natured participants. Just on Friday we learned that COLLEAGUE would be bringing cookies every day next week; next time he'll lock his computer before lunch, especially if BOSS is planning to stop by.
(I don't see any cookies today. In fact I don't see COLLEAGUE today. Taking a sick day is an extreme response, in my opinion.)
![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png)
moominmolly) wrote2007-10-10 10:43 am
no subject
I wrote a dorm network management system based on Perl and MySQL years ago. I was pretty careful to feed all the form inputs to DBI::quote(), but apparently not careful enough. No one was cruel enough to slip in a DROP TABLE, but I did get a couple of snotty mails including bits of database rows that no one should be able to see.
no subject
(I don't see any cookies today. In fact I don't see COLLEAGUE today. Taking a sick day is an extreme response, in my opinion.)