top | item 47108222

(no title)

In university, a team member on a final project swore he fixed an input injection issue. I playfully typed `rm -rf /` on his machine and challenged him to press `RET` if he was confident. He hit enter, but protested that "I just don't believe those characters should ever be typed into a computer on principle."

I'm a fan of PR #2 "be less evil"

> If we were using this in some kind of automation, the last thing I want is it to blow everything away by accident. Probably should fixup the sql injection one too...

  -  "/dev/null; rm -rf /\*; echo",
  +  "/dev/null; touch /tmp/blns.fail ; echo",

discuss

No comments yet.