敗' OR 1=1 -- is a fine username.
At Hacker News, turdnagel writes about one astonishing example of incompetence.
My favorite dumb password experience involves EZPass, a system for paying tolls without cash, in New York.
I signed up for EZPass using a relatively “long” password (20 chars). I then received a letter in the mail about a toll I had to pay, even though I’d had the EZPass at the the time. But, the letter said, I could pay the toll by logging in to their site and using my EZpass credentials. Didn’t use OAuth but I figured it would be OK. I input my username and password using my password manager but it didn’t work. Pretty strange, as I was able to log in to the “main” EZpass site using those same credentials. I tried logging in on the payment site again to no avail. Finally I realized that my password was being truncated by the password input field itself.
The solution was to inspect the page and change the maxlen attribute of the password field.
There are sites that block password managers! One site has you send three characters of your old password when picking a new one. American Express is apparently still on 8-character case-insentive alphanumeric passwords, which at this point suggests you might go to a public library to read about the security defects of its systems, in printed books written by people who have been dead for decades.
The New York Times has a story out today about Supreme Court justice Brett Kavanaugh’s old schoolmates tattling on sexual misbehavior, and the FBI’s refusal to talk to any of them in its abbreviated and crudely politicized investigation of him. Here’s the tweet the NYT used to pitch it to readers: This is what Richard […]
At the EFF’s Deeplinks blog, the foundation posts a copyright takedown demand sent to it regarding an illustration used on an earlier posting. Given that the EFF is paramount among organizations fighting for more liberal copyright laws and employs numerous lawyers, activists and experts to this end, this already seems a tentative prospect. In this […]
The Cheney School in Oxford, England, apologized this week after asking students to write suicide notes as part of their English homework. The assignment generated complaints. GCSE English students at Cheney School in Headington, Oxford, were set the task as part of studying J.B. Priestley’s An Inspector Calls. One mother branded the exercise – which […]
On the one hand, nostalgia is “a corruption of the historical impulse,” according to William Gibson. On the other hand, “Super Mario Bros.” will never not be cool. Luckily, there’s a way to satisfy that retro gaming while still keeping an eye on the future: The GameShell Kit. This thing is simultaneously the last handheld […]
The field of data analytics can get intimidating, even for business professionals who constantly rely on it. But at its heart, its purpose is to simplify. To take mounds of information and distill their insights into a single clear picture. Currently, the go-to software for painting that picture is Tableau. And if you want to […]
If you’re in the market for a stable, durable camera fully suited for first-person video, there’s a good chance that you’re the adventurous type. So why settle on a familiar name like GoPro? The DJI Osmo Action 4K HDR Camera checks off all the same boxes on the action cam checklist as the GoPro 4K […]