Cross-posted from Husi.
I can't stop laughing!
I had a look at the queue of incoming tickets and stumbled across this one:
Can you tell us if $YourBigApp is secure from the following:Now guess which customer it was.
- Buffer Overflow
- SQL Injection
- Script Injection
- URL Injection
I can't help wondering that if we answer "Yes" that they'll come back with "So how do you do it?"
There's no way in the world I'm taking that ticket because there's no possible way I'd be able to stop myself including my dream response, so I have to settle for a big glass of LMAOnade and leave this one for someone else.
While technically correct, my answer would get way too much attention from upper management. Not the good kind of attention but rather the kind that could quite possibly interfere with my addictions to food and four walls.
One guy who this was forwarded to wrote back saying his dream response would've been "Sure, if you install it on UNIX." Unfortunately $OurBigApp runs in MainWin, so even though $OurBigApp runs on stable machines, it does so in an inherently unstable and insecure manner.
I'll be in a good mood for a while today.