this post was submitted on 09 Feb 2024
3 points (100.0% liked)

Software Gore

5295 readers
1 users here now

Welcome to /c/SoftwareGore!


This is a community where you can poke fun at nasty software. This community is your go-to destination to look at the most cringe-worthy and facepalm-inducing moments of software gone wrong. Whether it's a user interface that defies all logic, a crash that leaves you in disbelief, silly bugs or glitches that make you go crazy, or an error message that feels like it was written by an unpaid intern, this is the place to see them all!

Remember to read the rules before you make a post or comment!


Community Rules - Click to expand


These rules are subject to change at any time with or without prior notice. (last updated: 7th December 2023 - Introduction of Rule 11 with one sub-rule prohibiting posting of AI content)


  1. This community is a part of the Lemmy.world instance. You must follow its Code of Conduct (https://mastodon.world/about).
  2. Please keep all discussions in English. This makes communication and moderation much easier.
  3. Only post content that's appropriate to this community. Inappropriate posts will be removed.
  4. NSFW content of any kind is not allowed in this community.
  5. Do not create duplicate posts or comments. Such duplicated content will be removed. This also includes spamming.
  6. Do not repost media that has already been posted in the last 30 days. Such reposts will be deleted. Non-original content and reposts from external websites are allowed.
  7. Absolutely no discussion regarding politics are allowed. There are plenty of other places to voice your opinions, but fights regarding your political opinion is the last thing needed in this community.
  8. Keep all discussions civil and lighthearted.
    • Do not promote harmful activities.
    • Don't be a bigot.
    • Hate speech, harassment or discrimination based on one's race, ethnicity, gender, sexuality, religion, beliefs or any other identity is strictly disallowed. Everyone is welcome and encouraged to discuss in this community.
  9. The moderators retain the right to remove any post or comment and ban users/bots that do not necessarily violate these rules if deemed necessary.
  10. At last, use common sense. If you think you shouldn't say something to a person in real life, then don't say it here.
  11. Community specific rules:
    • Posts that contain any AI-related content as the main focus (for example: AI “hallucinations”, repeated words or phrases, different than expected responses, etc.) will be removed. (polled)


You should also check out these awesome communities!


founded 1 year ago
MODERATORS
 

If spammers can abuse something, they gonna abuse it

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 0 points 9 months ago* (last edited 9 months ago) (3 children)

What would be a solution? How do you know Albert/III.jr is not a valid name?

[–] [email protected] 0 points 9 months ago

Falsehoods programmers believe about names is always a great read.

[–] [email protected] 0 points 9 months ago (1 children)

never trust user input. the web site should be looking for and filtering this shit out.

the other one (the submission page at the university, was right above this one in my 'all' feed) shows it better--with a full valid link in a text box. should be filtered and rejected by the form submission handler and never inserted into the database. in the case of no 'http' as part of it, links still follow a format, and those should be rejected too.

mod_security filters that shit out on my sites, the rules on what's allowed in a form field hardly ever get 'tested' anymore since i turned that on.

[–] [email protected] 1 points 9 months ago (1 children)

Never trusting user input, sure. That, I know. And probably the university's devs do as well.

However, it's not the university's website's fault that the email client is converting the name to a link.

So what you're saying is, email clients should not convert link-like text to actual clickable links. Correct?

[–] [email protected] 0 points 9 months ago

the university's form allowed the link or link-like string in the text field. that's on them.

mail clients should at least be warning users about links it converts from text into clickable markup. yes.

[–] [email protected] 0 points 9 months ago (3 children)

it's a valid name but it shouldn't add the hyperlink.... wait a moment....

*** went to check the source of the emails that i received ***

the senders (i'm targeted by an asshole that did this on hundreds on sites) DIDN'T add any hyperlink, this is a huge security issue by gmail: they're automatically adding hyperlinks! This is very stupid, especially with the new google domains .zip and .mov. Someone sends an email like "attached there's bank-statement.zip" and then gets phished

[–] [email protected] 1 points 9 months ago* (last edited 9 months ago)

I was just going to point out that it's the responsibility of the email service to filter that as well.

It was a big bug ticket at my company, that our email service kept automatically turning plaintext to links like www.example.com for convenience. We couldn't fix it on our side at all.

Edit: lol either Lemmy or my Lemmy app also turns plaintext links into real links! www.Rofl.lol

[–] [email protected] 1 points 9 months ago

You've landed on this page because you followed a link for a .zip file. This domain was registered to prevent its misuse for potentially harmful or malicious activities.

Well, what do ya know. There's still some good guys out there.

[–] [email protected] 1 points 9 months ago

Email clients and web browsers making anything that vaguely looks like a link clickable is nothing new.