Words that are excluded from "secret questions"

Cory Doctorow 3:26 am Fri May 14, 2010

The Sacramento Credit Union's online banking service appears to have learned some hard lessons about SQL code-injection attacks as they apply to "secret questions":

The answers to your Security Questions are case sensitive and cannot contain special characters like an apostrophe, or the words "insert," "delete," "drop," "update," "null," or "select."

My friend Danny O'Brien (or, as many services have it, Danny O\'\'\'\'\'\'\'Brien) has pointed out that millions of Irish people have a built-in PHP attack right there in their names. When I was a kid, I used to fantasize about changing my middle name to "+++ATH."

Good times.

Sacramento Credit Union

(via Making Light)

Previously:

Humans a becoming whales in the Internet's digital ocean

Rebecca Giggs' book Fathoms, subtitled "The World in the Whale," is a deep exploration of those largest of Earthlings, from the abject despair of a whalefall to the yawning poetry… READ THE REST
AI app morphs man into uncanny female persona

This video demonstrates just how advanced AI filters have become. In the clip, a man uses an AI app to transform his appearance into that of a woman in real-time… READ THE REST
"Scathing" reviews of AI Pin that's supposed to replace your cellphone

For $700 and a $24 monthly subscription, a tiny wearable computer—the Humane AI Pin—will free you from your phone. Just tap it, talk to it, and it'll do what you… READ THE REST
Save $169 on a lifetime license to Microsoft Windows 11 Pro and never look back

TL;DR: Revamp your digital world with this incredible lifetime license to Microsoft Windows 11 Pro, with its seamless interface and top-notch security, for only $29.97 (Reg. $199) until 11:59 PM on 1/07.… READ THE REST
Upgrade your tech for the new year with this refurbished iPad Pro, less than half price right now

TL;DR: Save over $350 on a refurbished Apple iPad Pro 10.5" 256GB, plus a free accessories bundle, with this sweet deal on sale for just $315.99 right now. Tech fans, it's time… READ THE REST
Make your rockstar dreams a reality for only $15.97 with this Guitar Lessons Training Bundle

TL;DR: The perfect last-minute holiday gift for an aspiring rocker, the 2024 Guitar Lessons Training Bundle is only $15.97 (Reg. $480) until 11:59 PM on 12/25. It's really never too late to make… READ THE REST