bajax on Nostr: fishsticks DK Wrath anime graf mays 🛰️🪐 redditeur basically, in programming ...
fishsticks (npub1u9g…8gl5) DK (npub1rkc…fnl9) Wrath (npub1q2j…crzn) anime graf mays 🛰️🪐 (npub108z…dkr5) redditeur (npub1ecu…jkzt) basically, in programming for anything that hooks up to a network you have to think at every step of the way, "How could this be exploited?" You are writing code that's going to be run on OTHER people's hardware, you have to think very carefully about what your code exposes to outsiders.
The problem here is that this wasn't some obscure vulnerability, some unforeseen consequence of connecting an outside text processing library with a newfangled webdingus in a way that allows prostate buffer overflow nobody ever expected-- it's literally just letting outsiders dump files of any type on your system in an HTTP-accessible directory.
It's hard to explain to people who don't program how basic this oversight is, but it's kind of outrageous.
As for why I didn't fix it myself,
The problem here is that this wasn't some obscure vulnerability, some unforeseen consequence of connecting an outside text processing library with a newfangled webdingus in a way that allows prostate buffer overflow nobody ever expected-- it's literally just letting outsiders dump files of any type on your system in an HTTP-accessible directory.
It's hard to explain to people who don't program how basic this oversight is, but it's kind of outrageous.
As for why I didn't fix it myself,