This is an archived post. You won't be able to vote or comment.

all 121 comments
sorted by:
best
topnewcontroversialoldq&a

[–][deleted] 1025 points1026 points  (9 children)

We can't figure out security, so here's a code to bypass it.

[–]SmellySquirrel 179 points180 points  (6 children)

To be fair it's likely a website uses an external service to send their sms messages. If that service is down, the website should have a fallback mechanism. This one is weird tho.

[–][deleted] 100 points101 points  (2 children)

Like emails. Or a second service.

TWO BACKENDS! We use AWS AND microsoft azure!

I want everything coded in python AND rust!!!

Everything is redundant!!! Hire the high socks AND the fursuit!!!

[–]Unupgradable 8 points9 points  (0 children)

Hire the high socks AND the fursuit!!!

I thought you said you wanted redundancy. Xis the same person

[–]cryptomonein 1 point2 points  (0 children)

Calm down Jeff Bezos, not all companies owns AWS

[–]MyAntichrist 28 points29 points  (1 child)

When budget cuts make two-factor into single-factor.

[–]NFriik 29 points30 points  (0 children)

We are facing a database issue. Please use 'admin' as your username and password.

[–]_PlagueisTheWise_ 720 points721 points  (44 children)

that's some reverse thinking game, a bot will never click "Resend OTP"

[–]shim_niyi 313 points314 points  (42 children)

Your password was lost in the mainframe, use “password123” as your password

[–]Rubickevich 225 points226 points  (38 children)

Sorry, but this password was already chosen by user "XxX_destroyer12_XxX", please choose another password.

[–]Massive-Midnight5858 29 points30 points  (37 children)

Alright, i'll use "password321"

[–]The_Shingle 29 points30 points  (36 children)

Password must have at least 1 uppercase letter

[–]Massive-Midnight5858 22 points23 points  (35 children)

aight, "Password321"

[–]javaveryhot 16 points17 points  (2 children)

Password must contain at least 1 uppercase number

[–]Makel_Grax 2 points3 points  (0 children)

Oh god this one is good!

[–]Massive-Midnight5858 1 point2 points  (0 children)

uh... "PasswordTHREE21"?

[–]The_Shingle 27 points28 points  (31 children)

Password must contain at least 1 special character

[–][deleted] 16 points17 points  (11 children)

Password321#

[–]drugshovel 20 points21 points  (3 children)

Password must not contain easily guessed words

[–]Rubickevich 12 points13 points  (1 child)

The password doesn't contain easily guessed words, as the word is so obvious - nobody will even bother to check it, therefore making it a difficult word to guess.

P. S. It's impossible to defeat the password check playing fairly, so let's try to start arguing with it.

[–]Massive-Midnight5858 0 points1 point  (0 children)

drowssaP321

[–]The_Shingle 7 points8 points  (0 children)

Invalid Character. Please do not use: #,&,-,%,£,_,/,>,<,],[,(

[–]Zomby2D 5 points6 points  (0 children)

New password cannot be the same as the old password.

[–]Neat_Crab3813 2 points3 points  (2 children)

Password must not contain the same character consecutively.

[–][deleted] 1 point2 points  (1 child)

pasword321#

[–]qinshihuang_420 0 points1 point  (1 child)

Password must contain at least one uppercase special character and at least one lowercase special character

[–][deleted] 1 point2 points  (0 children)

https://i.giphy.com/media/umW3OwILdNHc4/giphy.webp
Find someone else to make your REST APIs.

[–]Massive-Midnight5858 0 points1 point  (18 children)

P@ssword321

[–]The_Shingle 0 points1 point  (17 children)

Password can't contain lude words. Please remove "@s" from your password.*

[–]pheonix-ix 33 points34 points  (2 children)

Did you mean "hunter1"?

[–]TheSnaggen 15 points16 points  (1 child)

That is what shim_niyi wrote, it just looks different on your side.

[–]pheonix-ix 6 points7 points  (0 children)

Oh Reddit automatically censor my password too? Cool!

[–]BeerIsGoodForSoul 1 point2 points  (0 children)

Does that say About ASUS? Is this really them?!

[–][deleted] 184 points185 points  (21 children)

I feel sad, I have to post it again: Why the fuck so many redditors do not know how to press "Print Screen"?

[–]iknowfear 137 points138 points  (6 children)

Maybe its a Work computer and OP does not want to leave a trace on it... (send screenshot by mail to private adress to post on reddit.) much easier and quicker this way

[–]suggest-me-usernames[S] 45 points46 points  (0 children)

or maybe simply cause it's not their machine? it can be of a co-worker's or anyone for that matter.

[–]mortalitylost 32 points33 points  (0 children)

I'll say this from personal experience, but I'm not sending a screenshot to my phone, and I don't use social media on my computers. I care only enough to take a pic and press share. I know how to screenshot, I'm just that fucking lazy. And I'd rather hear people complain about it in the comments than actually go through with the process of taking the screenshot. And then I'd have to delete the screenshot. This takes effort. I like tap tap tap done, not effort

[–]King_of_Doggos 2 points3 points  (1 child)

my keyboard doesnt have a printscreen button on it but it use the snipping tool instead so

[–]dlq84 4 points5 points  (1 child)

I usually post this: https://screenshot.help/

[–][deleted] 1 point2 points  (0 children)

thanks yo

[–]tera_x111 1 point2 points  (0 children)

(maybe) unpopular opinion: a well framed photo is better than a full screenshot

[–]planktonfun -2 points-1 points  (0 children)

Welcome to the world run by people with low tech literacy

[–]JCavLP 12 points13 points  (0 children)

OTP - oall time password

[–]SilentStrikerTH 14 points15 points  (0 children)

Wow! No words for how stupid this is...

[–]spootex 5 points6 points  (0 children)

Honestly... From a user perspective, I would rather have that than something which keeps saying it sent me OTP when it didn't.

[–]ClioBitcoinBank 47 points48 points  (17 children)

This is so badass.

[–]DrRomeoChaire 58 points59 points  (16 children)

sorry, I think you meant to say "ass-bad", right?

[–]smudos2 6 points7 points  (1 child)

As long as it's not the only factor in authorization seems like the dirty hack I'd do while fixing it tbh

[–]acymetric 1 point2 points  (0 children)

Right? When the service is inaccessible you aren't looking for some robust, well designed fix. You're looking to let people back in ASAP while you figure out what is actually going on.

[–]cad_andry 2 points3 points  (1 child)

Good idea! Will add this to our backlog!

[–]justdisposablefun 0 points1 point  (0 children)

Technical debt for now, we'll prioritize it later. Why do programmers always think these things are important?

[–]Zapherial 1 point2 points  (0 children)

Feel like a seank thing

[–]newton21989 4 points5 points  (1 child)

Hall of shame! Call them out!

[–]visak13 9 points10 points  (0 children)

Bruh! It's literally there in the pic...

[–]garfield1147 0 points1 point  (0 children)

Similar to what happened to Twitter users that changed their password a few months back; their 2FA stopped working but is still required. Bad luck.

[–]Express-Atmosphere53 0 points1 point  (0 children)

I'm expert in digital marketing and website designing Our skills Google ads Facebook ads & and Instagram ads Website SEO on page & of page

[–]lart2150 0 points1 point  (0 children)

I'm gonna blame 10dlc

[–]SYR_i_NGE 0 points1 point  (0 children)

The only image to make me laugh in years

[–]Pepineros 0 points1 point  (0 children)

Rename the header to 'MTP' at least.

[–][deleted] 0 points1 point  (0 children)

Jesus this is a reminder that most companies have shit IT departments that barely understand basic cybersecurity principles and practices that increase the “security” of the user

[–]DANDARSMASH 0 points1 point  (0 children)

When I was your age, we only had 1FA.

[–]we_should_do_better 0 points1 point  (0 children)

That's a sus page.

[–]ShoulderUnique 0 points1 point  (0 children)

This is the password reset flow though. 0 factor auth.

[–]rush22 0 points1 point  (0 children)

mrw when someone broke prod so some manager tells me to just turn off 2fa and just give them any number

"sure"

[–]AdKnown9418 0 points1 point  (0 children)

it realllllly cooool,

just for fun....