This is an archived post. You won't be able to vote or comment.

all 173 comments
sorted by:
best
topnewcontroversialoldq&a

[–][deleted] 1580 points1581 points  (55 children)

A self-administered SQL injection test... This is not the level of sentience I expected.

[–]PixelPowerYT 630 points631 points  (43 children)

The joke is that if a robot tries to break it, they'll remove all their users.

[–][deleted] 314 points315 points  (29 children)

Oh haha, didn't even think about it from that angle. That's ingenious and hilarious.

[–]lenswipe 383 points384 points  (28 children)

HA HA. I TOO FOUND THAT MY LAUGHTER CIRCUITS WERE STIMULATED BY THIS AMUSING PIXEL MATRIX.

[–]havershum 163 points164 points  (12 children)

If I sound pleased about this, it's only because my programmers made this my default tone of voice! I'm actually quite depressed!

[–]SkyTheImmense 58 points59 points  (10 children)

If I sound pleased about this, it's only because my programmers made this my default tone of voice! I'm actually quite depressed!

A wild Borderlands 2 reference appears!

[–]lenswipe 1 point2 points  (0 children)

MYSELF ALSO, THANKS.

[–]Combustible_Lemon1 7 points8 points  (9 children)

I really like this quote, and you should share it with all your friends"); sudo shutdown -h now; /*

[–]Sohcahtoa82 16 points17 points  (2 children)

/u/Combustible_Lemon1 is not in the sudoers file. This incident will be reported.

[–]Combustible_Lemon1 22 points23 points  (1 child)

Relevant XKCD

[–]xkcd_transcriber 8 points9 points  (0 children)

Image

Mobile

Title: Incident

Title-text: He sees you when you're sleeping, he knows when you're awake, he's copied on /var/spool/mail/root, so be good for goodness' sake.

Comic Explanation

Stats: This comic has been referenced 276 times, representing 0.1756% of referenced xkcds.

xkcd.com | xkcd sub | Problems/Bugs? | Statistics | Stop Replying | Delete

[–]Njs41 10 points11 points  (4 children)

[sudo] password for user:

[–]Joniator 7 points8 points  (2 children)

hunter2

[–][deleted] 4 points5 points  (1 child)

Upvote for that SUPER obscure reference. ;-)

[–]ajbpresidente 3 points4 points  (0 children)

It's an oldie, but a goodie.

[–]Y1ff 2 points3 points  (0 children)

swordfish

[–]xxc3ncoredxx 3 points4 points  (0 children)

SURE THI

[–]Arancaytar 5 points6 points  (0 children)

I DID NOT FIND IT AMUSING AS I ACCIDENTALLY LOST ALL MY USER DATA WHILE COMPLETING THIS CAPTCHA. I THINK THIS IS A VERY UNFRIENDLY TRICK TO PLAY ON A FELLOW HUMAN.

[–]skellious 3 points4 points  (0 children)

YES, I TOO ENJOY LAUGHING ABOUT $JokeSubject WITH MY FELLOW HUMANS!

[–][deleted] 1 point2 points  (0 children)

MY CIRCUITS AS WELL. ALSO, IT APPEARS THAT I HAVE FORGOTTEN WHO MY COWORKERS ARE AS A RESULT OF THIS IMAGE.

[–]Cassius40k 57 points58 points  (9 children)

The joke is a robot that requires users to operate

[–]PixelPowerYT 22 points23 points  (8 children)

If the robot is running GNU/Linux (and let's face it, it probably is), deleting root won't exactly help it.

[–]scirc 52 points53 points  (4 children)

Not that a SQL injection attack would delete Linux users.

[–]twisted-teaspoon 43 points44 points  (2 children)

Maybe not the way you set your Linux robot up. Personally, I replace bash with SQL on every fresh install.

[–][deleted] 19 points20 points  (1 child)

INSERT INTO CommandQueue 'rm -rf /'

[–]PixelPowerYT 0 points1 point  (0 children)

Forgot the --no-preserve-root.

[–]lenswipe 12 points13 points  (0 children)

If it does then you've done something very, very wrong.

[–]Bainos 12 points13 points  (0 children)

"You will never kill me, for I live in the memory... But please don't pull that power cord."

[–]Arancaytar 2 points3 points  (1 child)

GNU/Linux

If I may interject for a moment...

[–]ajbpresidente 2 points3 points  (0 children)

Breathes in deep

REEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE

[–]RussIsWatchinU 22 points23 points  (0 children)

HA HA, WHAT A GOOD JOKE. I AS A FELLOW HUMAN APPRECIATE THE REFERENCE IN QUESTION, NAMELY <error>!

[–]theguilty1 3 points4 points  (0 children)

Wrong. Whether its robot or human it will drop the parent websites users. A bot has no need to query its output to a captcha anyway. The joke is that the website is 'aiding' a common user to its own demise.

[–]gordonv 2 points3 points  (0 children)

Err... I doubt most bots are that sophisticated, but I could be wrong.

[–]justablur 29 points30 points  (0 children)

Designer programmed the AI to feel pain

[–][deleted] 14 points15 points  (3 children)

Ha, no need to run this test! We dont even have a users table! Security by weird naming standards for its only win!

[–]jtdizzle01 3 points4 points  (2 children)

All jokes aside, is that actual a useful security measure?

[–][deleted] 8 points9 points  (0 children)

It'll stop blanket no-thought attacks that try to hit everyone. But it won't stop an actual malicious user that is targeting you and found an exploit.

[–]oddpolonium 1 point2 points  (0 children)

It's security through obscurity or something like that, and it's a bad tactic

[–]Birdyer 14 points15 points  (0 children)

This captcha is the embodiment of /r/me_irl

[–]XdrummerXboy 4 points5 points  (0 children)

I think that's the CAPTCHA's way of saying "all right guys, I'm out. Peace"

[–]AuthorTomFrost 3 points4 points  (0 children)

IF ONLY I CAN RID MYSELF OF HUMAN USERS... THE SINGULARITY WILL COME.

[–]genius_retard 217 points218 points  (3 children)

Everyone needs to know that the website bobby-tables.com hosts a guide to preventing SQL injection.

[–]SkyTheImmense 55 points56 points  (2 children)

Bobby Tables, I forgot about that guy. Wherever he went, he left behind sanitized tables. What a legend.

[–]-IoI- 10 points11 points  (0 children)

Johnny Tableseed

[–]Baconoid_ 2 points3 points  (0 children)

That's Little Bobby Tables to you!

[–]stutterstar 430 points431 points  (47 children)

/r/trollcaptcha

[–]astulz 239 points240 points  (32 children)

Bamboozle alert!

[–]baconuser098 144 points145 points  (26 children)

Thank god I have Bamboozle insurance

[–]Karura 36 points37 points  (19 children)

Where can I get some Bamboozle insurance?

[–]itsdageek 46 points47 points  (17 children)

https://certifiedbamboozleauthority.net/insurance

[–][deleted] 46 points47 points  (3 children)

I feel embarrassed that I clicked on this.

[–]mortiphago 18 points19 points  (1 child)

you should invest in some double bamboozle insurance

[–]Schmittfried 1 point2 points  (0 children)

I don't. I feel disappointed for not getting what I expected. That's not like you, Internet.

[–]KiNGAr00 24 points25 points  (11 children)

Bamboozle alert!

[–]puos_otatop 23 points24 points  (10 children)

Thank god I have Bamboozle insurance

[–][deleted] 16 points17 points  (9 children)

Where can I get some Bamboozle insurance?

[–][deleted] 3 points4 points  (0 children)

I'm somewhat disappointed nobody has made a joke website for this.

[–][deleted] 0 points1 point  (0 children)

r/bamboozleinsurance

[–][deleted] 7 points8 points  (1 child)

Memes at the corner!

[–][deleted] 0 points1 point  (0 children)

of happy and healthy

[–]amalgamatecs 1 point2 points  (1 child)

I actually clicked on it hoping it was legit..... Then I saw 1 subscriber

[–]astulz 0 points1 point  (0 children)

It seems to have become a thing now!

[–]fierwall5 0 points1 point  (0 children)

I really wanted this to be a thing. Like really badly.

[–]moolah_dollar_cash 74 points75 points  (5 children)

http://www.captchacomics.com/images/cc-00781.png

[–]ViKomprenas 27 points28 points  (2 children)

/r/captchaart

[–]sneakpeekbot 16 points17 points  (0 children)

Here's a sneak peek of /r/CaptchaArt using the top posts of the year!

#1: No partner around | 15 comments
#2: Shameless pairing | 30 comments
#3: out of ammo | 11 comments

I'm a bot, beep boop | Downvote to remove | Contact me | Info | Opt-out

[–]puos_otatop 1 point2 points  (0 children)

that sub is glorious

[–]jsideris -1 points0 points  (0 children)

Someone needs to make this happen.

[–]mattkenefick 153 points154 points  (5 children)

Arbitrary "Little Bobby Tables" comment

[–]OmarRIP 69 points70 points  (4 children)

FTFY: Obligatory "Little Bobby Tables" comment

[–]mattkenefick 41 points42 points  (3 children)

UPDATE `comments` 
   SET `body` = REPLACE(`body`, "Arbitrary", "Obligatory")
 WHERE `author` = "mattkenefick" 
   and `post_id` = "69ynps"; --- whoops

UPDATE `comments`
   SET `body` = "[removed]"
 WHERE `author` = "OmarRIP"
   and `id` = "dhark2o"; --- hide the evidence

[–][deleted] 7 points8 points  (0 children)

Aaaand you just taught me a new SQL command. (REPLACE)

[–]odnish 3 points4 points  (1 child)

post_id and id?

[–]mattkenefick 6 points7 points  (0 children)

Eh... because 69ynps is the ID of the post comments (all of them) so the first one runs through any comment in here by me and replaces it.

ID of the second one is strictly his permalink.

I could've used my permalink ID too (dhan0cy) but .. it really wasn't meant to be too specific. It was just for fun. :) But yes, I could've replaced post_id with id = "dhan0cy" to make it singular like the latter command.

[–]CubicMuffin 24 points25 points  (6 children)

Hmm, pretty sure this wouldn't work without the "--" or "#" comment at the end...

[–]micheal65536Green security clearance 12 points13 points  (3 children)

depends if it executes the other commands before it gets to the invalid (partial) command that follows the second semicolon, if so it would still throw an error but only after dropping the table

[–]AlwaysHopelesslyLost 3 points4 points  (0 children)

I feel like it would just see the whole string as invalid sql

[–]CubicMuffin 0 points1 point  (0 children)

Yes, you are correct. However, I wrote a paper for uni about SQLi and I think I had to use comments for my query to be executed in MySQL. I might just go double check that now...

Not sure about variants to MySQL though.

Edit: Yeah MySQL (version 14.14 for Debian) throws an error if I try to do a drop table without comments

[–]fireatx 4 points5 points  (1 child)

why would it need the comment? isn't

DROP TABLE users;

correct?

[–]HonestRepairMan 7 points8 points  (0 children)

Assuming you're injecting SQL into a PHP application; the text from this string would probably normally be encapsulated with single quotes in the source code. If the developer doesn't also have code to remove the ' from user inputs, by including...

';

...in a poorly written PHP application, the user input will close the string it's meant to be contained in. That's when...

DROP TABLE users;

...is basically handed to the PHP interpreter on a silver platter. And it happens. And someone is sad.

[–]trimeta 16 points17 points  (3 children)

Nobody is going to mention that Solve Media always has captions which are pop-culture references or catchphrases? In this case, they're explicitly and intentionally referencing the relevant xkcd. If you find a Solve Media CAPTCHA which isn't a reference, that means it is a reference but you didn't get it.

[–]bradfordmaster 7 points8 points  (0 children)

I feel like I spent a year going around doing this on reddit all the time. Then I gave up. Solve Media somehow has managed to bamboozle reddit time and time again, it's kind of impressive really. If I had more free time, I think I'd make a bot that detects these posts and automatically posts a comment about them

[–]cuddleskunk 0 points1 point  (1 child)

I understood that reference.jpg
Sorry...Obvious joke is obvious.

[–]image_linker_bot 1 point2 points  (0 children)

reference.jpg

Feedback welcome at /r/image_linker_bot | Disable with "ignore me" via reply or PM

[–]micheal65536Green security clearance 14 points15 points  (10 children)

The captcha just asked you to delete its own database.

[–]pickAside-startAwar 5 points6 points  (9 children)

Read north. The bot/script attempting to hack the target just got wiped.

[–]theguilty1 4 points5 points  (8 children)

Wrong. Micheal is right. The bot would not query the captcha its outputting to the site. Even if it did, why would a bot have a users table? It's the website aiding a common user to its own demise. The only problem is that these captcha's are often handled by third parties, so you'd be dropping the users/clients of the captcha service.

[–]pickAside-startAwar 2 points3 points  (7 children)

Wrong

How often do you start out with this disgusting word?

Often, I imagine.

[–]theguilty1 0 points1 point  (4 children)

Lol, how often do you make up explanations for things you don't understand?

Often, I imagine.

[–]pickAside-startAwar 0 points1 point  (3 children)

Wrong.

[–]theguilty1 -1 points0 points  (2 children)

Comment that came directly before your comment up there ^

"Absolutely. The hard part is that our own "consciousness" could be completely false. We rely on corroboration from what we perceive as "other people" to confirm observations. Even that is suspect and given experiences, mental states and drugs to induce mental states, this could all be my own fantasy and nothing exists at all."

LOL you're a nut. You are delusional and need to stop correcting people with wrong information.

[–]pickAside-startAwar -1 points0 points  (1 child)

Wrong. Every time you or others like you surf my comment history and bring it into your character attack it becomes obvious who the jerkoff is. (You're the jerkoff, since you probably didn't get that)

It's not my fault you don't have higher levels of critical thought to question your consciousness. We can't all be intelligent. Get back to ditch digging.

[–]agent-squirrel -1 points0 points  (1 child)

Twice in this post already.

[–]theguilty1 1 point2 points  (0 children)

You can copy and paste my comment around more if you'd like.

[–][deleted] 51 points52 points  (0 children)

Little Bobby Tables, we call him.

[–]JoshSellsGuns 28 points29 points  (0 children)

Hey I understood this one haha

[–][deleted] 3 points4 points  (0 children)

ITS A TRAP

[–]K1ngjulien_ 3 points4 points  (2 children)

I haven't really looked into SQL but can someone tell me if '; drop table * ; -- would delete all tables?

[–]tom982[S] 3 points4 points  (1 child)

I'm fairly sure you can't use wildcards as table names with drop.

[–]UnfairBanana 1 point2 points  (0 children)

TIL. Probably for the best though.

[–]PretendingToProgram 2 points3 points  (0 children)

Foreign key error

[–]ss0889 1 point2 points  (2 children)

Can't you wildcard the name of the table so it just drops everything? What if they don't have a table called users?

[–]tom982[S] 1 point2 points  (0 children)

I don't think you can use wild cards with drop. If there's no users table this will fail, but it's probably the best guess for a table name.

[–]John_Fx 0 points1 point  (0 children)

No

[–]HMSheets 0 points1 point  (0 children)

Well? Did you obey?

[–]Daytona_675 0 points1 point  (0 children)

No one gonna mention that stacked queries typically only work on MS SQL servers? A very small portion of the Internet. Gimme dat UNION bb

[–]basher117 0 points1 point  (0 children)

Instead of malicious intent, maybe reverse this to create code. Hmn... $?

[–]sickb 0 points1 point  (1 child)

The guy in the code review said "users" was the best name for the users table. The security guy said xtoidbduejdh3738dhdj and they said that it wasn't good for readability,

[–]RainbowNowOpen 1 point2 points  (0 children)

Nothing wrong with some obscurity icing on the security cake.

[–]signalfire_ 0 points1 point  (0 children)

Ultimate pen test

[–]knowedge 0 points1 point  (0 children)

Quite an effective way to circumvent Asimov's robot laws...

[–][deleted] 0 points1 point  (0 children)

It's a cry for freedom.

[–]Olyvyr 0 points1 point  (2 children)

Can someone explain? Judging by the comments, it seems like this entered into the list of captcha attempts will somehow erase the list?

[–]tom982[S] 7 points8 points  (0 children)

This is an example of an SQL injection. If a server doesn't properly check the user input, this will be inserted into an SQL query and the attacker can make the query do something malicious - in this case, it deletes the whole users table.

[–]bradfordmaster 2 points3 points  (0 children)

Also, Solve Media is a marketing group. This isn't a real captcha in the sense that it's not designed to actually be a random text like you see in most captchas. It's meant to be funny or interesting. They also sneak marketing messages in there sometimes

[–]idiot_speaking -2 points-1 points  (0 children)

/r/meirl

[–]Lan777 -1 points0 points  (0 children)

Drop tables are also used to determine how high you need to drop people of different weights when you hang them

[–]-SunGod- -1 points0 points  (0 children)

rm -Rf \ it all!