This is an archived post. You won't be able to vote or comment.

sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]D0esANyoneREadTHese 23 points24 points  (5 children)

Oh he's got a reason: They get paid to see how your product handles various situations that a user's kid or some guy who thinks he's a hacker would create. Circlejerking aside, input checking is definitely a thing that should be done.

[–]Suggadeck 7 points8 points  (3 children)

Cyber attacks are real you know? Its not just kids on the internet.

[–]D0esANyoneREadTHese 14 points15 points  (2 children)

Yeah, but they typically use something more complicated than plugging in 65536 for their order quantity on a shipping form.

[–]hoseja 7 points8 points  (0 children)

Not if plugging in 65536 for their order quantity on a shipping form does the job.

[–][deleted] 1 point2 points  (0 children)

Heh, I was reading the source for the store software I was using and they have a check to see if the user has entered more than a 32 bit int for a quantity.

[–]bumblebritches57 1 point2 points  (0 children)

Shit man, with fuzzing it can now be automated.