Openning Python program
Chris Angelico
rosuav at gmail.com
Mon Feb 7 14:53:24 EST 2022
On Tue, 8 Feb 2022 at 06:51, Cecil Westerhof via Python-list
<python-list at python.org> wrote:
>
> Chris Angelico <rosuav at gmail.com> writes:
>
> >> > How difficult would it be to get people to read those lines, though?
> >>
> >> That does remind me about a system administrator who wanted to make a
> >> point. He changed something on the server so all the Windows computers
> >> started up and gave a message:
> >> If you want to continue: click Cancel
> >>
> >> The help-desk became flooded with calls. I think he did a great job of
> >> showing a vulnerability. But it was not appreciated and he was fired.
> >> :'-(
> >>
> >
> > First image in this collection:
> >
> > https://thedailywtf.com/articles/How-Do-I-Use-This
> >
> > For those who can't click on links, it's a screenshot of a
> > confirmation dialogue. The user asked to cancel all the current
> > transfers, and the system wanted to check that the user really wanted
> > to do that; if you do indeed want to cancel those transfers, click
> > "Cancel", but if you actually don't want to, click "Cancel" instead.
>
> His dialog was crystal clear. The problem was that most users just
> click OK without reading the message. And that was what his little
> experiment showed.
>
Ah. Yes, that... that sounds like a very familiar and serious vulnerability.
ChrisA
More information about the Python-list
mailing list