99

My CTO everyone:

"You don't have to assert proper permissions in the backend for this user role, they won't guess the URL anyway. just hide the links"

Yikes.. fml.

Comments
  • 7
    @Null-Device I'm interested in this story, how did it end?
  • 3
    @Null-Device is there a link to this story plz?
  • 2
    @Null-Device thanks!
    What a story, and i think they should recruit him to make some kind of public service instead of arresting him. What a waste.
  • 6
    @Null-Device oh wow... some people are really really really fucking dumb, I hope he got a good lawyer because this is insane, arresting someone because they downloaded public information off a government website? What kind of bullshit is that?!
    Then again... an investigative reporter has been shot in the head for doing his work here in Slovakia... There are ongoing protests but I am losing hope there will be justice.
    #allforjan
  • 0
    To be fair, as someone who’s had to use poorly documented apis, this cto has a point
  • 4
    Mmmmm, security by obscurity
  • 1
    I've heard about similar scandals more than once around my country, never as huge as that one though.
  • 0
    That's ducked up...poor kid
  • 0
    Sounds a lot likes me 🤔 but I don't think you worked for me.
Add Comment