Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API

From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Search - "it-admin"
-
Met a guy in the gym, he asked me to make him an online shop for supplements.
I quickly made a reactive, angular based shop with an admin page.
He paid, I put my name as the creator, it was all good...
...then he removed all legal products and added tons of anabolic steroids for horses in little jars (yes, he even added pro level photos).
I received a call from the police and had to prove that I don't manage his content.14 -
Admin: "Wait, I noticed unusual traffic."
Me: "What is it?"
Admin: "Looks like we have a bot here."
Me: "A bot? Didn't know we are so popular."
Admin: "It makes constantly login requests through our API, it already surpassed 600.000! I will ban it right away."
Me: "wait, that just sounds like my bot.."
Admin: "DUDE, WTF? ARE YOU SERIOUS?"
When there is bug, you don't know of, it can end up quite embarrassing.11 -
My last internship (it was awesome). A programmer developed a vacation/free day request application for internal use.
Asked if I could test it for security.
The dev working on it thought that was a very good idea as he wasn't much into security and explained how the authentication process worked.
I immediately noticed a flaw just from his explanation. He said it was secure anyways (with an explanation but his way of thinking was wrong in this case). Asked if I was allowed to show him. He said he was intrigued by this so gave me a yes right away.
For the record, user levels were normal user, general admin and super admin (he was the only super admin).
Wrote a quick thingy server side (one of my own servers/domains) for testing purposes.
Then I started.
Went from normal user to super admin (his account) through a combination of XSS and Session Hijacking within 15 seconds.
Explained him where he went wrong and he wrote a patch under my guidance 😃.
That felt so fucking awesome.5 -
manager: we need to design an admin system for a veterinary centre
dev: ok, this is it, remember your training
class Dog extends Animal {}13 -
*Admin leaves his computer unlocked*
1. Takes a desktop screenshot and flips it and sets it as background.
2. Disables right click.
3. Hides taskbar.
4. Flips the screen.
5. Connects keyboard to another computer close by with screen off.
6. Has the time of the week.
*Hopefully, there is no revenge 😁*8 -
** The most hilarious authentication implementation I've ever seen **
They stored password in cleartext, but never mind, this is sadly quite common.
For some reasons credentials were also case insensitive (maybe to avoid silly tickets from CAPS LOCK lovers?).
Then I had a look to the query executed during the login:
SELECT * FROM users WHERE username LIKE ? AND password LIKE ?;
So I tried logging in with user "admin" and password "%"... and it worked!
I laughed all the day.30 -
Manager asked for access to server with admin rights for a third party contractor and I questioned him... His answer?
- Your are gonna give access to anyone that needs access.
I gave. Went for a 15 days vacation.
Our server got blocked by our cloud provider because of ssh brute force attempt coming from it and the company website went offline during a big ass meeting because of that.
Made me giggle :)11 -
Today I discovered that we have a CSV export button for an order transaction system, on a page which is completely disconnected from the rest of the website.
It is only being called by an internal server, used by our Data department.
They run selenium to click the button.
Then they import the CSV into a database.
That database is accessed by an admin panel.
That admin panel has an excel export button.
Which is clicked by our CFO. But he got bored of clicking, so he uses IFTTT to schedule a download of the XLS and import it in Google Sheets.
That sheet uses a Salesforce data connector.
Marketing then sends email campaigns based on that Salesforce data...
😒11 -
Someday my toaster is going to have an IP address. A bad automatic firmware update will most likely cause it to get stuck on the bagel setting until I plug a usb key in and reflash the memory.
Grandma's refrigerator will probably get viruses, lock itself and freeze all the food inside, demanding bitcoin before defrosting.
My blender will probably be used in a massive DDoS attack because Ninja's master MAC address list got leaked and the hidden control panel login is admin/admin.
Ovens will burn houses down when people call in to have them preheat on their way home from work.
Correlations between the number of times the lights are turned on and how many times the toilet is flushed will yield recommendations to run the dishwasher on Thursdays because it's simply more energy efficient.
My dog will tweet when he's hungry and my smart watch will recommend diet dog food in real-time because he's really been eating too much lately--"Do you want to setup a recurring order on Amazon fresh?"
Sometimes living in a cave sounds nice...12 -
My previous employer still (contractually) owes me $5k. I still have push access to the repo and prod servers. Should I add a reminder to the admin dashboard? (After yet another email reminder, ofc.)
I could also mail him an invoice, since I have his addresses. Then again, it has been about a year since I was supposed to receive it, so maybe I'll just file a lawsuit. 🙄
Should @Root sue her ex-boss?36 -
!rant
I was in a hostel in my high school days.. I was studying commerce back then. Hostel days were the first time I ever used Wi-Fi. But it sucked big time. I'm barely got 5-10Kbps. It was mainly due to overcrowding and download accelerators.
So, I decided to do something about it. After doing some research, I discovered NetCut. And it did help me for my purposes to some extent. But it wasn't enough. I soon discovered that my floor shared the bandwidth with another floor in the hostel, and the only way I could get the 1Mbps was to go to that floor and use NetCut. That was riskier and I was lazy enough to convince myself look for a better solution rather than go to that floor every time I wanted to download something.
My hostel used Netgear's routers back then. I decided to find some way to get into those. I tried the default "admin" and "password", but my hostel's network admin knew better than that. I didn't give up. After searching all night (literally) about how to get into that router, I stumbled upon a blog that gave a brief info about "telnetenable" utility which could be used to access the router from command line. At that time, I knew nothing about telnet or command line. In the beginning I just couldn't get it to work. Then I figured I had to enable telnet from Windows settings. I did that and got a step further. I was now able to get into the router's shell by using default superuser login. But I didn’t know how to get the web access credentials from there. After googling some and a bit of trial and error, I got comfortable using cd, ls and cat commands. I hoped that some file in the router would have the web access credentials stored in cleartext. I spent the next hour just using cat to read every file. Luckily, I stumbled upon NVRAM which is used to store all config details of router. I went through all the output from cat (it was a lot of output) and discovered http_user and http_passwd. I tried that in the web interface and when it worked, my happiness knew no bounds. I literally ran across the floor screaming and shouting.
I knew nothing about hiding my tracks and soon my hostel’s admin found out I was tampering with the router's settings. But I was more than happy to share my discovery with him.
This experience planted a seed inside me and I went on to become the admin next year and eventually switch careers.
So that’s the story of how I met bash.
Thanks for reading!10 -
Guys i guess i did it.. more than a year ago i started developing an API.. every admin of it could create new endpoints through the webui.. for rach endpoint you can create an own auth system.. a local company just fucking bought my shit.. a fucking simple API for 12k€.. im kinda proud now because i am only 1811
-
Guuuys! I made it! I just got my first job in IT as a Junior Sys Admin at a Security/Pen Testing company. So happy right now. Just wanted to share with you. :D8
-
Me: "Delete this folder"
Windows: "Oki, done."
Me: "How is it still there, F5. Still there! Hey, you forgot to delete this one file. Fix it."
Windows: "Nope."
Me: "Why?"
Windows: "Requires permissions."
Me: "Eh, it was my file, but here you are, my admin credentials."
Windows: "None shall pass."
Me: "Wtf, this is my computer. Who owns this file?"
Windows: "No one."
Me: "What do you mean? Oh, time for your reboot pills, ms. Wandows."
Windows: "Noooooo... ... ... Welcome."
Me: "Ha, the file is gone. Glorious victory."
Windows: "It's just a flash wound."
Credit for style: https://mobile.twitter.com/cmurator...4 -
Site (I didn't build) got hacked, lots of data deleted, trying to find out what happened before we restore backup.
Check admin access, lots of blank login submissions from a few similar IPs. Looks like they didn't brute force it.
Check request logs, tons of requests at different admin pages. Still doesn't look like they were targeting the login page.
We're looking around asking ourselves "how did they get in?"
I notice the page with the delete commands has an include file called "adminCheck".
Inside, I find code that basically says "if you're not an admin, now you are!" Full access to everything.
I wonder if the attack was even malicious.3 -
So apparently I got added to a Python dev group by a random person.
I thought okay cool I might learn new things and connect with some great people in the industry.
Turned out that it was just a bunch of noobs.
When I gave an honest response to a question asked by the admin (who turned out to be a noob as well), he kicked me out.
I honestly don't know if there's any official certification for Python other that the one I said.3 -
For fucks sake, Facebook....
Why the fuck are you showing me an add for MY FUCKING PAGE!!! I paid for that shitty add and you show it to me?!? Why the fuck would you do that?!?
You know that I'm the fucking admin and I ALREADY LIKED THE PAGE!!!
Get your fucking shit together mate! 😡4 -
University dorm admin story:
One guy had a problem with his ethernet cable. He broke RJ45 and wanted new one, so he asked on dorms group what to do. He was pointed to admin. So he grabbed a knife, cut the cable as close to wall as he could and walked with it to the admin guy. He said that he had problem with his cable and want new RJ45, so admin applied it on the both sides. Then he asked how to plug it back to the wall :D19 -
My boss fancies himself a tech. So he started exporting data from the users table. And deleting them after exporting them. You know so he can keep track of what he has exported. He deleted his own admin account in WordPress. And than asked me to remake it.5
-
After 2 years of working as a Linux admin, and over 6 years of using Linux as my only OS, I left my job, installed Windows and started a new, better paying and more perspective carrier as a .Net developer ... It's been 6 months, and I still miss the terminal ... I've been trying to get over it by using Babun and the Linux subsystem for Windows ... The thing is ... even though they are great, they are not as good as native stuff and the knowledge that it's not the real deal still haunts me :(
TL;DR: Left Linux 6 months ago ... still miss it to this day ... doubt I will ever get over it :( Feels bad guys22 -
Worst thing you've seen another dev do? So many things. Here is one...
Lead web developer had in the root of their web application config.txt (ex. http://OurPublicSite/config.txt) that contained passwords because they felt the web.config was not secure enough. Any/all applications off of the root could access the file to retrieve their credentials (sql server logins, network share passwords, etc)
When I pointed out the security flaw, the developer accused me of 'hacking' the site.
I get called into the vice-president's office which he was 'deeply concerned' about my ethical behavior and if we needed to make any personnel adjustments (grown-up speak for "Do I need to fire you over this?")
Me:"I didn't hack anything. You can navigate directly to the text file using any browser."
Dev: "Directory browsing is denied on the root folder, so you hacked something to get there."
Me: "No, I knew the name of the file so I was able to access it just like any other file."
Dev: "That is only because you have admin permissions. Normal people wouldn't have access"
Me: "I could access it from my home computer"
Dev:"BECAUSE YOU HAVE ADMIN PERMISSIONS!"
Me: "On my personal laptop where I never had to login?"
VP: "What? You mean ...no....please tell me I heard that wrong."
Dev: "No..no...its secure....no one can access that file."
<click..click>
VP: "Hmmm...I can see the system administration password right here. This is unacceptable."
Dev: "Only because your an admin too."
VP: "I'll head home over lunch and try this out on my laptop...oh wait...I left it on...I can remote into it from here"
<click..click..click..click>
VP: "OMG...there it is. That account has access to everything."
<in an almost panic>
Dev: "Only because it's you...you are an admin...that's what I'm trying to say."
Me: "That is not how our public web site works."
VP: "Thank you, but Adam and I need to discuss the next course of action. You two may go."
<Adam is her boss>
Not even 5 minutes later a company wide email was sent from Adam..
"I would like to thank <Dev> for finding and fixing the security flaw that was exposed on our site. She did a great job in securing our customer data and a great asset to our team. If you see <Dev> in the hallway, be sure to give her a big thank you!"
The "fix"? She moved the text file from the root to the bin directory, where technically, the file was no longer publicly visible.
That 'pattern' was used heavily until she was promoted to upper management and the younger webdev bucks (and does) felt storing admin-level passwords was unethical and found more secure ways to authenticate.5 -
When I was 10 years old, all kids at my school got access to school emails. The email address book contained everything in my city, like fire department, all pupils of all schools etc. So I decided to "test" the system by sending out a mass email to everyone in the address book (about 3k) with the question "Hi, how are you?".
The sys admins apparently didn't think very far as I got some responses saying like "You have crashed a server in the capital city" and "I have contacted your local IT admin".
So I went to the IT admin and told him the situation. His face turned red of anger and I remember him almost screaming at me.
Who the fuck doesn't set up protection for this and gives out access to 10 year olds? This was 15 years ago, I really hope sys admins are smarter today!6 -
Boss hands over to me an old security audit report and tells me "Go through this and check if all the problems mentioned have been resolved". Quick glance through the report shows all expected issues - SQLi, plaintext transmission and storage etc. I tell him that I need access to the application both from admin and a user with restricted privileges.
He hands me the admin credentials and tells me, "After you login in, just go the "Users" tab. You'll find the profiles of all the users there. You can get the emails and passwords of any user you want from there."
I had to hold back a chuckle. There's nothing to verify. If they haven't resolved storing plain text passwords in the database (AND displaying it IN PLAIN TEXT in the website itself (which to my surprise wasn't mentioned in the audit)), they probably haven't even looked at the report.2 -
!security
(Less a rant; more just annoyance)
The codebase at work has a public-facing admin login page. It isn't linked anywhere, so you must know the url to log in. It doesn't rate-limit you, or prevent attempts after `n` failures.
The passwords aren't stored in cleartext, thankfully. But reality isn't too much better: they're salted with an arbitrary string and MD5'd. The salt is pretty easy to guess. It's literally the company name + "Admin" 🙄
Admin passwords are also stored (hashed) in the seeds.rb file; fortunately on a private repo. (Depressingly, the database creds are stored in plain text in their own config file, but that's another project for another day.)
I'm going to rip out all of the authentication cruft and replace it with a proper bcrypt approach, temporary lockouts, rate limiting, and maybe with some clientside hashing, too, for added transport security.
But it's friday, so I must unfortunately wait. :<13 -
micromanager: "Quick and easy win! Please have this done in 2-3 days to start repairing your reputation"
ticket: "Scrap this gem, and implement your own external service wrapper using the new and vastly different Slack API!"
slack: "New API? Give me bearer tokens! Don't use that legacy url crap, wth"
prev dev: "Yeah idk what a bearer token is. Have the same url instead, and try writing it down so you don't forget it?"
Slack admin: "I can't give you access to the slack integration test app, even though it's for exactly this and three others have access already, including your (micro)manager."
Slack: "You can also <a>create a new slack app</a>!" -- link logs me into slack chat instead. After searching and finding a link elsewhere: doesn't let me.
Slack admin: "You want a new test slack app instead? Sure, build it the same as before so it isn't abuseable. No? Okay, plan a presentation for it and bring security along for a meeting on Friday and I'll think about it. I'm in some planning meetings until then."
asdfjkagel.
This job is endless delays, plus getting yelled at over the endless delays.
At least I can start on the code while I wait. Can't test anything for at least a week, though. =/15 -
I am a back-end developer, never suggested otherwise. My company is a firm of 50 people and owner hired a web designer to code our website. And it got hacked. Badly. So boss tells me to check if I can fix it. I take a look at the PHP and boy, written in PHP3, copy paste code from all over the place, hell the admin panel is a clone from a 2012 tutorial, nothing that remotely stares at the DB is checked for SQL, and now he wants me to design a new website, rewrite everything in PHP7 and had the balls to say "I know it's not your job, but it's a job, so do it"5
-
Just inherited a web application, worst security ever, all it does is call an unsecured application that does an active directory call, verifies the user name exists and then grants the role that the username is assigned. That is it oh and if you can find your way into the admin panel anyone can edit anyone else's role.
Come to find out this application got the dev who designed it a promotion to lead.5 -
I.
FUCKING.
*HATE*.
THIS.
KIND.
OF.
PEOPLE!!
I KNOW that you don't understand what you're doing or saying, THAT'S WHY I JUST TOLD YOU A VERY SHORT, SIMPLE, AND CLEAR SENTENCE TO SAY WORD-FOR-WORD TO THE OTHER GUY WHO, IF HE'S AT LEAST HALF-COMPETENT SHOULD IMMEDIATELY UNDERSTAND AND RESPOND WITH *FOUR* *WORD* *ANSWER* and instead of that you blabber on for 5 minutes how you don't know what to say to him and how to explain what we need (FUCKIN ADMIN LOGIN YOU BOTH WINEFLY-BRAINED MORONS!), and he blabbers for 5 minutes back something something bullshit someone else and then REMOTES INTO THE COMPUTER, AND DOES A SYSTEM REINSTALL OR REMOVES DUDE'S USER ACCOUNT OR SOME SHIT LIKE THAT BECAUSE MY SKYPE CALL WITH THE DUDE DROPS AND NEXT TIME DUDE IS CALLING ME HE'S CONFUSED ABOUT SYSTEM SETUP SCREENS!!!!!!
WHAT!!!!
THE!!!!!
SHIIIIIITTT!!!!
told him sorry but call the fucker who fucked it up for you, i'm not wasting two hours of my time just because some school "IT admin" thinks the best solution for user not knowing his admin login is to remotely trigger a reinstall or someshit on the machine.5 -
Client: You are bad developers. Your code has bugs and the site isn't even pretty. And why is it so damn expensive??
Us: ...
Same client (a month later): I need this campaign landing page with the option to register and an admin for user management. It should be done till the day after tomorrow because the URL is already in print. Here's the catalogue (in .pdf) in which it will appear. Use it as a style guide.
FUCK YOU!2 -
Dev checked in code (I suspect purposely not inviting me on the code review invite) saying he "fixed" the authentication bug in the web service.
Um no, like I told you last week, the authentication error is because the load balancer wasn't passing the user's authentication to IIS.
If I didn't overhear him telling a user "Still getting the error? I don't know, we might have to re-write that service", he might have gotten away with it.
Me: "Wait, that doesn't sound right. If I hit the server directly, authentication works. Its an issue with the load balancer, not the service"
Dev: "Admin said the load balancer is fine and it has to be the service."
Me: "I don't buy it. IIS is returning the authentication error, not the service."
Dev: "I added exception handling and nothing is being logged. Must be something in the service configuration."
Me: "No, IIS performs the authentication, not the service. I explained that last week, remember?"
Dev: "Oh yea. What changes do we need to make to the service?"
<my blood pressure starts to spike>
Me: "None. Give me a sec.."
<we have other apps on the same server farm that work just fine, so I re-configure the service pool settings to match theirs>
Me: "See, now going through the load balancer, the service works fine. For some reason, the admin had our service set up differently."
Dev: "OK, I'll let the users know the service is fixed."
Me: "Service was never broke and I'm not leaving it in its current state. In the morning I'll talk to the admin and see what he can do to fix."6 -
FUCK Windows File locks! I want to fucking delete a file, I don't care if anybody uses it right now! I'm the admin of this system! Fuck you windows6
-
Password hashing using md5, it is 2016!! I have seen a sys admin update a user password using a MySQL query23
-
Current mood: running and hiding from our IT admin.
I know he wants me to install Nod32 on my workstation! A Linux workstation!17 -
TFW your client's git policies are so draconian that the dev teams use "develop" as trunk, and completely ignore the release process.
I wrote up 50 pages of git standards, documentation and procedure for a client. Bad indian director 9000 decides the admin (also Indian) who specializes in Clearcase and has no git or development experience is more qualified to decide and let's him set the policy.
FF to today:
- documentation, mostly contradictory, is copy pasted from the atlassian wiki
- source tree is the standard
- no force pushing of any branches, including work branches
- no ff-merge
- no rebasing allowed
- no ssh, because he couldn't figure it out...errr it's "insecure"
- all repos have random abbreviated names that are unintelligible
- gitflow, but with pull requests and no trust
- only project managers can delete a branch
- long lived feature branches
- only projects managers can conduct code reviews
- hotfixes must be based off develop
- hotfixes must go in the normal release cycle
- releases involve creating a ticket to have an admin create a release branch from your branch, creating a second ticket to stage the PR, a third ticket to review the PR (because only admins can approve release PRs), and a fourth ticket to merge it in
- rollbacks require director signoff
- at the end of each project the repo must be handed to the admin on a burned CD for "archiving"
And so no one actually uses the official release process, and just does releases out of dev. If you're wondering if IBM sucks, the answer is more than you can possibly imagine.11 -
Once I moved to new flat that had no internet connection yet, so I went to restaurant located under my apartment, that had WiFi secured with password. I asked for it while waiting for the order - it was "A1B2C3D4". After a while I got anoyed that it was so slow, so checked if can acces router admin page and restrict access for their clients. It turned out I can and they used default login and password, so they ended up with only my MAC whitelisted. Seemed they had connected their own business PC ("office PC") via LAN too, so I was curious if they call ISP to check it out. I checked the router settings every day, even after I got my own internet connction and they had it blocked for about 3 weeks. Then they changed WiFi password, so I came again, asked for password (another shitty one), checked router admin page and... still default login and password...9
-
During a recruitment procedure I was provided a IDE to solve some programming questions. The computer had a bunch of fuck all anti virus including avast, mcafee, it stopped every execution and scanned it for like 10sec.
McAfee fucking deleted the program for no reason giving a malicious code alert on a normal c++ program.
I called the sys Admin to inspect, guess what he did.
Fucking uninstall McAfee. Woow.7 -
Many years ago at school the machines were imaged using Norton Ghost. A floppy disk containing Norton Ghost and it's configuration would be put into the machine, which would automatically start the imaging process.
When these floppy disks inevitably started erroring they'd be tossed into the rubbish bin. I grabbed one of these broken disks, inserted it a few times until my machine would recognise it, and hey presto, the config file along with the domain admin password were now visible.1 -
Hating WordPress is cool these days, but:
1) Shitloads of themes for clients to choose from (I'm not good with designing and where I live you are more likely to meet a unicorn than a front-end developer that can code).
2) Non technical people can understand it's admin interface without lots of explaining.
3) Huge community makes it extremely easy to find answers even when looking for pretty specific stuff.
For me it's a valid option when making something simple.18 -
DevOps required skillset:
* Frontend engineering
* Backend services
* Database administrator
* Security consultant
* Project management
* 3rd party contract negotiator
* Build system monitor
* Build system hostage negotiator
* Paging, alerting, monitoring
* Search server admin
* Old search server admin
* Old-old-new search server admin
* Redis, ElasticSearch, MySQL, PostGres, owner
* Agile coach
* No you shouldn't do that coach
* Oh, you did that anyway coach
* DNS: (Optional) It'll replicate when it wants, and how it wants to to anyway
* Multi-Cloud deployment strategist
* Must be able to translate Klingon to YAML, and YAML to MySQL
* Cost analyzer, reducer, and justifier
* Complex documentation generation in markdown that we should have done years ago anyway
* Marketing's email went to spam analyzer
* Wordpress is broke fixer
* Where the fuck does Wordpress run anyway?
* Ability to fix MySql running Wordpress on marketing's dusty laptop7 -
Recently had a meeting with the company that acquired my startup, where I was required to relinquish root/admin access across AWS, SSH, and database. It was decided that I held too much power, and will now only have read-only access to develop. I'm not entirely sure what I do for work now.5
-
So this customer wanted me to create an app using Flutter (user and admin), PHP for the backend, so I made one for him . He seems to complain he can't login to the admin account which he called me to registered for him right after the payment and weeks later.
With deeper investigation , I checked the log he drop the table where users authentication is stored and blame me about that. Which I fixed it lately by creating a table back.
Later I visit my account Shopee , he reviewed me as "THE WORST PROGRAMMER "
So I was like WHAT THE FUCK? YOU DROP THE TABLE WHICH LEAD YOU CANT LOGIN AS AN ADMIN AND BLAME FOR THAT?15 -
I started a job as a developer on Monday for a large retail company. There was no computer available for me because of the IT department but I'm told it will arrive later in the day. It doesn't.
On Tuesday I get told that the PC is coming and later in the day a keyboard, mouse, monitor stand and two monitors arrive but no computer.
Today, Wednesday, I get into work and find that I now have a PC. Woo! I load windows, log into my user account with my new user and pass and go to install VSCode only to find that I don't have admin privileges and can't install almost anything. I'm told that IT will add me to the admin user group soon(tm). I wait. All day. They don't do what they are supposed to do despite us pushing them to do it.
I hope that tomorrow I can actually dev, but at least I've been paid three days wage for doing nothing lol
Anyone have any shitty IT department stories?12 -
At the company I worked for earlier, they'd blocked two USB ports citing security policies. The third USB, was unblocked because the system admin didn't know a laptop can have more than 2 USBs .
Gigabit LAN was open.
They just wanted you to copy stuff at higher speed, I think.
If you think blocking a couple of USB ports is going to stop a dev from copying data, well either you're unbearably stupid, or think too less of your devs. It is just gonna hinder their productivity, nothing else.5 -
Can we talk about this for a second? I mean WTF, how is Windows XP still a thing. Wasn't there a ransomeware attack recently, so every last sys admin should have some motivation to upgrade their shit?
Sure, I hear you say, it's just an information display. No critical stuff.
Well guess what, it was at an airport. Most likely not connected to any critical infrastructur, but still it's a computer, stuck at the boot screen at 11 a.m. running windows XP, connected to an airport network.
And I was standing there like: fuck me!13 -
few years back there was a corruption scandal in my country, serbia. one of the ministries paid around 25,000 euros for a website to a company that was founded few weeks before the open call. for comparrison sake average pay at the time was around 300 euros. the website it self didn t have any special features, just publishing contenet. wordpress would do the job. on a press confference, trying to defend the cost, spokesperson of the ministry said that the website was made in "cms programming language".
it community lost it! mems started immediatelly, "i am learning cms language so i could charge 25.000 per project". and then one guy got intrigued, found the login page, and typed:
username: admin
password: 12345
and got in!!!!
i kid you not!
he posted featured news on the homepage, saying hey guys your credentials probably shouldn t be admin/12345. twitter was on fire, everyone started loging in and posting shit.
and the crasiest part is that this guy was arrested and charged for cyber-crime!4 -
I got transferred to a new city at the client location for few months.
I got the credentials for internet access, but I was not able to get internet. I contacted the admin and after troubleshooting it for few minutes, he asked where is Internet Explorer in this laptop?
I immediately understood, why they need me here. I was using a MacBook. 😐
PS: In the end, he gave me the full access without any credential requirements.1 -
Admin comes to my desk and says:
"Hey the CEO wants to know why is the third party application having issues with our system? He wants you to keep me posted on the matter and let us know when will you fix it."
Me:
"Well I'm working on it, we're having a discussion on Slack about it and I'm quite busy right now"
Admin: "Yeah OK but when will you fix it? The CEO wants to know why didn't you reply yesterday"
Me: "Because I was on leave? You would have known if you saw my calendar"
Admin: "oh well, can you keep me updated with how things go?"
Me: "You can join the Slack channel if you want..."
What the f*CK is wrong with people? Do they even know what vacation time means? Why would the CEO ask the admin to talk to me when I'm sitting two rows from him?3 -
PM: Can we have it so the usernames are case-sensitive?
Me: uhh, sure I guess.. But thats like really pointless and adds no real usefulness.. In fact makes the whole logging in thing a tad more complicated for no reason..
PM: Well this one other product we have uses "Admin" for the login versus yours that used "admin" so it needs to be implemented.
(note that mine accepted "Admin" anyways...) *implemented it*
PM: So there's a problem with the username sort, it sorts by capitals then lowercase.. eg:
alpha
beta
Alpha
Me: Yeah, you asked for case-sensitive usernames..
PM: Well can you fix it?
Me: I could create a second field within the user data that is the username in all lowercase and sort by that. But that negates like all of the whole case-sensitive usernames thing.. OR I could drop all this actually important work I'm doing and do a whole bunch of work on a custom sort for this useless fucking feature you wanted me to put in..
*it's been 2 weeks and still no reply...* -
Client(over the phone):- I want an Android app where there job seekers and recruiters.
Me:- sounds reasonable enough, ok
Client:-i want job seekers to apply for the job and recruiters to post the job.
Me(gets a bad feeling);- doable ok.
Client:- and I want an admin user who can see all the users and do everything.
Me(yup there it is):- what do you mean by everything?
Client :- you know everything, talk to recruiters talk to see everyone using the app, you know everything.
Me :- no I don't know this "everything" that you speak of, tell me more, what screens (activity) should that have and stuff.
Client (getting irritated):- everything the admin user usually does.
Me(yare yare daze):- i will show number of users in a graph.
I have a feeling this is not over yet7 -
You know, I am getting really fucking irate posting them rants about how shitty my job is.
I'm more than fucking competant, but this company is turning me into a blithering, raging, frothing maniac.
I am sitting doing my devOps at the moment. On top of that I am the network admin, the sys admin, the sec admin, the fucking fuck admin (you get the point) and now I am being told to go out and work in the field because "The technician is busy with calls, and doesn't have time". These calls are ALL FUCKING PRINTER CALLS. SET UP USERS TO PRINT AND FUCKING SCAN.
I am not being a shithead by saying no. I have spent the last year or so doing favours for these bastards, I don't get any compensation in any form for it, and it is just making my life hell. The reason I went into devOps is so that I don't have to fucking deal with shit like this. I spent years in the field, and I fucking hated it. I was good at what I did, but I fucking hated it.
Now I am back there. They earn more than i do, those printer techs, but I am doing their fucking work for them. I have even made them simple little fucking scripts so that 90% of their work is done in two clicks.
Fucksakes. Now my motherfucking right shift key doesn't want to operate properly. Been using this keyboard for about 6 years now, and now it decides to fuck out. Fuck.
As standing, I am fucking sick and fucking tired. I am drinking energy drinks and mass amounts of coffee just to stay functional (because I sit up until 12AM trying to get through all my work - everyday of the week). Reported to tech director, doesnt give a single fuck. "Stick around, things will get better".
Yeah, fuck you.
Seriously thinking about freelancing.
Don't know if it pays well though.3 -
Ok wtf? How is it that I can give myself admin access to almost any Apple computer just by turning it on, holding down two keys, and then removing one file called “.AppleSetupDone”, without any kind of authentication? And I get access to all of the data on the device too. Within two minutes of having physical access to the computer.
This is a company with millions of devices in use, why is this even possible? And the only way to prevent it is to have a firmware password, which, by the way, is not a default option...are you serious9 -
I work at a place where security is really high when it comes to server access. Today I was in urgent need to get admin access to a server, this is a real pain. Luckily I found an xml in version control containing the credentials for the web application which happens to be an admin account! Lucky me, saved me at least two weeks of waiting to get admin access!4
-
Had 2 days of vacation. Theoretically (plus weekend, plus 2 days) 6 days.
Worked today… At Saturday.
Some administrators forgot to properly check bandwidth limitations....
*rolls eyes*
We had a major version upgrade of some server software at Monday.
Guess why I got called...
Of course it MUST be the software upgrade.
It couldn't be the new hardware that was setup 2 weeks ago and on which a lot of "important" VMs were migrated.
*eyes roll inside till only white is visible*
The even more annoying thing is that it wasn't that hard to figure out.
Looking at monitoring, we had spikes on 20 Gbit/s (roughly 2.x Gigabyte/sec - Ethernet) connection of some server at roughly 1.9 plus Gigabyte/sec.
IO latency spikes that made the graph look like a heartbeat EKG with severe tachycardia...
*additionally to white eyes starts cursing in reverse latin*
Incompetent admin answer: Booboo that can only be your fault - the developers must investigate.
Me (just a tad more polite): Meep Meep mother fucker, get your shit together. If the software would eat that much, the network would be a niece chunk of charcoal. Plus the time (sending instead of links to monitoring pictures… guess the lazy fucktard who's brain is a vacuum didn't even bother to check it)...
NOTICE SOMETHING?!
Incompetent admin: It starts at the same time. Always.
After wasting roughly another hour of time discussing with him, I just hanged up the video call.
Called someone I knew from the admin department and turns out that - drumrolls please - the incompetent admin was someone who got recruited 3 months ago…
*turning into antichrist*
I then had a not so polite discussion about how the only competent people could take days off (all except incompetent admin were on vacation) and the seemingly incompetent fresh recruit - who by the way NEVER mentioned this - was the only one left of the admin department. Which would be bad alone, but no - he even got the 24/7 emergency support role for the whole weekend.
Sometimes this company and HR especially notoriously drive me insane...
Guess next week there will be some HR barbecue.
But yeah. After a lot of raging around we nailed it down to the traffic of backups and could fix it.
Roughly 4 hours of analysis, communication, raging and hatred.
Just one hour implementing shit.
*goozfraba*11 -
The company I work for has decided instead of building our own CMS (which was mostly done when they killed it), we should instead build a Chrome extension to extend Shopify's admin panel and implement all of the features it was missing. We warned them very thoroughly about how morally wrong this is at it's core and will require a lot of dev time to get this going and has risk of breaking if Shopify changes something in their admin panel. And yet they rely on this more and more every day.2
-
got given the job of removing a menu link on a site my company hadn't built today.
biggest pile of dung ever! the site had folders for 5 different back end languages all full of random files not in use.
I dug around and found it was using a big framework that produces a massive single variable and outputs it as the page.
Eventually I realised this wasn't in use either but was still being loaded in the site! in fact the site even has a database and an admin login but the stupid original dev hard coded all the content in and runs includes to files in the admin folder directly from config!
such a confusing, pointless, shit site! Its like building a car and driving it like Fred from the Flintstones....1 -
Admin Access
Have you ever been in a position where you become the de-facto person who works with a certain tool, but are denied full admin access to that tool for no real reason?
Two years ago I was put on the Observability squad and quickly discovered it was my thing, implementing tracking and running queries on this third-party tool, building custom stuff to monitor our client-side successes and failures.
About a year ago I hit the point where if you asked anyone "Who is the go-to person for help/questions/queries/etc. for this tool", the answer was just me lol. It was nice to have that solid and clear role, but a year later, that's still the case, and I'm still not an admin on this platform. I've asked, in an extremely professional way armed with some pretty good reasons, but every time I'm given some lame non-answer that amounts to No.
As far as I'm aware, I'm the only dev on our team at all who uses custom/beta features on this site, but every time I want to use them I have to go find an admin and ask for an individual permission. Every time. At the end of 2020 it was happening once a month and it was so demoralizing hitting up people who never even log into this site to ask them to go out of their way to give me a new single permission.
People reach out to me frequently to request things I don't have the permissions to do, assuming I'm one of the 64 admins, but I have to DM someone else to actually do the thing.
At this point it feels very much like having to tug on the sleeve of a person taller than me to get what I need, and I'm out of ways to convince myself this isn't demoralizing. I know this is a pretty common thing in large companies, meaningless permissions protocols, and maybe it's because I came from IT originally that it's especially irritating. In IT you have admin access to everything and somehow nobody gets hurt lol-- It still blows my mind that software devs who make significantly more money and are considered "higher up" the chain (which i think is dumb btw) are given less trust when it comes to permissions.
Has anyone figured out a trick that works to convince someone to grant you access when you're getting stonewalled? Or maybe a story of this happening to you to distract me from my frustration?13 -
Dumbest request?
Email piping chat system.
The chat system had to take replies from web and send them to an email, which the admin user can reply back via email and it publishes straight into the chat.
It was all fun and games until they wanted HTML based emails and content going back and forth, and attachments going both ways.4 -
* Colleague asks how to make a alias for IP address
* Open up notepad++ w/ admin rights and load C:\Windows\System32\Drivers\etc\hosts in
* add a new entry to map IP to the alias
* hit sequence [ENTER][ESC]:wq[ENTER]
* wonder why is notepad window still there... Did it freeze again?
... happens to me all the time :(4 -
When you build an admin dashboard for your boss so he can make changes easily without needing to email or call you in the evenings... And he never uses it. They still just email and call you.4
-
When I was 14 or so, we had acces to some computers during break. I went through each and every one of them, rebooted into Safe Mode (yeah, Windows), logged in as admin with no password, and gave admin powers to my account (each student had one, at least). Then, installed a keylogger and one of those "trojaans" that let me remote terminal, keyboard and mouse control to all the PCs (I had tried telnet server, but this was soo much easier).
Then came the fun.
"Why does the start menu keep opening by itself?"
"Why is the CD tray opening and closing on its own?"
Etc.
Then I found out social media passwords like (translated from spanish) "bigdicks". Never used them, because I considered myself one of the gray hatted. I did it just for the fun.2 -
So, my officemate was inquiring about a job posting using her work email. She asked me if I'm interested and forwarded the email to me. Only to realize afterwards that she had it sent to the wrong email address. Take note, she's also sending it to my company email. Since the email she put on it doesn't match any addresses on our domain, it was sent to our CEO (the admin of the company domain) which in turn, forwarded it to me. I can't imagine the look on the CEO's face when he saw the job invitation email.4
-
On a 5 hour bus ride for which the company advertised that they have WiFi. Technically they did, it just didn't seem to be connected to anything. (it was but it was unusable). I tried logging into the router as i always do and one default "admin" password later i was in.
I didn't want to mess up anything too badly, however i did change the wpa password to "YouShouldMakeThisABitMoreSecure"5 -
The entire IT department was HATED by the rest of the company at the last place I worked because of the complete ineptitude of the IT director and the executives refusing to do anything about it.
I was hired as a sys-admin and on my first day I knew I was in trouble. The help desk was just two guys and the only other sys-admin was the IT director. Our tiny team was supposed to handle everything for a company with a couple thousand employees spread across the country.
There was a budget for staffing but nobody would stick around for too long because of the IT director.
Here are some highlights:
- Servers were so far out of date that it was scary
- There was no documentation besides an excel spreadsheet with some passwords and IPs
- He just DISAPPEARED for a month ???
Turns out, he's related to one of the executives and was given the position with next to no prior experience. Nepotism is a bitch and I'm so glad I was only there for six months.4 -
Got a new eval board. It came in with a stock firmware, had its own IP and naturally its own webGUI. I wanted to check what was under the hood. So I SSH'd in to the device, and was prompted to enter the username. There weren't any specs or documentation.
*Hmm, let's try root*
User: root
Password: *Eh? Well, what the heck* admin
.
.
.
root@evalboard#
Muhahaha!!! Meet your hacker, eval board!3 -
Am I a machochistic fuck?
This sunday I had the glorious idea to fix a not-so-recent Wordpress website for a friend.
Imagine an upgrade from 3.3.2 to 4.9.8! (and PHP 5.5.old to 7.2.new
Oh boy. I thought it was impossible, because the site uses a free theme from 2012 and had some other plugins installed.
But what kind of developer am I, if I give up so easily?
I forced XAMPP to run PHP 5.6.stoneage in order to let me debug this thing. After some fixing in different files, I was able to get the admin panel back, disabled some plugins and then overwrote the installation with WP 4.9.8. After firing up the admin panel I had to fix 20 differend PHP files in the plugins.
Finally! After the plugins were updated, all worked again.
Except for the backend part of this free crappy theme. It uses an old version of JQuery UI widgets with custom mods.
I've done enough for today so I let it be like this. I'm not in the mood to load a second JQuery version.4 -
Six years ago I created a drupal page pro bono for an organization I'm in. Was my first site really, was hacky af, in retrospect, I created an unmaintainable monster. And as it usually happens, I moved away, the site stops being properly maintained, opening admin view just cries "please update me" (or was it "kill"? Not sure here). Now I'm back in town and get a call from the current one in charge requesting a training. I thought this evil dark dev history of mine is now finally returning to hunt me forever. But no, she actually understood it, and after half an hour she was perfectly capable of maintaining the site. I'm stunned.2
-
a small local social network i made around 2008 as a replacement for the original which the owner closed down.
i missed the people from there, so it motivated me to make a replacement in a week, while learning html+php+mysql+js.
it worked for about 3 years and i redid it from scratch 3 times as i gradually learned more.
it was cool to be basically a host of a community i've come to like in the years before, and it was basically the only project i felt, really felt, had meaning, a point. people were grateful that i made a replacement for the original closed-down site, and i was grateful that they were using it and that i could keep talking to all of them on it.
at the height of its popularity it had about 1500 registered accounts, 150 daily logged in ones, and about 30-40 very active ones.
it was also the place where i went to implement all the cool stuff i learned and came up with.
it had a pretty cool questionnaire creator (originally just a test of how deppressed users are, but then i thought "why not let people make their own tests/questionnaires?"), which tracked people's results over time and showed them on a cool interactive flash-based chart.
also a whole forum system made from scratch, wysiwyg article editor, later seamlessly integrated admin controls for those who had privileges, like, not a separate admin ui, but the admin buttons right on the site, later even a realtime chat persistent across page reloads where you could put special links which, on click, would highlight site elements/buttons, or even complete step-by-step path to them if it was more clicks. would highlight the first step, after clicking would then highlight the second one, and so on...
it was pretty cool stuff for 2008, and afaik it basically landed me my first two full-time jobs with almost no actual job interview, basically just "we looked at the site, interesting stuff, tell us how you did x and y and z on it, okay, hired"
back then i kinda felt i have a bright future ahead of me =D1 -
the admin that was pleasantly surprised a developer was interested in admin work. he taught me alot about linux, networking and vsphere because of him i get to do quite alot of admin type work in my new job, i love it!1
-
Employer asked, whether I could tweak the site's admin template that was made in 2005.
It uses tables to generate new webpages.
It uses php.
UI is a nonsense spaggethi crap.
Whole thing is shit.
Well, for good money I will just write everything from scratch. Took me ~10 hours and I already have the functionality that was in the original crap. Crazy how these 'devs' scam people!14 -
We had a kind of "computer club" back in a year. (AG in germany). The teacher left us (4 nerdy geeks) alone for a few minutes because he had to check on something.
He was still logged in with his IT-teacher account.
After a minute of reseach and a few little commands, we had our own school network admin account.
They still haven't removed (probably not even discovered) the account.
Sadly, the localgroup admin didn't have the highest rights..1 -
Work enforced a screensaver policy - a corporate screensaver that even us local admin devs can't change.
I swiftly made a .reg script and distributed it.
We all laugh whenever someone's "Ribbons" screensaver starts up.
I love using my powers for evil.1 -
Today, during deployment on server without remote access:
Me (on the phone calling our data centre Admin): "There's a permissions mismatch. The following paths need write access from the following users..."
Admin: "Okay, okay, slow down... I'm still in the elevator." - 10 minutes later - "Okay, ready."
And I gave him the paths and he said: "Try now."
And I tried and it still didn't work. And then we tried all that again. And again. And finally he said:
Admin: "Okay, I give up, I'm going back down to get the screen."11 -
The previous manager bought an expensive enterprise level cms with 0 support and documentacion for doing shit, for which the only ninja that knows how to operate it is our cms admin.
And I saw this person posting shit on her instagram about loving wordpress.
Wish your ass would've known about it before you got us this 58k pos system...
Say whatever the fuck you want about wordpress, yeh its fucky, but not fucky AND expensive........8 -
Manager: we need to design an admin system for a veterinary centre
Dev: ok, this is it, remember your training
namespace Vetcentre{
class Dog : Animal {
}
}1 -
Just got invited to an interview as Junior Sys Admin of a hacking training platform. This could be my first job in IT. Woop woop.
-
Lesson I learnt the hard way today: ticket every fucking task (including admin) to:
A. Cover your arse (if the tickets are not ready because they haven't given us enough information, push back on it before committing too much effort to doing it)
B. Better deliverable (what you output will probably be better quality because you worked out the requirements upfront + you know the audience)
C. You have something to show management when they want to try and overwork you some more4 -
>be my team
>developing a mobile app
>I'm responsible for developing a "RESTful" API to interface communications between the app and the database
>there's also an "admin" web application which the client themselves will use to manage some shit in the database
>I've developed the API, it works with the mobile app
>instead of just making it simply a front-end app that makes requests to the API like the mobile app does, the guy responsible for the admin app completely ignores my API and implements his own with a certain messy dollar symbol language and a certain bloated piece of server software, accessing the same database directly, and does some operations in his own special way that will break what I've implemented
>now data inserted via admin app is inaccessible to the server API, and I'm expected to "fix" my code so it's consistent with this guy's shit, but the only way to do it is introducing interdependency between the actual API and the admin app's back end
Fuck my life, now I'm the one responsible for the app being broken because no way the guy who's used to kludging unmaintainable shit together fast would ever fuck anything up2 -
I HATE it when SCHOOL TEACHERS OF ALL PEOPLE Suspect me of hacking because I am coding probably in batch because I don't have admin privileges12
-
I fucked again...
This is second time I've accidentally executed sudo poweroff on test server via ssh assuming it was my machine :(
It's all because my mind was not stable as we were testing few issues on test server and at the same time from client side someone was doing the changes from Admin side(Wordpress) and we saw menu and few text got disappeared.
Such a bad day. smh10 -
Godammit Homebrew.
It's bad enough having to develop C on a Mac, now Homebrew is refusing to let me install a package that needs root privilege. Support simply says "no package needs root privileges" and "run as an admin". BITCH, THIS PACKAGE NEEDS IT.
So now I'm downloading homebrew source just to add a "--fuckingdoit" flag that skips their shitty "no sudo" rule.
Tooling should save me time, not WASTE it.1 -
When there is no WiFi internet
Me:
1.checking router connection
2. Opening the WiFi admin portal and checking the port and socket.
3. Open CMD and ping www.google.com
My dad: Just un-plug it and plug it again
Me: 😶4 -
There is a red button in a briefcase that launches nukes if you got access code.
We then gave it to a emotionally unstable hothead.
Left a post-it with admin password inside briefcase.3 -
I work in a corporate, and we are required to complete 10 hours worth of training every quarter. Systems don't have admin rights and we can't install anything on our own.
This is what I mailed to the coordinator after to and fro of a few mails. He initially suggested clearing browser cache, when it didn't work, I raised an IT ticket to get it updated. Didn't fuckin work.
Damn you, you hippo fucking imbeciles. I mean who the fuck in their right state of mind would have the audacity to recommend using flash. Absolute cunts ☠ 👿1 -
People around me be like "Why you never take a break?? I see you work all the time. Doesn't your company offer you a paid holiday??"
Yeah they do offer a paid holiday, but even on holiday I still have to work because I'm the IT manager, full stack developer, database admin, helpdesk and everything that is related to IT.
:(26 -
My boss is the head of IT.
I am the head of software, I have nothing todo with user rights in our software, this is head of IT things...
So my boss is gone, holiday.
User T calls in: Hey, I need rights for finance software X. Now.
Me: Yeah, my boss is gone for good, which rights exactly you need?
T: I don't know. Give me admin rights.
Me: I am not going to do that.
T: I will call my boss (head of her department, same level as my boss). He will tell you to do that.
Me: I will not listen to him, he don't decide about rights. IF you talk to the head of finance and he tells me you can have admin rights in the finance software, I could give it to you. Let him write a email to me about it.
T: Okay.
2 Minutes later.
Email, Head of finance: Hey Wasseratem, I don't decide for rights for the finance software X, normaly Head of IT does that.
(CC to T)
Email back: Yeah, he is gone, he will be back in 2 days, then he can decide.
Email from Head of Department of T: Give T admin rights. now.
Email back, CC Head of Department of T, Head of finance: No I will not do that (etc. explain why)
What the fck is T joking me?
Now She will not get any rights for thursday even when she will walk into my office with a gun.2 -
God damn it, LEARN TO FUCKING READ!!!
#support-channel
> Admin: @here the tool will be disabled from today until Wednesday
> Chap: @here Admins, I cannot use the tool it says that it is disabled. Please let us know when we'll be able to use it again
FFS.. Srsly, man...4 -
So my story has some little backstory.
I got into computers and technology because of my dad. He was very enthusiastic when I was little and when I grew older and started my apprenticeship as a software developer he was really proud. Note that he never learned anything like that. He just loved computers and games.
Now to the story itself.
I learned more and more, also about networking and came to the conclusion that our slow internet and rare internet problems probably come from stock/weird configurations. But my dads proud probably told him thats a thing he still has to do as the dad. But it annoyed me so much that I booted into kali linux, loaded an exploit to get the web admin passwort and cracked it within a minute. 😎
Finally I was able to configure everything correctly ( channels were spammed from neighbours so I switched to very unused and the disturbions got less ).
TL;DR: Dad didnt want me to configure our router and didnt give me the admin password, so I booted Kali Linux and used an exploit to get it myself 😎😎3 -
Legit got excited because today...on friday...one of our servers went down.
Why excited?
Tell me, do you know how fun it is to call your admin if he was "able to get it up" just for him to reply that he is having some "performance issues"?
Lmao it's fucking hilarious.
On another nothe, plz halp5 -
You know what I realized something. And im gonna brag about it. I taught myself laravel, vue, JavaScript, basic Unix server admin stuff and more all without every asking a single question on a forum.
Basically out of laziness, and impatience, though.
Still, go me.4 -
I don't get why anyone would choose to do sys admin work I have been doing it the past week I fucking hate it!
Let me program 😠5 -
A dev posts a link to his website on a dev group I admin, first thing said site does is ask for my location. I look, no map not logically apparent reason for it, so I close the site.
Ask they guy why he is asking for such private info and he responds to tell me that he does not think a person's exact location is that private, and if he really wanted it he would just use the IP address.
Like how many fucking levels of dense is that.5 -
FUCKING google doesn't allow our country to buy FUCKING partner or reseller program.
So what the fuck do we do as an agency, we have to fucking treat every domain and google business suites as seperate entities.
WHAT THE FUCK IS THE SHIT WITH THAT?
WE HAVE TO FUCKING KNOW THEIR ADMIN PASSWORD TO FUCKING MANAGE THEIR GOOGLE SUITE ACCOUNTS.
IT IS A FUCKING NIGHTMARE.
I HATE GOOGLE FOR THAT REASON ALONE.
I can care less of how much data you gonna steal from me.4 -
Dear Microsoft 365 admins,
It's 2021 - get off your ass and uncheck the box that forces me to change my password just because it's been 90 days. NIST has been advising against this for years, and now (finally!) Microsoft has followed suit. Forced password cycles are annoying and actually FUCKING ENCOURAGE USERS TO USE SHITTY PASSWORDS! Don't believe me? Here - fucking read it for yourselves:
"Don't require mandatory periodic password resets for user accounts."
https://docs.microsoft.com/en-us/...5 -
I’m an admin of a Facebook page for a small business whose website I built (I don’t personally do anything on the page, I just have admin rights :p). The location is clearly listed on the page, you just have to scroll down a bit on Facebook to see it, just like on every other Facebook page. There is also a link to the website that contains the location. Yet, EVERY WEEK, we get at least one person who sends us a message on Facebook: “where are you located?” Somehow they managed to turn on a computer, sign into Facebook and open a conversation dialog... but to scroll down a bit or visit our website to see the full location is not within their mental capacity. WTF3
-
Frontender, social media manager and windows (server) admin!
Frontender; being paid to do something I couldn't care less about and find very frustrating (as for developing it)
Social media manager; being paid to use mass surveillance engines 😷
Windows (server) admin; I don't think I have to explain this one...7 -
A bit different than wk93, but still connected and a fun story.
Back in high school when it began to digitalize everything, so began our teachers journey with technology. We, as IT class were into these things, but as far as I can say, others in the school including both teachers and students were like cave mans when it came to IT.
Most of them kept the different wifi networks password on the windows desktop, in a file 'wifipassword.txt'. When we were on robotics seminar, we had to use a teacher's laptop. The wifi network was incredibly fast and powerful,, yet so poorly configured that even the configuration page user/pass was the default admin/admin, because the IT admin wasn't the most skilled one.
We got the idea to sell the password of the wifi network to other students. Not much, for about 1 dollar a week. The customer came to us, we took the phone, took note of the MAC address, entered the password, and if the guy were to stop paying every week, we just blacklisted that MAC on the next robotics course.
Went well for months, until a new sysadmin came and immediately found it out, we were almost fired from the school, but my principal realized how awesome this idea was. You may say that we were assholes, and partially that is true, I'd rather say we made use of our knowledge.2 -
Product Manager: We’re assigning you to the Guest Checkout project.
I look at the Guest Checkout epic in JIRA and see it only includes frontend scope. Nothing about backend implementation.
I also find an older ticket about guest checkout. It was written by the former Product Manager. It explicitly says our admin switch for guest checkout no longer works because rebuilt checkout to use react. Why does no one bother to check the backlog??? I found this just by searching “guest checkout.”
Me: Um, our website doesn’t support guest checkout.
PM: What?! But the admin has a guest checkout option that can be turned on and off.
Me: Those admin options only apply if you’re still using the out-of-the-box solution for the e-commerce platform. Remember how we rebuilt checkout using React? We didn’t build it to support guest checkout. That admin switch doesn’t work anymore. We can ask a backend dev to confirm.
I check the code. The code that relates to the admin switch for guest checkout no longer exists. It’s a dead switch.
BE Dev: We made a lot of customizations since we purchased the e-commerce solution. So yeah, that guest checkout switch doesn’t work.
PM: [to me] …Our BE devs are busy with other projects. Can you do the backend for guest checkout?
😳
Me: You realize I’m just a frontend dev with only some backend knowledge, right? I’m not even close to fullstack. And you want me to architect an entire guest checkout flow? That will work with our current checkout experience? And that is HIPPA compliant? On top of doing the frontend?devrant who planned this project i don’t get paid enough for this frontend problems that aren’t frontend5 -
our tester arguing with software house about blocker severity bug
SH: "No, this bug is not possible. It's possible only when you are logged as admin in other tab"
T: "I managed to replicate it in another browser in private mode"
SH: "But you can't replicate the bug now"
T: "True that I don't know steps to replicate it and it occurs just sometimes... Let me check right now"
...
T: "Okay, I managed to replicate it right now in private mode in other browser on normal user account"
SH: "Because you are admin"
They are pretending to be idiots or just are?6 -
For me I think it basically comes down to this:
Any software that I have to use for work purposes that I do not have admin access to! -
You know the shit has really hit the fan, when the IT Admin in the company doesn't know what execution policy in PowerShell, means7
-
I've been working for 12days straight to develop 6 different pages in an admin panel. The CTO decided to launch only 2 of them! Yesterday, I was late so he asked me to be more regular and produce results with a mixer of insults and profanity.
Dear CTOs, I know sometimes you guys just want to burst out but stop for a minute then try not to be an asshole. It has the complete opposite effect on an employee.
You being an dick will achieve only one thing, you being a dick.1 -
I work in a bitcoin startup , my fucking boss really wants everyone to use ubuntu because of security and all , the bad thing is i am the only guy who knows how to install and deal with it , so when any one joins or has some problem he always bugs me and the thing is i am an android developer not a sys admin and now he fucking want to get 2 factor in ubuntu desktops when they log in16
-
2017 has ended and I want to throw this fucking rock of anger with it out of the Window.
I will tell you how my last 3 to 4 years as private IT Guy (IT Dumpster) for everything was.
My Gaming Community:
It was so fucking retarded that I would like to punch everyone there in the face over a thousand times.
Seriously there are over 60 People in that Community and they take every shit for granted and only cry about everything.
I'm Paying since 4 Years over 60 € for our Server every month. Some people donated some small bucks over the time and in the end it was around 150 € Donations over 4 years.
Im thankful for the Donations, but these people really think that they can demand for this Donations private Gameservers for over years for free or think that they now own the Servers. WTF?? FUCK YOU!!
Im managing 2 Linux Server with Web, MySQL, Voice and Gameserver. What did 1 guy donate? 10 € for 4 years, thats around 15% for just a month. You would get our Teamspeak for 7 Days for that price idiots!!
I did all the damn Webdev and am now writing a App in Kotlin for Android man!!
Since last everybody in the Community gets on my nerves, because they are so ignorant and dont appreciate the work of others 😡.
My Association where I support the hole IT with a friend:
We decided in the commitee that we would take on major changes in our infrastructure.
We need to finish the barebone concept in the end of January 18.
Early December 17 I wrote my friend, that we need to have a meeting and plan everything.
Well, now I mostly designed the roadmap by myself and didnt receive any reply from my friend 💀.
I really dont understand why the shit always sticks at me and I need to finish it.
I really love to code something, install or repair PC's with joy or manage Server but the people around me are in my free time like poison and they take out my fun for it.
The only fun and enjoyable IT Part for me is at my fulltime job. Thats the only good place left for me as Safe Heaven and the people there really appreciate my knowledge and work I do.7 -
Yay! Finally got my first job in IT.
They call it just "IT admin/sysadmin", but it's... eh..
What I do is make sure the servers work (sysadmin part) and make desktop/mobile apps. So far, the company seems to be quite nice, there are already 4 devs who are friendly. *knocks on wood*
Will see how it goes, and I'd like to thank you for sharing your stories. Learned quite a lot from them!5 -
When I was in college I had to code a piece of software for use on the college Intranet.
When it came time to deploy, I went to the network admin to set the package up for distribution.
His first reply, "oh, it's only 8mb, thats so sad".
WHAT THE FUCK DOES IT MATTER AS LONG AS IT DOES THE JOB!4 -
Domain server goes down, it's the gateway and DNS too.
Ok I'll just remove the domain, it's been orphaned really since you went to the cloud.
Don't have local admin password.
Ok call old it company who set up gear
Out of business
Ok boot to Linux and reset
Usb boot locked
Don't have bios password
Call old it company
Still out of business.
Wait, can I just set manual ipv4 ? Ok domain without a domain controller... If it works it works.2 -
Couple of jobs back we got bought out by that massive shipping company with the red and yellow colors.
We used macs and some high up moron decided it was a good idea to put on domain policy restrictions on our macs, but developers can't work without admin access so if we wanted to keep said admin access, we had to sign a written agreement indicating that we were not allowed to do certain thing, like change our wallpaper or install personal music players, you know like Spotify, which at the time was what most of us used.
Now this was just a nice cherry on the cake of stupid descision that was making me rethink working there. Thanks to the high demand for skilled front ends, it was 11 am when we got this, 3pm I had comnfirmed my interview for the next day.
An hour later our manager called us all in to explain this was BS formalities. Well too fucking late, learn to communicate you dumb shit.1 -
Someone wanted me to make a full system from zero with good UI/UX, for 2 different user types (think marketplace style), admin area, and cool features that could only be done through phones because the tech is not available in web. All of this with good security due to the delicate information it would handle. Also of course subscription support as well.
By myself, within a year.6 -
DevOps takes away my admin access in team city... ask devops for a change to a build runner, devops asks how to do it?
Good thing they locked it down! -
*Teammate writes some instructions for our users and sends it to the rest of the team to review and let her know before she pushes it out
Me: *reads it and lets her know what is missing
Her: Idgaf what any one thinks. If they can’t figure it out, it’s their problem. And if anyone makes changes to it and the users can’t under it either, I’ll tell them to ask whoever made the changes.
Me: *starts cracking up. Like wtf!?!?! You know what, I’m not touching it so if anyone asks I can tell them to reach out to you!
Like, how are you offended because I’m a junior in your team and you can’t take criticism after you’ve personally asked for it? Smh7 -
I accidentally let some malware on my computer and it installed drivers so i couldn't delete the reg Keys or the program itself because I didn't have the proper permissions (super administrator account )
I busted out Linux, used a piece of software to open the register, manually deleted the register key entries, because Linux doesn't care what level of admin you are on Windows, he just sudos that shit.
Rebooted, malware gone.8 -
The CTO has admin on the git repo and while we all have to have 2 other people review our pull requests. This guy will just go make a pr and merge it without review. It's not like its perfect code either. I will be going behind him and finding weird shit that he did days later and then go check the git blame. Yup its another one of his had to push it right now without review moments.2
-
Took the AWS SysOps Admin exam today and failed .
Preparing to retake it, with a different strategy.1 -
At the institute I did my PhD everyone had to take some role apart from research to keep the infrastructure running. My part was admin for the Linux workstations and supporting the admin of the calculation cluster we had (about 11 machines with 8 cores each... hot shit at the time).
At some point the university had some euros of budget left that had to be spent so the institute decided to buy a shiny new NAS system for the cluster.
I wasn't really involved with the stuff, I was just the replacement admin so everything was handled by the main admin.
A few months on and the cluster starts behaving ... weird. Huge CPU loads, lots of network traffic. No one really knows what's going on. At some point I discover a process on one of the compute nodes that apparently receives commands from an IRC server in the UK... OK code red, we've been hacked.
First thing we needed to find out was how they had broken in, so we looked at the logs of the compute nodes. There was nothing obvious, but the fact that each compute node had its own public IP address and was reachable from all over the world certainly didn't help.
A few hours of poking around not really knowing what I'm looking for, I resort to a TCPDUMP to find whether there is any actor on the network that I might have overlooked. And indeed I found an IP adress that I couldn't match with any of the machines.
Long story short: It was the new NAS box. Our main admin didn't care about the new box, because it was set up by an external company. The guy from the external company didn't care, because he thought he was working on a compute cluster that is sealed off behind some uber-restrictive firewall.
So our shiny new NAS system, filled to the brink with confidential research data, (and also as it turns out a lot of login credentials) was sitting there with its quaint little default config and a DHCP-assigned public IP adress, waiting for the next best rookie hacker to try U:admin/P:admin to take it over.
Looking back this could have gotten a lot worse and we were extremely lucky that these guys either didn't know what they had there or didn't care. -
First Post since... Long I guess?
I got a new project!! I am currently creating a Webserver Framework in Java. I can create fully functional websites with a few lines of JSON.
(Look below)
Currently I don't have direct Javascript support, but I am working on installable modules. With those the Web-Admin can code little code fragments that can be shown (live) on the webpage.
I am so hyped because it does work <3
(Pictures of development might follow)
(Can I even call it framework? Hm dunno.. )14 -
Why would a company (A) create another company (B) within itself?
Both companies are literally in the same building.
Company A is manufacturing plastic products and company B is all about company B's IT (sys admin, dev, etc.).7 -
You can't break into what isn't turned on. We can now scale the admin interface down to zero nodes and spin it up on demand.2
-
Had to change password on computer for administrative reasons (sysadmins and infosec make us change our pass every quarter). Changes didn't sync to everything so now I can't even log into my computer.
Need to go to the office tomorrow so some guy can type in an admin password on my pc and do stuff to it. If that doesn't work I will just be given a new laptop.
Seriously fuck this week4 -
PSA MacOS Sierra 10.12 will make any user who wasn't the original admin user a standard user, it will also reset the original admin users password back to whatever it was when the MacBook was first set up. It all just works!
-
IT admin on paternity leave since Friday.
Can't access one of our servers, backup person can't find their password.
So... Looks like I'm doing something else for a bit.3 -
!myrant
I'm a junior developer in a small company alongside with a fellow programmer. Since I have an interest in Security and our Sys Admin left, my boss offered me to do some sys admin stuff.
I feel bad for my fellow programmer just because there is an old man in the company that doesn't come to me with his tech problems and goes to him.
Something like this goes down today:
OM: Hey, I can't watch my Fox Live News. Can you help me?
FP: The problem isn't on our side
*OM keeps pestering him*
FP: Let me check it out
*Goes and fix the issue and comes back laughing *
My coworker is to kind 😬😂😅2