this post was submitted on 13 Dec 2025
483 points (98.2% liked)

Programmer Humor

28119 readers
622 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

founded 2 years ago
MODERATORS
Feyter@programming.dev
anzo@programming.dev
BurningTurtle@programming.dev
pylapp@programming.dev
483
You can do anything at Zombocom (sopuli.xyz)
submitted 2 weeks ago by Gork@sopuli.xyz to c/programmer_humor@programming.dev
72 comments fedilink hide all child comments
 
you are viewing a single comment's thread
view the rest of the comments
[โ€“] einkorn@feddit.org 71 points 2 weeks ago* (last edited 2 weeks ago) (3 children)

Guess who recently asked a company if he could get access to the API they use to load stuff in their frontend from their backend and got told "Nope and btw scraping is against our TOS"?

Well, if you won't give it to me the info that you provide anyway the easy way, I can still take it the hard way. ๐Ÿคทโ€โ™‚๏ธ

[โ€“] CompassRed@discuss.tchncs.de 41 points 2 weeks ago (1 children)

Maybe you should just try being lucky. I found a critical security vulnerability while working on my scraping project. I told them, they paid me and gave me written permission to scrape.

[โ€“] einkorn@feddit.org 25 points 2 weeks ago (3 children)

You are braver than I am because here in Germany usually people get sued for reporting security vulnerabilities.

[โ€“] MonkderVierte@lemmy.zip 14 points 2 weeks ago

Yep, don't do that if you live in a Internet ist Neuland country.

[โ€“] victorz@lemmy.world 7 points 2 weeks ago (1 children)

tf? They should offer you a job if anything.

[โ€“] einkorn@feddit.org 10 points 2 weeks ago (1 children)

That is if you'd live in a place with an open attitude toward new technologies.

[โ€“] victorz@lemmy.world 1 points 2 weeks ago (1 children)

But the technology is already there in place, and you get sued if you point out security flaws in it? Crazy.

[โ€“] einkorn@feddit.org 3 points 2 weeks ago (2 children)

Yes, because any circumvention of any form of security, be it as useless as a hardcoded default password, is considered a crime in German law. So even the discovery of a security flaw puts you with one foot in jail, because technically you did something you are not supposed to.

[โ€“] CompassRed@discuss.tchncs.de 1 points 15 hours ago

Interestingly, I didn't have to circumvent any security measures to uncover the vulnerability. They had a page that was leaking api keys - all you had to do was watch the network requests. That's why I chalk it up to luck and not my prowess in cyber security.

[โ€“] victorz@lemmy.world 3 points 2 weeks ago (1 children)

Time for some reform. Finding security holes is very important and benefits everyone.

[โ€“] einkorn@feddit.org 2 points 2 weeks ago

Not like there have been no initiatives. But given that our biggest party also sued after someone pointed out their technical fuck-ups it is not likely to happen.

[โ€“] EldenLord@lemmy.world 3 points 2 weeks ago* (last edited 2 weeks ago)

I know a guy who did exactly that and got sued. The security failure he reported even was a Straftatbestand committed by the company and so he won the process. German companies really love shooting themselves in the foot.

[โ€“] toothpaste_sandwich@thebrainbin.org 19 points 2 weeks ago

You scrape 'em boy, you scrape 'em good!

[โ€“] lime@feddit.nu 9 points 2 weeks ago (1 children)

i mean i haven't signed anything...

[โ€“] 01189998819991197253@infosec.pub 7 points 2 weeks ago

"by using this site you agree to..."

I'm not using your site. And I agree to nothing. Now, go GET for me.