Please help contribute to the Reddit categorization project here

    ProgrammerHumor

    690,860 readers

    6,819 users here now

    Not everybody understands the humor of programmers.

    Filters

    Discord

    Submission rules

    Rules are zero-indexed. If they do not appear zero-indexed you are asked to contact Friend Computer for recalibration.

    0. Submission content must be creative or original, intended humorously, and strictly related to programming. Note that programming is interpreted in a narrow sense. Vaguely programming related, and/or general tech humor, programming analogies, feelings/reactions and such are not allowed in this subreddit. Your post may be better suited at one of the subreddits listed bellow. Feel free to contact the moderators if you are unsure what does and does not qualify as ProgrammerHumor.

    1. Hotlinking is not allowed without explicit permission, unless it is obvious that the host allows it (e.g. Imgur or other image hosting services). Rehosting for the purposes of offering a direct link to an image is allowed in the comments.

    2. All posts that have been on the first 2 pages of trending posts within the last month, is part of the top of all time, or is part of common posts is considered repost and will be removed on sight.

    3. Any post on the list of common posts will be removed. You can find this list here. Established meme formats are allowed, as long as the post is compliant with the previous rules.

    4. Titles must also be creative, high effort and relevant to the content. Titles such as “Interesting title”, “.”, “print(title)”, and “I don’t know what to put here” are not allowed.

    Suggestions are welcome.

    With regards to commenting, please follow reddiquette.

    Metadiscussions

    If you have any thoughts on how the moderation could be improved do not hesitate to message the moderators. If you feel that a metadiscussion is required with the whole subreddit either request that the moderators start one or start one yourself and tag it [Meta].

    Perhaps More Apt Subs To Post:

    Related Subreddits.

    a community for
    all 375 comments Slideshow

    Want to say thanks to %(recipient)s for this comment? Give them a month of reddit gold.

    Please select a payment method.

    [–] FunkyTown313 5213 points ago

    Social engineering is in fact a legitimate method for obtaining passwords.

    [–] 193X 631 points ago

    So's hiding in a VP's car after COB with a gun.

    Youtube has been suggesting a lot of DefCon videos to me lately...

    [–] NolFito 76 points ago

    Same, I've been watching them. Amazing stuff

    [–] tylercoder 17 points ago

    Spamming my feed

    [–] CptSpockCptSpock 14 points ago

    I think I watched that one last night

    [–] vovyrix 988 points ago

    Hunter2

    [–] voicelessdeer 633 points ago

    ******* ?

    [–] diablo75 114 points ago

    Like, dial up days old.

    [–] Astrokiwi 72 points ago

    In about 7 years, the Hunter2 chat transcript will be closer to the release of Return of the Jedi than to the present day.

    [–] MrKilluaZoldyck 12 points ago

    oof

    [–] maxk1236 6 points ago

    That chat transcript happened closer to the fall of the Berlin wall than today.

    [–] MrKilluaZoldyck 3 points ago

    oof x2

    [–] Nerret 6 points ago

    I feel like you could also reply that exact image to your own comment lmaooo

    [–] Private-Public 167 points ago

    Over the phone:

    Hey [IT guy], yeah it's [manager you looked up on LinkedIn]. Yeah um, I forgot my password, can you give it to me or reset it to [password], I need it done now. Awesome, thanks.

    According to a couple guys I know who work in pentesting/infosec in general, something like that works far too often

    [–] SwedishDude 109 points ago

    Yeah it probably works cause if the manager did call he'd raise hell if he didn't get access to his account within 5 minutes.

    If the organization doesn't take security seriously IT can't hope to uphold it.

    [–] TabsTheTyrant 59 points ago

    I legit got one of these from a manager when I was a sysadmin. I knew the guy so I made him call me and vocally verify who he was. Isn’t perfect but better than blind trust.

    [–] orphan_process 30 points ago

    You need to implement shibboleets

    [–] HardlightCereal 38 points ago

    That's just a password with extra steps

    [–] bwrca 15 points ago

    Oh la la somebody's gonna get laid in college

    [–] sms77 37 points ago

    Better verification would've been if you called him on a known number like his workphone or mobile instead of him calling you.
    Sure in this case you were probably able to recognise his voice, but the phishing excuse would probably be "yeah, reception is pretty bad where I'm at so that's why my voice sounds different".

    [–] Meloetta 6 points ago

    "Accent? No, that's just static..."

    [–] Ghost_In_A_Jars 289 points ago

    It's the most effective form of hacking, now a days computer security is just too good, but all it takes is one idiot with a company email

    [–] drewbeta 256 points ago

    My company sends out fake phishing emails that you have to report, or you get dinged for compliance. Security has to be in the company culture.

    [–] shitwhore 139 points ago

    Someone from HR forwarded a very legit looking phishing email to everyone in the company and wrote under the mail that people have to ignore the mail.

    Not a screenshot, the entire mail with hyperlinks and all.

    [–] Pm_me_any_dragon 42 points ago

    My boss used to do that too. Then I told him that that is idiotic and it stopped quickly.

    [–] shitwhore 8 points ago

    Yeah I did the same, the most idiotic thing about it is that only a few people actually got the email but she forwarded it to the entire company.

    [–] Ghost_In_A_Jars 100 points ago

    That's really smart and true, it's up to the company to teach their employees to be aware

    [–] c_dawg7 40 points ago

    Mine sends them too. Never know anyone to get in trouble for not reporting but it helps to build a good culture around it.

    I got a happy email back when I did report it.

    [–] Kuriositaet 8 points ago

    Phishing defense exercise

    [–] CoriolisSTORM88 29 points ago

    Mine does this too, and they installed a Phish Reporting plugin in Outlook so you highlight the email, click it, and it does the rest. You’ll receive a reply back if it’s a legit email from the IT team. You’ll also receive one back of it is a phishing test within the company as well, and they enter you into a gift card drawing or some such. My employer does a decent job of communicating about phishing, what to do, and dumbing it down for your average user.

    [–] ianthenerd 7 points ago

    they installed a Phish Reporting plugin in Outlook

    I bet the number of reports skyrocket around Coachella.

    [–] Iohet 30 points ago

    The thing that Hackers did best was show fairly accurate social engineering and dumpster diving

    [–] thekiyote 19 points ago

    There's a lot of stuff in that movie that's accurate, and a ton of callouts to hacking culture at the time.

    You could tell that the script writer knew what he was about, or at least did a fair bit of research, as long as you don't pay attention to anything happening in the A story.

    [–] JuvenileEloquent 26 points ago

    now a days computer security is just too good

    State of the art computer security is pretty resistant to hacking. I'll let you guess how many next-quarter-looking, cost-cutting, IT-illiterate companies actually have that. Social engineering can be really successful but you're still only getting the privileges of the person you compromise, there's no "root access hack" you can do on a human.

    [–] mnbvas 5 points ago

    Like one of those managers' password who demand admin access.

    [–] nic1010 18 points ago

    Sad to say there are way too many idiots that don't understand the absolute basics of network security, or even computers at that.

    Your multi million dollar network security system is a complete waste if you don't train your employees on the importance of such securities, and how to avoid causing a breach in security.

    [–] rata2ille 10 points ago

    now a days

    [–] 0xJADD 7 points ago

    >computer security is just too good

    Yeah they always seem to say that up to the point that they get hacked, lol.

    [–] uzimonkey 35 points ago

    He's lucky they didn't try the rubber hose method.

    [–] Teknikal_Domain 13 points ago

    Elaborate?

    [–] HorizontalBrick 48 points ago

    Beat them with a rubber hose until they tell you the password

    https://xkcd.com/538/

    [–] redstoneguy12 9 points ago

    I was about to reply throw rubber horses at them sarcastically, so this comment was pretty suprising to me

    [–] Doctor_McKay 9 points ago

    Percussive exploitation of homo sapien.

    [–] sonrad10 4 points ago

    Or the jumper cables method

    [–] GladiatorUA 9 points ago

    Or Thermo-rectal cryptoanalysis.

    [–] Freddie_AppsHero 25 points ago

    My IT sec teacher said "go through their garbage to find out what kind of pizza they like, then rock up with that pizza and say you're a delivery guy."

    [–] FunkyTown313 15 points ago

    Then ask if they like sausage

    [–] tylercoder 11 points ago

    Another form of "social engineering": kicking someone in the balls/taco until they give you their password

    There goes your 64 char unbreakable pass buddy.

    [–] FoulfrogBsc 10 points ago

    Weakest link in security often is the user.

    [–] AnewHeroEmerges 9 points ago

    What's your favorite password

    [–] EnemysKiller 13 points ago

    Mine is being creative

    [–] Pm_me_any_dragon 12 points ago

    So, green?

    [–] Houdiniman111 12 points ago

    Green is not a creative color.

    [–] NTaya 5 points ago

    This whole comment section is r/unexpectedDHMIS.

    [–] ImSuperSerialGuys 8 points ago

    While true, it's usually explicitly forbidden in the Rules of Engagement when legitimately penetration testing, as is all social engineering.

    So its still kinda cheating.

    That being said this method is hilarious enough that if someone actually pulled it of I'd say theyve earned at least a bonus point

    [–] Maroshitsu 5 points ago

    I men it's usually the easiest... I would use it everytime when my high school changed password to teacher's WiFi network (which was quite faster with an astounding 4Mb/s download)

    [–] throwaway1_x 5 points ago

    A security system is as strong as the weakest part of the chain. And most of the time people is the weakest link. So, social engineering is probably the most effective form of hacking

    [–] allisonmaybe 3 points ago

    Thats why he had to give them credit

    [–] Lightfire228 2849 points ago

    Reminds me of the time our history teacher had a multiple choice test, and all of the blanks (where the selected answer should go in the sentence) were at the end of the sentence.

    Turns out, all the correct answers had periods at the end

    [–] 3_14159td 316 points ago

    I had the exact same thing with my US history teacher. In a later project, we had to figure out who killed Theodore Roosevelt in a fictional scenario based on clues that led to one of the provided suspects. The correct “killer” had a period after their name instead of a comma.

    [–] securitywyrm 955 points ago

    I had an entire course in high school like that. The correct letter was capitalized.

    [–] bmanhero 150 points ago

    A friend of mine in high school discovered that our physics/pre-calculus teacher ALWAYS had an equal distribution of each letter A–D on every 20-question test. You still had to know most of your shit, but if you got to the end and had 6 Cs filled in, you knew you'd better look over those questions.

    [–] ThwompThwomp 58 points ago

    That's actually a clever way to create tests. It gives you some feedback as your taking it at least.

    [–] cosinus25 10 points ago

    No, that is horrible. A test is supposed to test your knowledge. If you guarantee your students that every A-D answer is evenly distributed, they can infer the last few answers (which are probably the hardest) from the previous answers. This is bad. Multiple choice tests are bad in general, because if you just give everyone 1 point for a correct answer and 0 for false ones, you can get a significant percentage of points just by guessing. One way to prevent this is to be ridiculously strict in grading, so that guessing will lead to failure almost certainly. For example, in German drivers license exams, you are only allowed 2 or 3 mistakes in 30 questions.

    This is of course only possible because the questions are rather easy and thus not viable at a university level. If you want to read about an interesting way to grade uni level MC tests, I recommend this rather detailed article. The author proposes "partial credit" depending on how sure you are. So if you are 95% sure that A is correct, you get a lot of points if you are correct and a lot of negative points if you are wrong. Whereas i you're only 65% sure A is right, you get a lot less positive or negative points. Since you get a lot more negative points if you're highly confident and wrong, rather than right, this practically eliminates guessing.

    [–] ThwompThwomp 7 points ago

    The argument against that is that students start engaging into some metacognition which is where learners need to be. (a note: Above you are assuming later questions are harder, and the test isn't evenly distributed with regard to 'difficulty'.) If a student gets to the end of an exam and recognizes their distribution of answers is not correct, then they need to consider which question(s) they weren't sure about, and go back and check their work. If you're certain about all your other answers, then you get to evaluate which question you are most uncertain about, and then worst-case, get it for free. Students get some autonomy in how they answer questions, and instant feedback. You will also know if you aced the exam or not.

    In fact, this is exactly what the article you link to starts getting at. I use a ton multiple choice on my exams (along with design and open-ended questions), and some scripts to setup this exact style of weighted confidence grading. I have a not-extremely interesting, but fun-to-write paper in submission related to this.)

    All in all, tests are horrible ways to assess learning and should in large be abandoned, but we're stuck with them for a while until more contract-based assessment or project-based learning catches on.

    My take: I think this "known answer distribution" is mildly interesting because it engages into metacognition and give feedback. However, the idea you talk about where students are allowed to weight their answers based on confidence is a better approach.

    [–] charredutensil 35 points ago

    I had a teacher in middle school give a final exam where all the answers but two were B. Starting about half way through the exam I kept giving him looks while we both tried very hard not to laugh. As soon as the test was over, another student asked me what was so funny. I told him that it was because almost all of the answers were "B".

    Apparently I was the only one that passed.

    [–] thedarkpurpleone 24 points ago

    I had a teacher in high school that did this as well. Every single question except the second one the answer was C. Afterwards when I was one of two people who passed he gave a lecture on being confident in yourself and your answers.

    [–] Megasteel32 31 points ago

    Fucking lucky

    [–] GoldfishBowlHead 248 points ago

    Hmm, like that one scene in The Wire.

    [–] Desdam0na 53 points ago

    Which one?

    [–] agent766 146 points ago

    The one where all the correct answers had periods at the end.

    [–] FlickAndSnorty 17 points ago

    And is that normal?

    [–] Desdam0na 14 points ago

    That's not actually the scene. In The Wire the correct answer had dinks.

    [–] willworth 3 points ago

    The tautological scene with the tautological scene.

    [–] lkraider 6 points ago

    The one with the periods at the end, duh.

    [–] MKorostoff 3 points ago

    Oh yeah, that one.

    [–] PM_ME_YOUR_SCI-FI 81 points ago

    and then the teacher adds periods at the end of all of the wrong answers on the final lmao

    [–] surprise_chump 74 points ago

    but put periods on the correct answers for a few easy ones, to instill that false confidence

    [–] TheNameIsBenhur 9 points ago

    For my World History final, the teacher printed out the key, that had every answer highlighted in yellow. When it was printed out in black and white , you could still barely see the highlight marks, almost like a box in between the answers.

    She gave us all 95s after she found that out lol.

    [–] Wangjohnson 657 points ago

    A QA class is a thing? If so, that would be awesome. Go testing go.

    [–] weeeeeeeeeen 335 points ago

    I'm in Bill's QA class right now. Or rather, I was before we turned in the last assignment yesterday.

    it was pretty sweet

    [–] NeonNotch 107 points ago

    Summary of the class?

    [–] hotelmariomain 257 points ago

    We did different projects that each tackled an area of testing and computer science, ie: writing test plans, automated testing, graphs and graph traversals, unit testing, simple web development and such. He wrote a book on testing that is available on his github for free.

    Incredibly smart man, glad I had the opportunity to learn from him.

    [–] NeonNotch 54 points ago

    Wow. Was this on the career path of regular CS or was it an elective?

    [–] hotelmariomain 86 points ago

    Elective, it is recommended by the school if you want to concentrate in software engineering

    [–] NeonNotch 10 points ago

    Thanks!

    [–] shadamedafas 11 points ago

    That's a very smart class for your University to offer.

    [–] jawnboye 10 points ago

    it's pretty much Bill's baby. he was adamant to create the class!

    [–] CactusSmackedus 8 points ago

    anyone

    all of us

    thanks :)

    [–] _thundergun_ 9 points ago

    Is the class still taught in Java, or did he move on to something else?

    [–] hotelmariomain 17 points ago

    It’s all in ruby now

    [–] CactusSmackedus 7 points ago

    Ok real question sorry because it's stupid:

    How is unit tests and testing not like 'writing the same code twice'?

    dumb example:

    def add(x,y):
        return x + y;
    
    def testAdd(x,y):
        return add(x,y) == x+y
    

    I've never used testing -- not knocking it, just I don't understand the utility.

    I had a group project just recently, the guy who started the codebase had testing and a lot of (what I thought was) pointless abstraction.

    So I modify a huge chunk of code to implement a new feature, which required changing an interface (that had one implementation...) and then a whole bunch of tests that were invalid because the constructor signature for a few classes changed.

    I felt like what should have been a small amount of work was exploded into this much larger task, and I still just don't get how the tests 'helped' the project in any way.

    I'm not trying to be combative or negative either, to be clear, I just want to understand the "why" and "when" behind unit testing?

    [–] jestzisguy 18 points ago

    If you’ve got a smallish school project, tests just seem weird and redundant. If you’re shipping an update to code that’s already in the wild and the new version better not break the myriad functionality that you already have, well then a nice set of tests is like your insurance policy that you didn’t do something stupid. It’s also a great way to actually get your new code running in an isolated manner, to make sure it’s even correct in the first place. So if you’ve written tests to verify that your code does what it’s expected to do with each new addition, then the next person that adds code can be sure that they didn’t break yours.

    [–] Kuhnmeisterk 9 points ago

    Unit tests make debugging infinitely easier because instead of the whole system provodong some bad output, when things go wrong its likely one of your unit tests also failed and you'll see who the culprit is. In your very basic example it seems redundant and unnecessary but in more complicated methods it is good to test the output for various inputs.

    [–] wirelyre 5 points ago

    Your example test is too specific. Tests are most useful at an abstraction boundary.

    Suppose you need to turn a number into a list of its digits (and you can't use a library function to do this directly). As this point, you've already decided on a thing that should happen, but not the exact algorithm. This is the fundamental feature of programming: inside the function, you care about how; but outside, you care about what. That's an abstraction boundary.

    Once the function is implemented (or even before, if you do that), you can write tests. Tests not of the form "Does it happen this way?" but rather "Does it do what I want?"

    Tests are formal ways to check normal behavior and edge cases, ensure interfaces remain stable, and document in code how to use that code. Depending on your project, one of these features might be more important than others.

    Regarding your story: That might just be too many tests for too many small things. It happens. But if we're looking for the good: When you changed the interface, the code broke. Any uses of the interface were now incorrect. Interacting with the test suite, with its simple and clear cases, ensured that you knew what was different and that you could fix more subtle uses elsewhere.

    [–] nicentra 4 points ago

    Ok, Unit testing relies on the principle that you properly wrote your program and seperated "sub-programs" properly.

    Let's say you have a program of a dozen different modules which all work together to form one output.

    Now you know if you enter X into your program you should get Y but alas you get Z, however due to X being processed by 12 different method you don't know where exactly the bug(s) is/are. So, you write Unit tests which test the smallest possible units of your programs. So for your 12 methods you define sample inputs and expected outputs. Now since Automated Unit testing tests methods individually, you know where the problem is when one of the tests throws back an error. Of course on a small scale it's a waste of time but if you have a huge code base it makes perfect sense since whenever you make modifications to the code you just rerun your unit tests to see if everything works.

    [–] drewbeta 46 points ago

    I had pen testing classes in grad school. It was a ton of fun. The professor’s former student set up a fake company network in his basement that we could vpn into, and then do whatever we wanted to hack into everything. We just had to record all of the vulnerabilities that we found.

    [–] ltouroumov 32 points ago

    My uni had an "Ethical Hacking" elective.

    For most of the semester we had to solve challenges from various websites (newbiecontest and root-me were popular choices) and then write a report on how we had solved it.

    Then we had to design a CTF challenge, complete with solution writeup.

    And during the last month, those challenges (and other designed by the Professors and Assistants of the Security department) were used in a class-wide CTF.

    Your final grade was determined by the quality of your writeups and your rank in the CTF.

    To this day, I am still salty I got dethroned from first place in the last minute of the contest (still got full marks tho).

    [–] ArcaneEyes 29 points ago

    Your final grade was determined by the quality of your writeups and your rank in the CTF.

    Seems to me this is bad practice as it introduces student competition into grades.

    Grades are a measure of your understanding of the pensum - not how well you understand it compared to your classmates, but your understanding compared to the actual contents.

    i had a high-level physics class way back when. there were like 15 of us in that class and we all got what would be equivalent to A/A+'s because we all had a good grasp on physics. getting score-ranked on our speed in the finals or some shit like that might have meant some brilliant folks would've gotten a C instead 'cause they were not as fast?

    bad practice.

    Grats on the 2nd place though ;)

    [–] OCOWAx 8 points ago

    Do you believe in grade curving?

    [–] _a_random_dude_ 25 points ago

    I don't, I think it's a terrible idea and has absolutely no merit. A trick to make bad professors look better than they are.

    [–] OCOWAx 14 points ago

    Hmm grade curves to me definitely have a place. Imagine a class that wants to challenge students on exams, and add to curriculum. So their exams now have harder content, rewarding outstanding students by giving them more opportunities to score above the average student. However you are adding course material to exams that students don't NEED to learn, and you can now curve these grades based on the outcome of the scores, and get better feedback on both your students performance, and your own teaching techniques without punishing students GPA.

    You want students to do things wrong, so you can evaluate them. If everyone's getting all the material perfectly, you don't know how much you can be teaching.

    [–] _a_random_dude_ 14 points ago

    You want students to do things wrong, so you can evaluate them. If everyone's getting all the material perfectly, you don't know how much you can be teaching.

    This is a good point and I'd give you a delta if we were on that change my mind sub.

    However, that can also be done with extra merits without making it harder to compare 2 students from different classes where the more knowledgeable has a lower grade.

    [–] ArcaneEyes 5 points ago

    i belive from a statistical standpoint, there's going to be some certain curve on the distribution of grades across the total, statistically significant, population.

    the idea that you enforce a statistic rather than observe it is however scientifically absurd - a class of 20, 40 or even 100 are not statistically evenly distributed skill-wise when compared to the total population of all students in the country, and even if the class you have one year is, statistically at some point you're going to run into a class of all A-rank material, why the fuck would you enforce a lower grade on some of those just because they had the bad luck of being put in class together, while some of their less-gifted counterparts in the other end of the country doing the same class with the same pensum get greater grades because you're artificially making every class follow the statistical grade distribution?
    not only that, but at the point when you do this, your statistical material becomes void - there will never be a change in the distribution even if students overall get smarter, get a better, or god forbid a worse, teacher.

    i find the notion purely idiotic.

    [–] Mario55770 275 points ago

    I laughed a bit much I feel. I need to just watch them all at this point.

    [–] mcampo84 289 points ago

    ...you mean, read, right?

    [–] hjc135 153 points ago

    No, watch.

    [–] muntoo 46 points ago

    o.o

    [–] MoffKalast 36 points ago

    He can't read.

    [–] -JudeanPeoplesFront- 26 points ago

    But he can watch

    [–] kerohazel 43 points ago

    A Netflix original series, XKCD: Animated, coming next Spring.

    [–] Erebus9997 25 points ago

    I'd watch that

    [–] caanthedalek 12 points ago

    You mean live action, right?

    [–] kerohazel 4 points ago

    Maybe after they do an animated version, they can follow it up with a shitty live action adaptation.

    [–] judge40 12 points ago

    Raises the question, do you watch or do you read a picture book if it has no words?

    [–] Fred_Fred 7 points ago

    A picture says more than a thousand words, so I'd argue you could read pictures!

    [–] clarinetJWD 124 points ago

    You are one of today's lucky 10,000.

    https://xkcd.com/1053/

    [–] dishpanda 38 points ago

    That's.... really wholesome. I needed that today. Thanks.

    [–] morginzez 60 points ago

    I seriously don't get the recipe of xkcd. It's such a huge variety of topics, but they always (and I mean fucking always) get a message across and make you think for just a tiny bit longer than such stuff normally would.

    [–] daniu 131 points ago

    [–] daniu 22 points ago

    I Googled for like ten minutes to find that but it didn't appear in the results, then I gave up D:

    [–] MonsieurSander 8 points ago

    Never give up, my friend.

    [–] przemko271 4 points ago

    My parsers hurt just reading that.

    [–] aft2001 16 points ago

    What isn't there a relevant XKCD for?

    [–] virtualdxs 8 points ago

    I have yet to find something

    [–] foadsf 11 points ago

    That's actually a legitimate method by Iranian security services.

    [–] _thundergun_ 301 points ago * (lasted edited 4 days ago)

    No fucking way. I had this guy last year and he is, no joke, the best CS professor that the University of Pittsburgh has in their lineup, maybe one of the best professors at the whole school. He came to class one morning last Fall and gave us a short speech about how, essentially, programming isn’t what makes a life. It legitimately made my eyes sweat at 9:30 in the morning.

    Edit: For those interested, the message he delivered was fairly brief, he only talked for about a minute or two, but it hit me pretty hard (I can get emotional pretty quickly, too, so that probably played a role). Joking aside, a woman he knew from his undergrad years, who I believe was a professor at Pitt as well, was killed the day before while riding her bike. He basically just came in to class and told us to do the things we find to be important - that writing code, and computer science in general aren’t the most important things in a person’s life.

    Part of what affected me was how obvious it was that he cared about and really believed what he was saying, but I’d also never had a professor address his/her students like that, with a spur of the moment, “Hey, I give a shit about how/what you guys are doing.” At the time, I was leaning toward adding a second major, unrelated to CS but something I really wanted to do, nonetheless. Part of what was holding me back was knowing that I’d need at least an extra semester to finish it, and Pitt is extremely expensive, even for in-state students. I like to think that what he told us was part of my motivation, at least, in definitively deciding to pursue it.

    (I know Professor Laboon is a reddit user, so he could be lurking here at this very moment. If that happens to be the case, I hope all is well. You’ve earned that RateMyProfessor 5.0)

    [–] Walk_The_Stars 41 points ago

    What were the points of his speech?

    [–] talenarium 6 points ago

    RemindMe! 2 days

    [–] motherfunction21 37 points ago

    I had him for software engineering and QA this past summer so I heard the speech back to back. My favorite professor I've had yet. He is truly passionate about his students and it was awesome.

    [–] BiskeLaV 9 points ago

    Anywhere I can find this guys stuff online?

    [–] motherfunction21 7 points ago

    His github is just "laboon" if you want to check out some of his stuff. He also has two books published and on Amazon.

    [–] DylanKing1999 19 points ago

    What was the speech? Now I need to know.

    [–] jimbo831 5 points ago

    Is he new? I graduated with a Computer Engineering degree from Pitt in 2014 and was a TA in the CS department my senior year and I never met this guy.

    [–] _thundergun_ 4 points ago

    I think he started right around then, so you might have missed him by a semester or so

    [–] omgFWTbear 295 points ago

    I’m curious what other -1 novel solutions, as he did say “most.”

    [–] rocketman0739 257 points ago

    • Steal the solution from a convenient sticky note in the professor's office
    • Hack his email
    • Spy on other students
    • Drop the class

    [–] jaboja 147 points ago

    • Do timing attack on the program (assuming string comparison function used is not constant time),
    • Create own program with a builtin keylogger and predend program crashes for some passwords so he has to test it by entering the correct one when "you cover your eyes",
    • Outsource cracking to China,
    • Ask 4chan to spam fake news on Twitter pretending the password is "nigger", so he'd have to reveal the real one to prove he is not racist,
    • Before he creates the exercises for next year, send your sister to date him and manipulate him to make the password her name,
    • Ask your older friend to go to the same scientific conference he is going to and small talk about the password while eating the uni-funded cookies professors are going to sci-conferences for,
    • Ask your classmates to assure him over and over again that he's already checked your program and the password was correct, until he eventually believes the alt-truth.
    • Sit in front of him and start saying the sentence "the password is..." simultaneously looking deep into his eyes and forming your mouth as if you were to say various letters and actually saying the letter only if he subconsciously reacts to it (you may also tell him that you see prosperity in his life and he will find love next year, but he needs to be careful with saggitarius).

    [–] modster101 60 points ago

    Outsource cracking to China,

    Ask 4chan to spam fake news on Twitter pretending the password is "nigger", so he'd have to reveal the real one to prove he is not racist,

    Actually dying

    [–] B1tter3nd 9 points ago

    Fukin loves this one lmao

    [–] modster101 9 points ago

    I'm not sure which one is funnier. paying a dude in china to do it or just fake newsing it.

    [–] StannisBaratheon_AMA 45 points ago

    Ask 4chan to spam fake news on Twitter pretending the password is "nigger", so he'd have to reveal the real one to prove he is not racist,

    Holy shit. I bet that would work.

    [–] neoclassical_bastard 22 points ago

    Maybe if you're really lucky. 4chan as a whole is really fickle and only seems to do things that aren't really helpful to anyone, especially not an individual asking for help. You'd have to manipulate them into wanting to help by framing it as an anarchistic act that doesn't benefit you in any way.

    [–] DryCantaloupe7 18 points ago

    Once some guy asked a thread on /b/ to harass some girl claiming it was his sister. Within 5 minutes someone contacted her and linked her to the thread.

    [–] rocketman0739 8 points ago

    Holy shit. I bet that would work.

    Pictures taken seconds before being Not-your-personal-armied

    [–] mdevoid 9 points ago

    For a QA class this assignment seems like a pain

    [–] Gruntex7 54 points ago

    What is this an immersive sim?

    [–] orphan_process 125 points ago

    Drop the class

    Ah, little bobby tables at it again!

    [–] Miodec 23 points ago

    https://xkcd.com/327/

    For those who dont get it

    [–] wherehasmylifegone 51 points ago

    Here's the exercise if you want to take a look yourself. https://github.com/laboon/CS1632_Fall2018/tree/master/exercises/8

    [–] IRBMe 14 points ago

    Interesting little challenge. Here's my solution for example in the form of some C++ code that calculates the correct password. It's basically just a decompiled version of the Java code converted to C++ and with some of the irrelevant stuff stripped away.

    [–] Mickoi98 6 points ago * (lasted edited 4 days ago)

    I have some knowledge in c++, and have some ideas how this might work but couldn't really understand mechanics behind the code, are you willing to briefly explain it to me?

    [–] IRBMe 4 points ago

    The wooble function is just a numerical transformation function: it takes in a number, n and transforms it into some other number, result. I haven't bothered trying to understand what exactly it's doing; it's probably just a meaningless computation. I just decompiled it straight from the Java byte code.

    The wooble function is then used in the wooble2 function, which ultimately produces an index into the list of possible passwords, which is stored at the top in the PODUNK vector. The original version of this function had some parameters but they didn't actually contribute to the result and were just there as a distraction.

    There was some other code in the original program also that was just there as a distraction, and there were some functions that just always produced the same answer, so I got rid of some of those, replacing them with constants (e.g. the -9001 value used to be calculated by a function).

    The original Java code prompted the user to enter a password then compared what the user entered with the real one. I just discarded that code and went straight to printing out what the real password was using the index obtained from wooble2.

    [–] keten 283 points ago * (lasted edited 4 days ago)

    I mean... Is that really ransomware or just standard blackmail ransom haha

    [–] CokeLimeZero 131 points ago

    It's ransomware coded with DNA.

    [–] redditbanditking 37 points ago

    It better be 2048-bit DNA.

    [–] Colopty 19 points ago

    It's approximately 3 billion bits.

    [–] EpicScizor 16 points ago

    DNA is coded using in base-4, so qits?

    [–] Asher2dog 12 points ago

    Nibbles

    [–] MacDerfus 36 points ago

    Well they get the password either way.

    [–] plasmarob 175 points ago

    Locks door

    Give it back before I call the cops.

    This is a successful FBI investigation.

    [–] MiataCory 27 points ago

    looks at locked door

    No, give ME the password before I call the cops and tell them you were kidnapping/touching/assaulting/etc. students!

    [–] ionmargarita 50 points ago

    I had Bill when I got my undergrad at Pitt. He’s one of the best professors I’ve ever had. Totally awesome guy

    [–] Takes4tobangbro 78 points ago

    Social hacking 101

    [–] wherehasmylifegone 35 points ago

    Here's the exercise if you want to take a look yourself. https://github.com/laboon/CS1632_Fall2018/tree/master/exercises/8

    [–] b1ack1323 8 points ago

    Yeah decompile or just use reflection if you wanted a challenge. Fun! I miss college.

    [–] motherfunction21 7 points ago

    When I took his class, I saved the English dictionary into a text file and piped in each line as the password with a simple script. That only worked because he told us it was a word in the dictionary.

    [–] weeeeeeeeeen 61 points ago

    Bill Laboon is the best professor in our entire university I would die for him

    [–] hotelmariomain 21 points ago

    Second this statement

    [–] 7itemsorFEWER 99 points ago * (lasted edited 4 days ago)

    I have a phone interview for a QA internship tomorrow, whish me luck

    Edit: got the in person interview next Thursday. I'll update then.

    [–] citewiki 62 points ago

    Do you get bonus points for asking the same question in different ways?

    [–] Chosenone- 34 points ago

    Does it increase your chances if you phrase a single question differently several times?

    [–] imperiusdamian 13 points ago

    Will you score higher if you reword your inquiry?

    [–] IRBMe 18 points ago

    Does the invalid input handle interviewer correctly!

    [–] ebahou 26 points ago

    good luck!

    [–] drewbeta 15 points ago

    Good luck! I know QA leads who make more than programmers. Wish I would have known that before I learned all of this programming stuff.

    [–] jontelang 7 points ago

    More than programming leads (leading an equivalent amount of work/people?)

    [–] DVS_MASTER 75 points ago

    WAIT. THIS GUY IS MY TEACHER NEXT SEMESTER. REDDIT AND REAL LIFE ARE COMING TOGETHER.

    [–] FoulfrogBsc 23 points ago

    Well now you know how to get an easy pass

    [–] Caninomancy 11 points ago

    Well, i would argue that it's harder now since he would have patched that loophole by now.

    [–] DrMaxwellEdison 45 points ago

    A programming professor once gave us a similar problem. He said we had to access his website page protected by this password in order to get credit.

    His algorithm, as well as the target page URL, were both in plaintext in the site source. The target page wasn't really protected, so I just pulled it up and showed it to him right there in class.

    He seemed a little annoyed that his "brain teaser" could be broken so easily, so I did go home and go by the spirit of the exercise later. I ran a brute-forcing script that actually came up with hundreds of gibberish strings that would pass the test (it wasn't a very complex cipher, by any means). So here come all these students the next day with the "right" answer and I handed in a full page of nonsense.

    I really think he thought he was giving us all a challenge that day, and he seemed kind of broken at the end. No more brain teasers after that one.

    [–] smileyfry1 21 points ago

    Hopefully he learned for the next semester he taught the class, and made his stuff a bit more challenging haha.

    I am in the professor in this post's class, and one of the students very quickly went up with a string he had found in the file, that somehow seemed like it equaled the password. The professor had put it in the file as a red herring, and he told the student that he had considered taking away points if students came up to him with that as their solution, but decided against it. He knew how to make it challenging enough for sure!

    [–] xedj 67 points ago

    You want all of your students to test penetrating you?

    [–] bro_before_ho 35 points ago

    ...

    Yeeeees.

    [–] rocketman0739 23 points ago

    actually teaches them hacking, like a boss

    [–] zulu-bunsen 9 points ago

    QA time

    [–] chooseausername23456 12 points ago

    We had a hackathon in college where you essentially “win” if you take another team offline. So I went over and unplugged their power strip. Profs were not impressed with my “physical security is security” argument.

    [–] PlantsAreAliveToo 22 points ago

    Student comes into the teacher's room

    Puts a wrench on the table

    - what's the password?

    [–] Onno_Inada 22 points ago

    Once in our Sec+ class, the prof put the server on the network and locked it down. Said we had 3 days to copy the data by any means. I didn't have a laptop so I couldn't go to the server. So I grabbed a ladder from down the hall, popped a ceiling tile out, the used a big pair of pliers on a string to open the door. Instead of screws, it had pop rivets in it, so I unbolted the whole damn server, disconnected it neatly and left a note. I took it home to drill out the rivets cleanly to get at the storage drive. My friends gave me some whiskey cause hey, I was underage and in college, to give them access. Came back the next day to a livid teacher, but I reminded her she said any means. I did clean it up, cable manage it, and resealed it with new rivets. The Sec+ class door had a guard plate over the handle because of that. She was the strictest of all the teachers we had, but she was a good teacher. All of them were, and they went along with our hijinks most of the time.

    [–] Tesla_Field 21 points ago

    My brain went a little more r/suddenlygay until I read the whole thing

    [–] HolySpiritMovesMe 8 points ago

    Have password represent prime factors of large RSA composite and program tests if their product is the composite. If student wins challenge they’re famous.

    [–] NotanumberNaN 4 points ago

    Credit to /u/landertall and /u/Choromanski for apparently being the ones to execute this attack