On Tue, 8 Feb 2022 at 06:51, Cecil Westerhof via Python-list <python-list@python.org> wrote: > > Chris Angelico <ros...@gmail.com> writes: > > >> > How difficult would it be to get people to read those lines, though? > >> > >> That does remind me about a system administrator who wanted to make a > >> point. He changed something on the server so all the Windows computers > >> started up and gave a message: > >> If you want to continue: click Cancel > >> > >> The help-desk became flooded with calls. I think he did a great job of > >> showing a vulnerability. But it was not appreciated and he was fired. > >> :'-( > >> > > > > First image in this collection: > > > > https://thedailywtf.com/articles/How-Do-I-Use-This > > > > For those who can't click on links, it's a screenshot of a > > confirmation dialogue. The user asked to cancel all the current > > transfers, and the system wanted to check that the user really wanted > > to do that; if you do indeed want to cancel those transfers, click > > "Cancel", but if you actually don't want to, click "Cancel" instead. > > His dialog was crystal clear. The problem was that most users just > click OK without reading the message. And that was what his little > experiment showed. >
Ah. Yes, that... that sounds like a very familiar and serious vulnerability. ChrisA -- https://mail.python.org/mailman/listinfo/python-list