-2
Always use 'user' as your username (discuss.tchncs.de)
submitted 1 year ago by cy_narrator@discuss.tchncs.de to c/linuxmasterrace@feddit.de
12 comments fedilink hide all child comments

Dont use Reddit username or Facebook username or anything like that even if it could be cool. That way you dont have to worry even if some log file or error stack trace recorded your username.

top 12 comments
sorted by: hot top controversial new old
[-] elvith@feddit.de 2 points 1 year ago

Drive your web dev nuts and use [object Object] as user name

[-] cows_are_underrated@feddit.de 0 points 1 year ago

OK, I guess it's some sort of sql injection, but what does that actually does?

[-] elvith@feddit.de 1 points 1 year ago

Not really - a SQL Injektion would be naming my user user"; DROP TABLE USERS;-- or something like that.

My string is harmless but might scare web devs: How often do you see pseudocode like this?

log(INFO, "User "+user.userID+" logged on")

Usually this should print User @someone@example.com logged on as the variable content gets converted to a string. But if the variable is not a simple datatype like string, but a complex one, there might be errors. If you do the concatenation above with an object instead of a string, this would only print User [object Object] logged on. Now when the web dev sees this line he's going to try to find the Bug, where this variable gets set to the wrong value/type, when in reality it's just your carefully crafted user name.

[-] Swiggles@lemmy.blahaj.zone 1 points 1 year ago

Don't use "user" as your username. Use a personalized one, because it is much easier to identify and obviously it is a requirement in a multi user context.

If you share your logs pseudonymize them, but pick anything other than "user", because it makes it confusing especially when dealing with pam, ssh etc.

Overall not great advise.

[-] drkt@feddit.dk 1 points 1 year ago

Why would I be worried about my username showing up in logs and errors?

[-] cy_narrator@discuss.tchncs.de 0 points 1 year ago

Sometimes you may not want to be identified.

[-] gigachad@feddit.de 1 points 1 year ago 
user is not in the sudoers file. This incident will be reported.
[-] hemko@lemmy.dbzer0.com 1 points 1 year ago

Uh, but if you were to post a logfile or whatever online you'd anyways sanitize it before posting, right?

[-] cy_narrator@discuss.tchncs.de 1 points 1 year ago

I would, I know how to use sed

sed -i s/myactualusername/user/g log.txt
[-] CAPSLOCKFTW@feddit.de 1 points 1 year ago* (last edited 1 year ago)

And don't forget to always use password as your password! 🤡

[-] cy_narrator@discuss.tchncs.de 0 points 1 year ago* (last edited 1 year ago)

QweAsdZxc!23

[-] maiskanzler@feddit.de -1 points 1 year ago

Thanks, but I'm already using dQw4w9WgXcQ

this post was submitted on 11 Sep 2023
-2 points (0.0% liked)

linuxmasterrace

2051 readers
1 users here now

A community for Linux enthusiasts.

May your htop stats be low and your beard grow long

Welcome to !linuxmasterrace@feddit.de former r/linuxmasterrace members and existing Lemmyverse citizens: Feel free to join the newly created !linuxmasterrace@feddit.de community.

Let’s make the full transition to the decentralized Fediverse!

founded 1 year ago
MODERATORS
youju@feddit.de