Lol “credentials”. This was done directly on the server, which was kept always logged in with the admin account so anybody in the server room could access it. It was OK though, this was just a small company … just Reliance Electric, now part of Rockwell Automation.
And you thought “security through obscurity” was bad - this was “security through apathy”.
That was the 90s. It’s so long ago, we’ve come so far, so luckily there is no way any respectable company in 2025 does anything like that anymore.
Meanwhile: There’s me joining a ~400k employee corporation half a year ago to find out that they don’t have a dev env and testing is done on production, we just have to not push the “publish” button to keep our tests in preview mode instead of going live in our customer-facing ecom solution. 😬
If they gave a newbie full r/w creds to a prod db, that’s 100% on them and not you.
Lol “credentials”. This was done directly on the server, which was kept always logged in with the admin account so anybody in the server room could access it. It was OK though, this was just a small company … just Reliance Electric, now part of Rockwell Automation.
And you thought “security through obscurity” was bad - this was “security through apathy”.
That was the 90s. It’s so long ago, we’ve come so far, so luckily there is no way any respectable company in 2025 does anything like that anymore.
Meanwhile: There’s me joining a ~400k employee corporation half a year ago to find out that they don’t have a dev env and testing is done on production, we just have to not push the “publish” button to keep our tests in preview mode instead of going live in our customer-facing ecom solution. 😬