Hacker News new | past | comments | ask | show | jobs | submit login

I fail to see how this explains SQL injection in a non technical way



if non-technical means "avoid any techy words at all costs" then I suppose not. But unless one is totally brain-dead and likes to stick their hands in their ears and say "lalalala" at the mere utterance of anything that sounds like an explanation (and people like that, you just don't bother explaining anything to, they just aren't willing to learn), then I think it conveys the basic idea fairly well. You can always dumb things down so to a certain level but then the analogy only bares minor resemblance to the actual problem and teaches nothing. At that point you might as well say "SQL injections is baaad mkay?".


Are you reading the same comic? The author doesn't explain why calling the son

    Robert')DROP TABLE Students;--
would cause the records to disappear. Which is fair enough: it's meant to be humourous, not explanatory.


It doesn't have to explain why or how, one can infer from the comic that inputting unexpected data into a form will cause an unexpected result.


to quote babbage:

> On two occasions I have been asked, 'Pray, Mr. Babbage, if you put into the machine wrong figures, will the right answers come out?' I am not able rightly to apprehend the kind of confusion of ideas that could provoke such a question.


It's funny as hell.

And the last remark in the dialog makes it clear the intended audience is sloppy developers, not non-techies.

Although brighter non-techies would probably get it after a little thought.




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: