Beefy Boxes and Bandwidth Generously Provided by pair Networks
Perl-Sensitive Sunglasses
 
PerlMonks  

Re^2: PERL CGI

by sundialsvc4 (Abbot)
on Jul 12, 2017 at 16:16 UTC ( #1194949=note: print w/replies, xml ) Need Help??


in reply to Re: PERL CGI
in thread PERL CGI

Like you, probably, Corion, I just get the heebie-jeebies thinking about using a CGI web page to do “DBA tasks” such as user-creation!   Even on a secure company intra-net, this would completely scare me away from actually doing it.   Oracle has some pretty good, secure, visual tools already for doing that sort of thing, and even for partially-automating various steps.   If a subordinate came to me with this idea, I would say “No” without even turning around to face him.

Replies are listed 'Best First'.
Re^3: PERL CGI
by marto (Bishop) on Jul 12, 2017 at 16:53 UTC

    "If a subordinate came to me with this idea, I would say “No” without even turning around to face him"

    Your attitude stinks, and you are technically inept. Nobody should listen to you. You can't be trusted to tell the time.

      I spent a couple of entertaining minutes pondering what, if anything, I should say to that very catty little rejoinder.   But, instead, I will decide not to fight fire with fire.   Since a great many people in very high places ... yes, all the way to the very top ... have, and do, “listen(ed) to me,” I will just stand by my original words, and let it go at that.

      Any “DBA” wields enormous power, which therefore has enormous potentially-financial impact on the entire business.   The very thought of any such actions being relegated to a “CGI anything,” let alone at the hands of (pardon me) “an obvious amateur acting on his/her own,” gives me cold shivers ... and, with good reason.   Somewhere in the company, there is probably either a Director of Security, or a Director of Compliance, or both, both of them reporting directly to the “C-Team.” (Equals:   the group of people whose corporate titles are three-letter acronyms beginning with the letter “C.”)   More-than-one of them would have to “sign off” on any such idea ... and of course they would not.   (The repercussions on “every single manager anywhere on the firing-(ahem)-line from Director to him-or-her” could be pretty serious, too.)

      The reason why I “would not bother to turn around” is because I know this already.   And, if the line-authority was mine, I would not have to take the time to explain.   (But I would make a mental note to “peek” to be sure that the underling was not ignoring me.   If only to safely protect my asterisk, s/he would be packing a box if I found that s/he had.)

      “Do your job.   Exactly as it has been given to you, using exactly the tools and methods provided.   Do not add.   Do not subtract.   Do not change.”   “Of those to whom much [trust ...] has been given, much is required.”   Try your best to keep in mind that you might have no earthly idea(!) just what might be resting on you.   (Trust also that no one might have decided to burden you with that knowledge.)   Don’t like the tools and methods that you’ve got?   Got a better (sic) idea?   That’s why your manager’s office door is open.

        'I spent a couple of entertaining minutes'

        I can think of many more productive ways for you to spend a few minutes, which would do a lot less damage to this site you claim to care so much about. Let's review some facts.

        • 'Oracle has some pretty good, secure, visual tools already for doing that sort of thing, and even for partially-automating various steps.' - You have no idea what version of Oracle is avaialble to the user, let alone which tools they have installed or have been licensed.
        • 'The very thought of any such actions being relegated to a “CGI anything,” let alone at the hands of (pardon me) “an obvious amateur acting on his/her own,” - You have no idea if OP is acting on his/her own. People use web based interfaces all the time to interact with Oracle securely. But you don't know anything about CGI, databases or security. Everyone begins as an amateur, some learn as they go. You seem to be the perfect example of someone who does not.
        • 'More-than-one of them would have to “sign off” on any such idea ... and of course they would not.' - You have no idea what the structure of OPs organisation is. You have no evidence that this has not already been requested by the appropriate people.
        • '(The repercussions on “every single manager anywhere on the firing-(ahem)-line from Director to him-or-her” could be pretty serious, too.)' - Yawn...
        • 'The reason why I “would not bother to turn around” is because I know this already.' - There's that terrible attitude again.

        The only thing you prove time after time is that you don't know what you're talking about, and shouldn't be listened to by anyone. Your Mother provided a fairly typical example. This game is not new to you. Spreading FUD is to people who don't know any better is your bread and butter.

        Update: fixed formatting problem.

        Very high places? All the way to the top? Sounds credible really. Everyone at the top listened to Chalabi too. Hanlon’s razor pays no mind to station at all.

        You keep making those mental notes about those underlings. Can’t have anyone ignoring you on code security matters.

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://1194949]
help
Chatterbox?
and all is quiet...

How do I use this? | Other CB clients
Other Users?
Others cooling their heels in the Monastery: (3)
As of 2017-11-18 06:48 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    In order to be able to say "I know Perl", you must have:













    Results (277 votes). Check out past polls.

    Notices?