> me: trying to explain to a dev from one of our customers why should they worry about sql injection in their application -which by the way is public- since they always concatenate params (even giving concrete examples in their app on how could I gain acces to their database with just a couple of queries)

> me: (thinking) Did I change my bed with a time machine by accident and got myself into the past?

Do these things happen often to you? (U_U||)