phoenix/JOL
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

Add keyspace/badwords post.

Browse source
This commit is contained in:
Jessica Canady 2024-09-03 13:37:10 -04:00
parent b1becfa3fd
commit 974a2bbcdf
Signed by: phoenix
SSH key fingerprint: SHA256:aaLOzOrLi+0n4eDZNQKH97PehwRt6KSE5fYJc+ZRKCQ
2 changed files with 24 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

24
priv/posts/blog/ruining-your-keyspace-for-fun-and-profit.md Normal file
View file

@ -0,0 +1,24 @@
+++
slug = "ruining-your-keyspace"
title = "Ruining Your Keyspace For Fun And Profit"
date = 2024-09-03T12:51:23.952866-04:00
draft = false
[taxonomies]
# An array of quoted strings
tags = ["tales", "cmm", "software"]
+++
![Apparently the Hulu activation codes can/could accidentally include hilarious stuff like 6 F A G S E X!](/images/hulu_badwords.jpg)
Oh, the memories.
One of the early design decisions at CoverMyMeds was to generate alphanumeric keys for each Prior Auth, to ease communication about them. We figured trying to get pharmacists to read UUIDs to folks over the phone was a losing proposition. Because it was early, we just slapped together a quick "generate key, check for existence, loop back and generate again if used" routine and shipped it.
As seems obvious in retrospect, we eventaully also generated a key that included the f-slur. Luckily, it was sent to an early partner who found this hilarious instead of wildly offensive. Having dodged a company-ending bullets -- not the first, for damn sure not the last -- we brainstormed a list of offensive words that could be generated, and denylisted them.
I mean, that's usually the end of the story, but this one has a fun addendum. Our "PA Key" keyspace, which was previously limited to "all the possible combinations of letters/numbers in our strict format," got even smaller after we implemented the denylist. That, plus some new partnerships that turned into gangbusters growth, meant that we had nearly no time between the "hey we're almost out of keys to use for PAs" alarm, and actually being completely out of keys.
Remember, our key generation routine now looked like "generate key, discard and retry if on denylist, discard and retry if already used." This happened inline during the POST request to create a new Prior Auth, which meant **all of our apache threads across all our production servers** were spinning, constantly regenerating keys. We'd DOSed ourselves. And it took us *a good while* to figure out the cause.
Lessons learned: maybe don't block the inital database CREATE waiting for keyspace to free up. Or maybe it was to just not have a feasibly bounded keyspace in the first place? I dunno, we just changed our key format to give us more keyspace and set up more alarms.

BIN
priv/static/images/hulu_badwords.jpg Normal file
View file

Binary file not shown.
Side by side

After

Width:  |  Height:  |  Size: 31 KiB