this post was submitted on 14 Jul 2026
921 points (98.9% liked)
Programmer Humor
32303 readers
1799 users here now
Welcome to Programmer Humor!
This is a place where you can post jokes, memes, humor, etc. related to programming!
For sharing awful code theres also Programming Horror.
Rules
- Keep content in english
- No advertisements
- Posts must be related to programming or programmer topics
founded 3 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Prod deployments should come from a build server though and if you're deploying multiple times a day you should have a well built CI pipeline to handle it.
Remoting into a management server would still have people using an account on the management server and their personal db login credentials.
We also don't give devs write access to production and all scripts run in production are run by our DBA after they have been approved by the lead Dev, operations and the DBA.
This might be overkill for some systems, but we won't ever accidentally delete our prod data. Our system requires this level of scrutiny due to the nature of our systems.
Sure, that's a very, very robust way of doing things. And I'm not trying to say what you're describing is wrong either. I'm just saying that some places don't have the knowledge/ability to set things up that way, so they play fast and loose with prod access. Couple that with giving LLMs free reign over the computer with those prod settings, and you end up in situations like in the original post.
It's not unrealistic, is all I'm trying to claim. It's a failure on several levels, but it's not unrealistic.
I didn't say it was unrealistic it's just stupid. I have no doubt thousands of companies are not practicing good access controls to a production db, but it's not smart as seen by this post.
I... Yeah, I just said pretty much the same thing lol