These developers were human. They made a mistake. And so did the reviewers who audited this code.
I’ve read some comments on Reddit and HackerNews along the lines of: “What an obvious mistake! How was it even possible they missed this?” (Ignoring that the “obvious” vulnerability was introduced in January and only now discovered.)
When I see responses like this, I know the people commenting are not professional developers. For a serious developer, the reaction is instead: damn, that was a dumb mistake. I’m glad I wasn’t the one who made it. via A hacker stole $31M of Ether — how it happened, and what it means for Ethereum
I don’t know what to say. I had made a dumb mistake yesterday too in my application. It affected some people. Beside feeling dumb, I feel embarrassed too. I find it a little hard to move forward from here. I keep thinking about it.
If there a way to solve it. Yes
Will it prevent it from happening. Yes
Did I take ownership of the mistake. Yes
At work, you must take ownership of the mistake you make. If you try pushing it away or coming up with some cock and bull story. It’s not going to end well. The truth hurts but it’s the best.
I tell myself that I’m a human too and I make mistakes. But I’m not sure if this is a good way to console myself, I’m worry that I might take making mistakes for granted. I need to be able to learn from it. I have made a comment in the file, always reminding me of this mistake.