The most recent submission was nearly two years ago. I'm sure there are plenty of people that either haven't seen it before, or were happy to be reminded.
dang was just linking to the previous discussions because they can also be interesting.
As I recall, when this was registered, didn't they censor or force a name change? Not because their systems couldn't handle it, but because many third parties scrape the data and they feared it would break other people's systems. Have they decided to allow it now?
What's wrong with my comment? Quite literally: Cloudflare has been adopted by 50% or whatever of the web and they run a rudimentary WAF type product that is IP block happy. This is a recipe to get every VPN and Tor node in the world blocked.
What confuses me is that in 2010 all devs were finally on the "don't block stuff based on regex" train, and now all a sudden nothing matters just Cloudflare is God with some handwavy explanation of how they "did a risk analysis".
A reminder to do your pen testing on a different environment otherwise you often will end up with a bunch of usernames like this and other attempts to break your app. Not in this case, but I have seen it happen.
https://pizzey.me/posts/no-i-didnt-try-to-break-companies-ho...
(Disclaimer: Link copied from desas but needed to be top level comment.)