darian moody: Protect yourself from the hidden dangers of `curl <url> | sh`

url: http://www.djm.org.uk/protect-yourself-from-non-obvious-dangers-curl-url-pipe-sh/

Talks about possible attack for piping a script from curl to bash (what your browser user agent sees when viewing the file is not necessary what curl's user agent sees) and ways to make sure you are getting what you expect.

Essentially it gives techniques for reviewing and approving the script after curl downloads it, but before it is executed.

Discuss This Topic

There are 0 comments in this discussion.

join this discussion

Creative Commons Attribution-Share Alike 3.0 New Zealand License
darian moody: Protect yourself from the hidden dangers of `curl | sh` by Walter McGinnis is licensed under a Creative Commons Attribution-Share Alike 3.0 New Zealand License

Like what you've read? You can check out my latest project at Generali.st.

Got a project of your own that you need help with? Let's talk