Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I really don’t like that the page asks users to blindly curl and execute a script that then curl and executes another script all to run a one line `ifconfig` command.

Why not just share the command?



I thought we’d gotten over this thing where people thing they appear smart because they copy & paste instead of using curl?


It's not about being "smart". It's a completely unnecessary complication in this case.


And a complication that is bad practice because a malicious party can detect the blind handoff to shell and serve malware. e.g. wget file.sh ; vi file.sh and you get safe code curl file.sh | bash and you get malware.

This attack requires a malicious server, but it’s still bad practice.


while true; do if ifconfig awdl0 |grep -q "<UP"; then (set -x; ifconfig awdl0 down) fi sleep 1 done

----------------

LOL




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: