undefined | Better HN

0 pointsksrm9y ago0 comments

What's a better alternative?

0 comments

10 comments · 3 top-level

cperciva9y ago· 3 in thread

As viraptor said, putting code into a public repository (e.g., debian packages); that way there should be a paper trail if the code is modified.

Beyond that, there's a simple matter of advertising: "Share your terminal (read-only)" may mislead some people about what is happening. A more accurate description would be "Give us control of your terminal (we promise we'll only let other people read it, not write anything)".

emodendroket9y ago

Imagine if this principle were applied to other software products. "Click here to download the Office installer, which will gain full admin-level access to your machine. We promise to only use that to install Office."

cperciva9y ago

That would be awesome. Users might start to understand security.

1 more reply

vitorbaptistaa9y ago

As usual, you can never be sure unless you read the code, luckily, it's very small: https://github.com/vitorbaptista/shellshare/blob/master/publ...

The only thing sent to shellshare's servers is the text in your bash terminal. There's no return channel for the servers to send commands back to the computer.

You could argue that you're giving control of the terminal because you're running a third-party executable, but that's the same for any executable you run.

mappum9y ago· 2 in thread

You could use hashpipe (https://github.com/jbenet/hashpipe), from Juan Benet (the author of IPFS). It simply checks that the input to the command matches a given hash, so you can do `curl <url> | hashpipe <hash> | sh`, and if the output of the curl command is different than expected it won't be passed in to `sh`.

eriknstr9y ago

Ironically the prebuilt binaries of hashpipe itself are provided without means of verification :I

So if you are going to use hashpipe, I think you should download it in source form, read it -- it's under 100 SLOC -- and then build it from source yourself. This way, you do that once and then in the future provided that you trust those sending you various scripts and binaries and the channel they used to provide the hash, all is well and no further manual verification is needed on your side of things ever again for any of those.

dbdr9y ago

If an attacker can modify the output of the curl command (on the host or on the wire), cannot they also modify the value of the hash seen and copy-pasted by the end-user? I must be missing something...

coherentpony9y ago· 2 in thread

Download it, audit the code, and then do python shellshare

bbcbasic9y ago

> Download it, audit the code

Applies to your operating system as well, plus any firmware.

_ao7899y ago

Boring, you need to live on the wild side a bit more :D

j / k navigate · click thread line to collapse