undefined | Better HN

story

0 pointsbase69811y ago0 comments

There are a lot of scripts the do something like: curl 'http://myradframework.com/script.sh' | bash

That'd be pretty easy to do this if they weren't honest or man in the middle attack the site.

0 comments

That's not really the risk with this vulnerability. Piping a web-sourced script to bash has always been a vulnerability, but it's one that you choose to live with when you do it.

The reason this is newsworthy is because there are some network-facing programs (CGI-based web servers, some SSH configurations) that will set the value of some environment variables to a user-supplied value, which bash will then be executed by bash when that program spawns a new process.

jonhohle11y ago

That will run arbitrary code regardless

j / k navigate · click thread line to collapse

0 comments

notdonspaulding11y ago

That's not really the risk with this vulnerability. Piping a web-sourced script to bash has always been a vulnerability, but it's one that you choose to live with when you do it.

jonhohle11y ago

That will run arbitrary code regardless

j / k navigate · click thread line to collapse