Detecting the use of "curl | bash" server side | Application Security
Devious, but not really unexpected.
Of course, I'd expect that by now everybody knows that curl | bash is insecure (and half of everybody is still doing it anyway)
Another reason not to pipe from curl to bash. Detecting curl | bash serverside.
Devious, but not really unexpected.
Of course, I'd expect that by now everybody knows that curl | bash is insecure (and half of everybody is still doing it anyway)
Claes Wallin (韋嘉誠), Charles Stanhope likes this.