[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Bug on function.
|
From: |
Eduardo A . Bustamante López |
|
Subject: |
Re: Bug on function. |
|
Date: |
Wed, 9 Dec 2015 23:07:55 -0600 |
|
User-agent: |
Mutt/1.5.23 (2014-03-12) |
Kelvin:
This is what's typically called a layer 8 issue, or PEBKAC. It just means that
you're failing to understand how bash works.
If you write a script that runs:
#!/bin/bash
sudo poweroff
Is that a vulnerability? No! The script does exactly what you wrote, that is,
to shutdown the machine.
So, if you write a script without properly quoting $@ and $*, if you use
`...` without regarding safety and other shell scripting pitfalls, is that a
vulnerability? No! It just means that you have to try harder and learn bash :)
--
Eduardo Bustamante
https://dualbus.me/
- Re: Bug on function., (continued)
- Re: Bug on function., Quentin, 2015/12/08
- Re: Bug on function., Kelvin Tan Thiam Teck, 2015/12/08
- Re: Bug on function., Pierre Gaston, 2015/12/08
- Re: Bug on function., Kelvin Tan Thiam Teck, 2015/12/08
- Re: Bug on function., Kelvin Tan Thiam Teck, 2015/12/08
- Re: Bug on function., Pierre Gaston, 2015/12/08
- Re: Bug on function., Kelvin Tan Thiam Teck, 2015/12/08
- Re: Bug on function., Kelvin Tan Thiam Teck, 2015/12/08
- Re: Bug on function., Pierre Gaston, 2015/12/08
- Re: Bug on function., Quentin, 2015/12/08
- Re: Bug on function.,
Eduardo A . Bustamante López <=