Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
arcticfox
on Oct 22, 2016
|
parent
|
context
|
favorite
| on:
“Curl Bash piping” wall of shame
Sure, but how is that any less secure than other installation alternatives? As the site owner, I could swap out a valid package for a troll package at any moment to any subset of users I wanted to if they're not validating the contents of it...
dredmorbius
on Oct 22, 2016
[–]
You can't change the contents on a user's local storage that they've verified.
Curlbash lets you change out offerings at will, and leaves no auditable source for the user.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
