Follow

I'm about to launch some new software. It will be installed using

curl ... | sudo dd of=/dev/sda

I've heard that "curl | bash" is insecure, so we're improving on that.

@liw Actually, this is maybe more secure than "curl | bash", because "curl | bash" can be detected server-side with the server serving a different, non-suspicious payload when the file is examined in a browser (see idontplaydarts.com/2016/04/det for instance).

@liw Indeed, you're using sudo, a well-known solution to most security problems 👏 😂
Sign in to participate in the conversation
toot.liw.fi

Lars and friends