I'm about to launch some new software. It will be installed using
curl ... | sudo dd of=/dev/sda
I've heard that "curl | bash" is insecure, so we're improving on that.
@liw Actually, this is maybe more secure than "curl | bash", because "curl | bash" can be detected server-side with the server serving a different, non-suspicious payload when the file is examined in a browser (see https://www.idontplaydarts.com/2016/04/detecting-curl-pipe-bash-server-side/ for instance).
Lars and friends