Follow

Just merged our first third-party pull request for Should I Pipe It? thanks to @rugk who verified the Rust installation script:

should-i-pipe.it/https://sh.ru

Thanks ;)

· · Web · 1 · 0 · 4

@aral I don't want to ruin the fun, but the page is pointless when it comes to actually piping a script.

Because you can detect on the server-side if it's piped through bash or not. (A simple solution for this problem is `bash -c "$(curl <script location>)" ` but it still has its own set of problems.
idontplaydarts.com/2016/04/det

@sheogorath Well, it’s not pointless but it doesn’t protect against time of check / time of use attacks.

To that end, I plan to have a simple commandline app that does. First step:

github.com/small-tech/should-i

Sign in to participate in the conversation
Aral’s Mastodon

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!