No - you shouldn’t be putting bash $(curl …) into a post and telling people to run it at all. It’s bad and shouldn’t be normalized in any way. Take. It. Down.
Especially dangerous because the script can change. So this stays up, gets indexed and put in the search results for people looking to do this… And then poof suddenly the script is an info stealer.
Might not even be the original poster doing this, maybe their account gets hacked and the link gets every so slightly edited.
Just bad practice.
Though I must admit I do use proxmox helper scripts… But at least that’s a somewhat trusted repo.
100% this - at the very least do a curl URL | less to inspect the script before piping it to bash, or better yet download it, review it thoroghly, then run it locally.
atzanteol@sh.itjust.works 2 months ago
No - you shouldn’t be putting
bash $(curl …)into a post and telling people to run it at all. It’s bad and shouldn’t be normalized in any way. Take. It. Down.Fiery@lemmy.dbzer0.com 2 months ago
Especially dangerous because the script can change. So this stays up, gets indexed and put in the search results for people looking to do this… And then poof suddenly the script is an info stealer.
Might not even be the original poster doing this, maybe their account gets hacked and the link gets every so slightly edited.
Just bad practice.
Though I must admit I do use proxmox helper scripts… But at least that’s a somewhat trusted repo.
MysteriousSophon21@lemmy.world 2 months ago
100% this - at the very least do a
curl URL | lessto inspect the script before piping it to bash, or better yet download it, review it thoroghly, then run it locally.