How long has your PC been on for? by JamonBear in c/linux@lemmy.ml
[-] JamonBear@sh.itjust.works 1 points 1 day ago

Why do you think it's different?

Am I crazy in thinking that bash is good enough for production? by JamonBear in c/programming@programming.dev
[-] JamonBear@sh.itjust.works 5 points 1 day ago

Agreed.

Also gtfobins is a great resource in addition to shellcheck to try to make secure scripts.

For instance I felt upon a script like this recently:

#!/bin/bash
# ... some stuff ...
tar -caf archive.tar.bz2 "$@"

Quotes are OK, shellcheck is happy, but, according to gtfobins, you can abuse tar, so running the script like this: ./test.sh /dev/null --checkpoint=1 --checkpoint-action=exec=/bin/sh ends up spawning an interactive shell...

So you can add up binaries insanity on top of bash's mess.

German tracker recommendation by JamonBear in c/piracy@lemmy.dbzer0.com
[-] JamonBear@sh.itjust.works 1 points 2 weeks ago

Idk about german tracker in particular, but for non-english content, here is good entry point: https://fmhy.net/non-english

JamonBear

joined 2 weeks ago