The only cheat sheet you need
The only cheat sheet you need
19 comments
-
-
Ok, this is a very good cheat sheet
-
Thefuck is a cool program, but I stopped using it because it was slow.
-
I haven't had as much luck with that program as I'd like to. :(
-
My
.bash_historyusing this program...
-
-
cheat() { curl cht.sh/$1 }-
Awesome!
-
-
sites like this are neat until you remember that curl's willingness to write ansi escape codes to stdout when it is a tty (as this site relies on to format the output when the user agent is curl) is actually a security vulnerability.
-
Could you give me an ELI5 please
-
This post The Terminal Escapes: Engineering unexpected execution from command line interfaces has a summary of the longer paper in the first link.
tldr: There are a variety of ways that attackers can cause you to execute execute arbitrary code when you echo their maliciously-crafted data to your terminal. Therefore, when you run
curlwithout redirecting its output, or when youcata file you've downloaded, you're trusting the server (and also the network, when you don't havehttps://in the url) not to exploit you.
-
-
I'm more-inclined to blame a virtual terminal than the program writing the sequences if there's an exploit there.
-
-
Appears to be the same developer as wttr.in
-
IIRC this site uses TLDR pages
-
19 comments
TL;DR
sudo rm -rf /* # can't have problems without a systemCopy. Paste. Enter.
System administrators hate this trick!