I mean, if you think about it, any time you run any installer, whether via brew ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		kenbellows on Aug 14, 2018 \| parent \| context \| favorite \| on: Show HN: Rb – Turns Ruby into a command line utili... I mean, if you think about it, any time you run any installer, whether via brew install, apt-get install, or an .exe or .msi, you're effectively running someone else's unknown code on your system, often as a superuser (e.g. with sudo apt-get install). Is there a significant difference here? At least in this case you could potentially download the shell file and read it before you run it, unlike with a binary executable. Am I way off base here?

kompromat on Aug 14, 2018 [–]

Some context on why curl pipe bash is a bad idea: https://www.idontplaydarts.com/2016/04/detecting-curl-pipe-b...

Most recent discussion: https://news.ycombinator.com/item?id=17636032

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact