LainTrain@lemmy.dbzer0.com to linuxmemes@lemmy.worldEnglish · 6 months agoOld XKCD, still relevantlemmy.dbzer0.comimagemessage-square138fedilinkarrow-up1887arrow-down114file-text
arrow-up1873arrow-down1imageOld XKCD, still relevantlemmy.dbzer0.comLainTrain@lemmy.dbzer0.com to linuxmemes@lemmy.worldEnglish · 6 months agomessage-square138fedilinkfile-text
minus-squareelrik@lemmy.worldlinkfedilinkEnglisharrow-up27·6 months agoHow does it verify the command is valid? Does it run what I enter? If so, just give it an infinite loop followed by some attempt at a tar command: while true; do :; done; tar -xyz
minus-squarevelvetThunder@lemmy.ziplinkfedilinkEnglisharrow-up35·6 months agoNext time I build a bomb I let the timer continue while the command is running.
minus-squareVoroxpete@sh.itjust.workslinkfedilinkarrow-up15·6 months agoYeah, what kind of idiot doesn’t parallelize their timer function.
minus-squaremlg@lemmy.worldlinkfedilinkEnglisharrow-up26·6 months agoBlue Team: “Okay everyone let’s make sure this is absolutely the correct input” Red Team: “Lmao lets try this 90mb list of bash command injection patterns”
How does it verify the command is valid? Does it run what I enter?
If so, just give it an infinite loop followed by some attempt at a tar command:
while true; do :; done; tar -xyz
Next time I build a bomb I let the timer continue while the command is running.
Yeah, what kind of idiot doesn’t parallelize their timer function.
Blue Team: “Okay everyone let’s make sure this is absolutely the correct input”
Red Team: “Lmao lets try this 90mb list of bash command injection patterns”
i assume its looking for exit code of 0
echo || tar -xfzhd