Y
Hacker News
new
|
ask
|
show
|
jobs
by
kovek
1749 days ago
So ‘curl; cat; bash’ and not ‘curl | sh’ because the server can detect the pace/existence of the pipe and sneak in some unsafe commands.