(www.javaadvent.com)

200 points ingve | 1 comments | 07 Dec 25 11:51 UTC | HN request time: 0.193s | source

Show context

tuhgdetzhh ◴[07 Dec 25 15:13 UTC] No.46182258[source]▶

>>46181076 (OP) #

I'm always a bit shocked how casual people people wget and execute shell scripts as part of their install process.

This is the equivalent of giving an author of a website remote code execution (RCE) on your computer.

I get the idea that you can download the script first and carefully read it, but I think that 99% of people won't.

replies(5): >>46182378 #>>46182490 #>>46183270 #>>46184246 #>>46184808 #

balder1991 ◴[07 Dec 25 15:28 UTC] No.46182378[source]▶

>>46182258 #

Even assuming it’s not malicious, the script can mess up your environment configuration.

replies(2): >>46182619 #>>46189863 #

exe34 ◴[07 Dec 25 15:56 UTC] No.46182619[source]▶

>>46182378 #

I'm so thankful for nixos for making it hard for me to give in to that temptation. you always think "oh just this once". but with nixos I either have to do it right or not bother.

replies(1): >>46182859 #

hombre_fatal ◴[07 Dec 25 16:24 UTC] No.46182859[source]▶

>>46182619 #

NixOS gives you a place to configure things in a reproducible way, but it doesn’t require you do it.

replies(2): >>46184395 #>>46185069 #

1. tombert ◴[07 Dec 25 19:35 UTC] No.46184395[source]▶

>>46182859 #

It sort of does actually, at least if you don't have nix-ld enabled. A lot of programs simply won't start if they're not static-linked, and so a lot of the time if you download a third-party script, or try to install it when the `curl somesite.blah | sh`, it actually will not work. Moreover, it also is likely that it won't be properly linked in your path unless you do it thr right way.

↑

Java Hello World, LLVM Edition