my website’s backend is made with bash, it calls make for every request and it probably has hundreds of remote arbitrary code execution bugs that will get me pwned someday, it’s great
edit: to clarify, it uses a rust program i made to expose the bash scripts as http endpoints, i’m not crazy enough to implement http in bash
it behaves like a static file server, but if a file has the others-execute permission bit set it executes the file instead of reading it
it’s surprisingly nice for prototyping since you can just write a cli program and it’s automatically available over http too
I know about the CGI standard, but mine does things a little differently (executable files don’t just render pages but also handle logging, access control, etc. when put in special positions within a directory), so I still think it was worth the afternoon i spent making it.
i thought it was neat how php lets you write your website’s logic with the same directory tree pattern that clients consume it from, but i didn’t want to learn php so i made my own, worse version
It very well might be a real exploit. Lemmy was briefly taken down by an XS attack using the emoji library… so who knows, maybe a 3000% smiley face is all that is needed
I think there a lot of phone scammers that use font size to hide all the shit they’re doing. Like they make shit so small so that the old people can’t see anything
Just so long as it’s in dark mode. Light backgrounds burn my eyes after spending so much time in my mom’s basement subsisting only on hotpockets and grits straight off Natalie Portman.
I distinguish four types. There are clever, hardworking, stupid, and lazy officers. Usually two characteristics are combined. Some are clever and hardworking; their place is the General Staff. The next ones are stupid and lazy; they make up 90 percent of every army and are suited to routine duties. Anyone who is both clever and lazy is qualified for the highest leadership duties, because he possesses the mental clarity and strength of nerve necessary for difficult decisions. One must beware of anyone who is both stupid and hardworking; he must not be entrusted with any responsibility because he will always only cause damage.
Just to be clear, MIT’s role was to catch him out by finding his hoovering laptop hidden in the janitor’s cupboard and reporting him to cops. JSTOR didn’t want to prosecute but the government did, presumably because he helped scuttle SOPA & PIPA and was clearly going to be a powerful thorn in their side in future.
Unfortunately MIT gave the government the excuse they were waiting for to destroy him.
That is what I recall from the documentary anyhow.
iirc, MIT could have denied access to FBI in setting up a trap to whoever was the owner of such laptop. They could’ve set the trap themselves and dealt with academic discipline too. So, they did enable the up-scalation of the conflict.
Of course, it’s all subjective at this point… either I recall incorrectly some details, or even how I unconsciously choose to see it is shaped by personal world views.
programming.dev
Hot