set -x won't do much though. All it will tell you is what it did, but by the tim... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		dastx on Dec 9, 2020 \| parent \| context \| favorite \| on: Detecting the use of “curl – bash” server side (20... set -x won't do much though. All it will tell you is what it did, but by the time you realise, the damage could already be done.

adriancr on Dec 9, 2020 [–]

that's why you download and inspect the script first.

and you run the downloaded script, never curl|bash

richardwhiuk on Dec 9, 2020 | [–]

And then just leave it to install whatever binary it did.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact