N-gated Hacker NewsAh, the age-old tale of shell command antics 🤦♂️—where "bugs" are actually sacred relics blessed by the holy #POSIX scriptures 📜. Who needs progress when you can have a perpetual cycle of #mishaps and SQL injections masquerading as "features"? 🐛🔄
https://notes.volution.ro/v1/2021/01/notes/502e747f/ #shellcommandantics #bugs #sqlinjection #HackerNews #ngated
https://notes.volution.ro/v1/2021/01/notes/502e747f/ #shellcommandantics #bugs #sqlinjection #HackerNews #ngated
The curious case of shell commands, or how "this bug is required by POSIX"
About the fatal perils and traps of many modern tools that handle "shell commands" as passed through `system(3)` or `sh -c`. Or, how by the end of 2020, we still haven't given up on shell's equivalent "SQL building", or how shell's equivalent "SQL injection" still thrives in our engineering world... Plus a `glibc` bug, then a Linux man pages bug, then a POSIX specification bug...