tautology
daniel:// stenberg://deleting system32\curl.exe https://daniel.haxx.se/blog/2023/04/24/deleting-system32curl-exe/ - Let me tell you a story about how Windows users are deleting files from their installation and as a consequence end up in tears. #curl
Jürgen Gmach@bagder I am not entirely sure whether I coined the term, but I'd like to call those issues "CVE dos". Faced similar issues for our project.
Michael@bagder deleting any system file on windows:
Paolo Redaelli@bagder
The only sane way to fix Windows is to delete it and start using #freeasinfreedom operative systems. 😅😅😅
But this also requires that users and administrators be conscious and educated. Sadly an appreciable share is not 😢😭
The only sane way to fix Windows is to delete it and start using #freeasinfreedom operative systems. 😅😅😅
But this also requires that users and administrators be conscious and educated. Sadly an appreciable share is not 😢😭
Лафиэль Элентари@bagder
To restore file, can try running the command with administrator privileges:
sfc /scanfile=c:\Windows\System32\curl.exe
To restore file, can try running the command with administrator privileges:
sfc /scanfile=c:\Windows\System32\curl.exe
Thomas Frans 🇺🇦@bagder Haha, what a great story 😄
Ciourte Piaille@bagder Reminds me of the good old days when a hoax spread through e-mail and msn messenger (to date the thing 🧓) pretended that a a system file with a teddy bear as its icon was a dangerous virus you'd been infected by, and that you should delete it.
https://en.wikipedia.org/wiki/Jdbgmgr.exe_virus_hoax
https://en.wikipedia.org/wiki/Jdbgmgr.exe_virus_hoax
Joshua Small@bagder Microsoft should just can answers.microsoft.com. ChatGPT could unironically provide better advise than most of the MVPs advising in those threads.
@bagder A relevant proof: https://infosec.exchange/@jsmall/109713991960163209
Joshua Small (@[email protected])
Attached: 1 image Microsoft's investment in ChatGPT makes a lot of sense when you consider it can achieve what the average MVP can not.
Wisteria-A512F 
@jsmall @bagder
1. User requests help
2. Someone suggests they follow steps in a linked thread
3. The linked thread consists of someone who tried that step (running a troubleshooter) and replies it didn't help
4. Original user posts that it didn't work for them either
That's it, that's the thread, every time
dan@bagder So by default windows terminal launches PowerShell. In PowerShell curl is an alias for Invoke-WebRequest. Are you telling me that the years I've been manually translating curl parameters to this, curl's just been sitting there?!
Dan Sneddon@dan @bagder @SwiftOnSecurity Yeah, I just learned that I don’t need to be installing a local version of curl.
I feel like I just learned that Microsoft Windows has a copy of Doom64 in the system directory. Wait, does it?
Matt Garber@bagder Similar situation with Linux distros like RHEL and Ubuntu LTS: too many of the scanners (and security personnel) *only* look at the major.minor.patch version of installed software which gets flagged for CVEs, and do not realize that almost all long term support OSs backport security fixes into their included versions, so something like PHP 7.4 which is EOL by upstream may be patched and perfectly fine with the appropriate vendor (distro) patch applied. Sigh.
LordH3lmchen 📯@matt_garber @bagder That should be better now - usually at least . But yeah - that was sometimes a struggle to convince the so called security guys that we aren't affected and the system is already patched.
But deleting a system file in Windows just because some #snakeoil tells you to... I don't know. At least deleting curl doesn't make the system unusable. And 'sfc /scannow' should be able to fix that (but I didn't test that).
Pointless Speculations@bagder Sheesh. I thought deleting system32 was a meme.
Resuna@bagder My daughter used to have a Windows desktop and I had to reinstall Windows every six months or so because she'd done stuff like this, except more so. So I got her an iMac. A few years later she's having a problem so I open up Terminal... no terminal. Yep. same problem, except that it took years for her to break her Mac to the point she noticed something was wrong.
I ssh-ed in to her iMac and copied Terminal.app and a few other files back from my Mac and everything was good.