785
Yes (programming.dev)
submitted 10 months ago by mac@programming.dev to c/programmer_humor@programming.dev
86 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[-] wolo@lemmy.blahaj.zone 141 points 10 months ago* (last edited 10 months ago)

my website's backend is made with bash, it calls make for every request and it probably has hundreds of remote arbitrary code execution bugs that will get me pwned someday, it's great

edit: to clarify, it uses a rust program i made to expose the bash scripts as http endpoints, i'm not crazy enough to implement http in bash

it behaves like a static file server, but if a file has the others-execute permission bit set it executes the file instead of reading it

it's surprisingly nice for prototyping since you can just write a cli program and it's automatically available over http too

[-] Fashim@lemmy.world 61 points 10 months ago

I pity the hacker who ends up in your system

[-] wolo@lemmy.blahaj.zone 9 points 10 months ago

I've taken some precautions, it's running in a container as an unprivileged user and the only writable mount is the directory where make writes rendered pages, but i probably should move it into a vm if i want to be completely safe lol

[-] sdw@lemmy.ca 9 points 10 months ago

Wait, you're serious?

[-] wolo@lemmy.blahaj.zone 9 points 10 months ago* (last edited 10 months ago)

Maybe I'll finally move it into a VM so I can send a link to it here without tempting people :P

load more comments (1 replies)
load more comments (14 replies)
this post was submitted on 15 Nov 2023
785 points (96.2% liked)

Programmer Humor

19190 readers
1043 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

founded 1 year ago
MODERATORS
Feyter@programming.dev
anzo@programming.dev
BurningTurtle@programming.dev