![]() I used curl to download the Chrome installer script in memory on my VM and looked at it, here it is (I had tossed it in paste bin): #/bin/bashĬlear & rm -rf ~/macapps & mkdir ~/macapps > /dev/null & cd ~/macapps ![]() This is a pretty good way to get your Mac rooted, maybe a Trojan Horse installed, etc. Even though you may not be running the command as root or with sudo privileges there have been exploits out there like root pipe that can escalate themselves to root. Pipping a curl or wget command into a shell can be very dangerous. ![]() I just wanted to chime and state the obvious here.
0 Comments
Leave a Reply. |