zlacker

[parent] [thread] 0 comments
1. geggam+(OP)[view] [source] 2018-07-29 03:18:40
Let's say for discussion that we allow this curl| bash process because it is from a "safe" source.

How do we come back next week and ensure some other process hasn't changed the files ?

Package your files with a signed system. Auditing the files is trivial after that.

[go to top]