LOL
systemctl --host '-oProxyCommand=touch foo' show-environment
#guesswhat
-
-
-
Replying to @hammercog
joernchen Retweeted joernchen
https://twitter.com/joernchen/status/901738416076926976 … related: http://blog.recurity-labs.com/2017-08-10/scm-vulns …
joernchen added,
1 reply 2 retweets 4 likes -
Replying to @joernchen
Oh, god, you mean `systemctl --host` basically just shells out to SSH . . . ? Things are worse than I thought.
2 replies 0 retweets 0 likes -
Replying to @hammercog @joernchen
It's not "shelling out" (no shell), and exec'ing ssh as child is exactly the right way to auth to remote boxes. Anything else is NIH'd auth.
2 replies 0 retweets 0 likes
The (non-critical since it's not across priv domains) bug here is failure to use "--" when exec'ing cmd (ssh). Common mistake.
1:07 PM - 27 Aug 2017
0 replies
0 retweets
0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.