the reference to rm -rf's at the bottom of an obfuscation made me think twice before running it
If an obfuscator wanted to zap you like that, he'd
probably obfuscate the rm -rf somehow. You'd have
no warning unless you de-obfuscated the code before
running it, or read comments by others who either
de-obfuscated it or got bitten. There are an
infinite number of ways to obfuscate code, as I'm
sure you're aware if you follow this section closely.
is to keep an unprivileged account around for running
untrusted code. I'm generally not a big advocate of
unprivileged accounts; for normal, everyday use I feel
that they cause more inconvenience than they're
However, for running untrusted code, or code that
processes untrusted data from the internet (especially,
any kind of server code), an unprivileged account can
save you a lot of grief. If you don't trust an obfu
(or whatever other code you don't trust) run it as a
user with no privileges, no access to your home
directory with your data.
That said, I'll admit that with obfuscations on
Perlmonks I often don't bother, especially if there
are already positive comments by monks whose names
I recognize. I haven't been bitten yet...
I say this not to persuade anyone that it's true, nor
to start an argument about it (I'm tired of that
argument, believe me), but to point out that even
someone who holds this view, such as myself, still
sees the value of an unprivileged account for running
untrusted code. Where you draw the line in terms of
what software you choose to trust is another matter.
split//,".rekcah lreP rehtona tsuJ";$\=$ ;->();print$/
Posts are HTML formatted. Put <p> </p> tags around your paragraphs. Put <code> </code> tags around your code and data!
Titles consisting of a single word are discouraged, and in most cases are disallowed outright.
Read Where should I post X? if you're not absolutely sure you're posting in the right place.
Please read these before you post! —
Posts may use any of the Perl Monks Approved HTML tags:
You may need to use entities for some characters, as follows. (Exception: Within code tags, you can put the characters literally.)
- a, abbr, b, big, blockquote, br, caption, center, col, colgroup, dd, del, div, dl, dt, em, font, h1, h2, h3, h4, h5, h6, hr, i, ins, li, ol, p, pre, readmore, small, span, spoiler, strike, strong, sub, sup, table, tbody, td, tfoot, th, thead, tr, tt, u, ul, wbr
Link using PerlMonks shortcuts! What shortcuts can I use for linking?
See Writeup Formatting Tips and other pages linked from there for more info.
| & || & |
| < || < |
| > || > |
| [ || [ |
| ] || ] ||