Please never take parameters unchecked in any programming language. But at least the T-Dose people added <%=h text => so you can't easily cross site script
T-Dose website security issue
I am giving a talk at T-Dose while trying to add my user credentials I found this little error in the programming.
Add return codes to your shell prompt
How many times do you type 'echo $?' to check if the command you have just run really didn't silently exit with an error? When I do sys admin stuff I frequently do this. So now I just added the return code to my shell prompt. So if something goes wrong I see it right away. I have a FreeBSD box so this may vary from setup to setup.
export PS1='[\u@\h \w] $(echo $?) \$ 'the trick is the
$(echo $?)I know this forks a new echo process every time you get a shell prompt. But the idea is that you enable this when you are doing important selected stuff. Possibly on a live system where you are not allowed to make any errors.
Subscribe to:
Posts (Atom)