• Check your terminal security!! Hidden coded within paste/copy commands


    Hi! i saw a video on youtube showing this:
    https://lifepluslinux.blogspot.com.br/2017/01/look-before-you-paste-from-website-to.html

    It’s a way that someone can hide a malicious code inside a “visually” innocent command. It’s worth to try testing your terminals…

    Cheers

    Antergos (default OS) - WIN10 (abandoned)
    I3wm - Mate desktop
    AMD - A4 7300 Radeon graphics
    16 GB ram
    HD 1 TB
    Linux newbie since 06/2016

  • That’s creapy, when danger is behind every webpage. :page_with_curl:
    Good that i copy text that comes from the web always first to plain text.
    Or does that also not help?

  • @bartatantergos yes it helps since you can see all the text. “Terminix terminal” has enabled an alert with all copy/pasting envolving sudo command, which is pretty useful.
    Also you can use zsh which display all the text pasted and doesn’t run the command automatically like bash…

    Antergos (default OS) - WIN10 (abandoned)
    I3wm - Mate desktop
    AMD - A4 7300 Radeon graphics
    16 GB ram
    HD 1 TB
    Linux newbie since 06/2016

  • @fernandomaroto That’s what i was thinking, i go always thru plain text as i copy from internet or mail.
    Never found, but is there a way to make all copied text automatic plain text in clipboard? So when you paste it’s always plain text.

    Will check terminix out.

  • @bartatantergos i don’t know since i never tried to configure it, but you can install zsh, when you open a terminal type zsh (configure it the first time you use) then it work with plain text.
    I configured all my terminal to open in zsh automatically at start.

    Antergos (default OS) - WIN10 (abandoned)
    I3wm - Mate desktop
    AMD - A4 7300 Radeon graphics
    16 GB ram
    HD 1 TB
    Linux newbie since 06/2016

  • @fernandomaroto Thanks, will check zsh out.

hided1 coded1 security10 terminal30 Posts 6Views 495
Log in to reply