https://tferdinand.net/en/tags/internet/Recent content in Internet on Teddy FerdinandHugoen-USWed, 29 Apr 2026 13:19:30 +0000https://tferdinand.net/en/why-curl-bash-is-a-dangerous-bad-habit/Wed, 29 Apr 2026 09:42:21 +0000https://tferdinand.net/en/why-curl-bash-is-a-dangerous-bad-habit/<p>Recently, I stumbled again upon an old bad habit from the Linux/DevOps/Cloud world: installing a tool with a command like:</p> <div class="highlight"><pre tabindex="0" class="chroma"><code class="language-fallback" data-lang="fallback"><span class="line"><span class="cl">curl -sSL https://example.com/install.sh | bash </span></span></code></pre></div><p>Or worse:</p> <div class="highlight"><pre tabindex="0" class="chroma"><code class="language-fallback" data-lang="fallback"><span class="line"><span class="cl">curl -sSL https://example.com/install.sh | sudo bash </span></span></code></pre></div><p>We have all seen it before.<br> We have probably all used it at some point.</p> <p>And let’s be honest for a minute: in many official documentations, this is still presented as the “simple” way to install a tool.</p>https://tferdinand.net/en/why-and-how-i-got-rid-of-disqus/Mon, 20 Jul 2020 08:00:00 +0000https://tferdinand.net/en/why-and-how-i-got-rid-of-disqus/<p>Lately, I&rsquo;ve made some changes to this blog, discreetly. One of the main changes is the management of comments, goodbye Disqus, hello Commento. I&rsquo;ll explain why&hellip;</p> <h2 id="a-bit-of-history-of-this-blog">A bit of history of this blog</h2> <p>At the beginning (I&rsquo;m talking about February 2019, not old times) of this blog, my goal was rather simplistic: I wanted to share my knowledge, my vision on certain subjects and talk about anecdotes of all kinds. A year and a half and forty posts later, goal achieved!</p>https://tferdinand.net/en/what-the-twitter-hack-teaches-us-or-reminds-us-of/Fri, 17 Jul 2020 22:00:00 +0000https://tferdinand.net/en/what-the-twitter-hack-teaches-us-or-reminds-us-of/<p>A few days ago, Twitter was the target of a hack inviting, via &ldquo;verified accounts&rdquo;, users to send BitCoins to receive double the amount. I suggest a small post on what we can learn from this attack, from a computer security point of view.</p> <h4 id="disclaimer">Disclaimer</h4> <p>The purpose of this article is not to make an umpteenth analysis of this attack, but rather to recall some basic rules of computer security that this attack reminds me of.</p>https://tferdinand.net/en/got-phished-but-its-for-science/Mon, 30 Mar 2020 05:00:00 +0000https://tferdinand.net/en/got-phished-but-its-for-science/<p>We often hear about scam, phising.</p> <p>Today, I have a special note for you: I was deliberately phished to show you the other side of the world!</p> <h2 id="point-very-important">Point VERY important!</h2> <p><strong>The manipulations that you will see below (and in particular the fact of voluntarily going on a phishing site) can be dangerous for your system and/or your personal data. They have been made in a sandbox environment and must not be reproduced without prior protection.</strong></p>