this post was submitted on 12 Aug 2023
41 points (100.0% liked)
Technology
37609 readers
341 users here now
A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.
Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.
Subcommunities on Beehaw:
This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I know people have mostly gotten over it at this point but it still irks me when I see an installer that's just "pipe this random script from the internet directly into an admin terminal". They should at least put a note like "hey this is potentially a dangerous action. you should ideally download this locally and inspect it first before you run it" even if most people aren't gonna do it.
Here's the GitHub for it. I agree that I'm not one to just run a script blindly. https://github.com/ChrisTitusTech/winutil
edit: I'm such an idiot. My God. So i ran a different os hardening script. Guess what my dumbass forgot to do? Confirm the local admin username and password. Guess who's locked out. Me. Woooow lol don't be dumb like me. Create a checklist before hand. I guess i learned a fucking lesson lol.
The developer is quite transparent about all the possible effects of this script. It tweaks to a point that you'll still receive security updates, and feature updates are a bit delayed.
I'm sure it's not a malicious script, but it's not a good idea to pipe an internet resource into an admin terminal. What if his website gets hacked?