fedora-coreos-docs icon indicating copy to clipboard operation
fedora-coreos-docs copied to clipboard

Published 20 hours ago verified publisher icon coreos

Update tutorial-services.adoc

Open stemid opened this issue 10 months ago • 2 comments

This example should have a warning label on it, or be removed altogether.

stemid avatar Jan 06 '25 13:01 stemid

Thanks for the suggestion. This is a good point so I agree with the warning. I'm not fully sure this can be turned into code execution as root however. I can not find a reliable source for what is interpreted in the issue files.

travier avatar Jan 13 '25 11:01 travier

According to https://man7.org/linux/man-pages/man8/agetty.8.html#ISSUE_FILES, the content is not executed and only some char sequences are interpreted. Overall I agree it should be noted as an example only but it should not be a significant security risk. There is however potential for fishing attacks with a maliciously worded text.

According to https://major.io/p/a-new-future-for-icanhazip/, this domain is now operated by Cloudflare.

travier avatar Jan 13 '25 11:01 travier

Any suggestions for maybe toning down the warning a bit, then we can include it?

dustymabe avatar Apr 11 '25 21:04 dustymabe