big-list-of-naughty-strings icon indicating copy to clipboard operation
big-list-of-naughty-strings copied to clipboard

Published 20 hours ago verified publisher icon minimaxir

Add rm -rf /

Open savage-alex opened this issue 3 years ago • 5 comments

I have seen API fuzzers using rm -rf / in query params.

I expect this request will blow up like the drop table thread but wanted to suggest it non the less

savage-alex avatar Dec 08 '21 11:12 savage-alex

maybe the bash fork bomb: :(){ :|:& };:

Bumpf avatar Aug 06 '22 23:08 Bumpf

rm -rf / doesn't do anything on modern distros. You also need --no-preserve-root.

MarkJeronimus avatar Sep 14 '22 20:09 MarkJeronimus

rm -rf / is by definition forbidden from doing anything – https://pubs.opengroup.org/onlinepubs/9699919799/utilities/rm.html#tag_20_111_03 para. 2.

nabijaczleweli avatar Sep 14 '22 21:09 nabijaczleweli

rm -rf / doesn't do anything on modern distros. You also need --no-preserve-root.

"on modern distros" inasmuch there is a rest risk (there exists a lot of old systems out there) ;-)

janfri avatar Sep 15 '22 08:09 janfri