>Out of band verification. When you're doing curl pipe sh, you're trusting the h... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Dayshine on Nov 16, 2016 \| parent \| context \| favorite \| on: Ask HN: What simple tools or products are you most... >Out of band verification. When you're doing curl pipe sh, you're trusting the host and that's it. With packages, you can verify the trust against external services like keybase, check website archive for changed key ids, check signatures on the public key if the author is into things like web of trust. Your grandma is pretty advanced.

oblio on Nov 16, 2016 | [–]

> Your grandma is pretty advanced.

Grandma level: Grace Hopper.

viraptor on Nov 16, 2016 | [–]

Who said anything about grandmas. The topic was "what's better than curl pipe sh". The target crowd knows how to use the terminal.

But if the software is already installed, trusted package author also allows secure updates.

Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact