Project was just hacked

Well once my code is debugged rm and rmdir would be restricted also I think that would show access denied

I wasn’t able to really get much from the current state of the project, but if the above mentions of accepting user input and running it as a terminal command is true, then that’s a serious security issue that you can’t really work around.

Escaping input or detecting certain malicious commands is not enough, as people have already mentioned. I’d advise against making any app that takes user input and runs it as a terminal command within your app’s container.

6 Likes

mate, I’d suggest make it clonable, and if the project url is not equal to “onlinux.glitch.me” actually show the terminal, that way the core project can’t be deletable

did it!‎‎‎‎‎