[kwlug-disc] Vulnerability in bash
Khalid Baheyeldin
kb at 2bits.com
Tue Oct 28 11:49:05 EDT 2014
And now, there are shellshock attacks targeting mail servers. This is
serious as it does not require a web server with CGI.
http://www.csoonline.com/article/2839054/vulnerabilities/report-criminals-use-shellshock-against-mail-servers-to-build-botnet.html
Debian shell defaults to /bin/dash, not /bin/bash, so if you left it
as the default, you are probably safe. If you run another distro, then
you should a) check if bash is the default, and b) make sure you
upgrade.
--
Khalid M. Baheyeldin
2bits.com, Inc.
Fast Reliable Drupal
Drupal optimization, development, customization and consulting.
Simplicity is prerequisite for reliability. -- Edsger W.Dijkstra
Simplicity is the ultimate sophistication. -- Leonardo da Vinci
For every complex problem, there is an answer that is clear, simple,
and wrong." -- H.L. Mencken
More information about the kwlug-disc
mailing list