Linux bash vulnerability

**Unix** · 26 September 2014, 08:33

Not hearing much about millions of servers being compromised like suity predicted. Maybe the hackers are busy today watching the golf

**stek** · 26 September 2014, 08:35

Originally posted by darmstadt View Post

Actually I made most of that up, the UNIX in Windows uses ksh and csh but you can install Bash from 3rd party sources

GPFS uses ksh which is what we use it for but SUA installs bash too I'm told and it's certainly there on our boxes, and I see no way of removing it! I hink it might be in the GNU Utilities bit but I can't break it down to see what's in it.

You can also have Cygwin installations with bash I suppose....

**DiscoStu** · 26 September 2014, 09:32

Oh god, another SY01 Chicken Little thread...

**suityou01** · 26 September 2014, 09:45

Originally posted by DiscoStu View Post

Oh god, another SY01 Chicken Little thread...

I hope so but doubt it.

**TykeMerc** · 26 September 2014, 10:00

Originally posted by DiscoStu View Post

Oh god, another SY01 Chicken Little thread...

There's a shock!!!

Like most of these stories, sensationalist journalism replaces devalues any shred of truth behind them.

**TykeMerc** · 26 September 2014, 10:01

Originally posted by suityou01 View Post

I hope so but doubt it.

Wilmsloooooooooowwwwwwwwwwwww!!!!!!!

**suityou01** · 26 September 2014, 12:07

Government not worried in the least

BBC News - Web attacks build on Shellshock bug

The seriousness of the bug has also led governments to act quickly. The UK government said its cybersecurity response team had issued an alert to its agencies and departments giving Shellshock the "highest possible threat ratings".

It had this rating, said the alert, because vulnerable systems would "inevitably" include machines that formed part of the UK's critical national infrastructure.

So all good then.

**DiscoStu** · 26 September 2014, 12:46

Originally posted by suityou01 View Post

Government not worried in the least

BBC News - Web attacks build on Shellshock bug

So all good then.

Oh do **** off. How many critical vulnerabilities get fixed every week? Has the world ended because of any of them?

**Unix** · 26 September 2014, 13:14

Originally posted by suityou01 View Post

Government not worried in the least

BBC News - Web attacks build on Shellshock bug

So all good then.

Early reports suggest up to 500 million machines could be vulnerable to Shellshock but, wrote Jen Ellis from security firm Rapid7, this figure was now being revised downwards because of the "number of factors that need to be in play for a target to be susceptible".

Will be revised to a few hundred web servers that host website built in 1994.

HTH

**suityou01** · 26 September 2014, 13:49

Do I get an apology and a bunch of flowers when I am proved right?

Linux bash vulnerability

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Partners

Advertisers

Contractor Services

CUK News

Linux bash vulnerability

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Partners

Advertisers

Contractor Services

CUK News

Tag Cloud