Question

Regarding the "Shellshock" Bash Security Update

Posted September 26, 2014 2.1k views

Thanks for the update. Please let me know if these threats are serious and could cause any damages to the site. Please let me know if there is anything that I should be doing.

Thanks a lot!

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
2 answers

Hi!

In most cases, you will simply need to apply updates as normal. See this tutorial for all the details:

by Mitchell Anicas
On September 24, 2014, a GNU Bash vulnerability, referred to as Shellshock or the "Bash Bug", was disclosed. In short, the vulnerability allows remote attackers to execute arbitrary code given certain conditions, by passing strings of code following environment variable...

Seems modern web server (not running cgi) is not affected

http://jaxbot.me/articles/cases-where-bash-shellshock-is-safe-09-25-2014

Simply apply the current updates & keep monitor upcoming security news is what we can do now.

Submit an Answer