Question

Regarding the "Shellshock" Bash Security Update

Posted September 26, 2014 2.2k views

Thanks for the update. Please let me know if these threats are serious and could cause any damages to the site. Please let me know if there is anything that I should be doing.

Thanks a lot!

Add a comment
mesfinsx
By:
mesfinsx
Add a comment

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
2 answers
asb September 26, 2014

Hi!

In most cases, you will simply need to apply updates as normal. See this tutorial for all the details:

How to Protect Your Server Against the Shellshock Bash Vulnerability
by Mitchell Anicas
On September 24, 2014, a GNU Bash vulnerability, referred to as Shellshock or the "Bash Bug", was disclosed. In short, the vulnerability allows remote attackers to execute arbitrary code given certain conditions, by passing strings of code following environment variable...
Reply Report
TonyTsang September 27, 2014

Seems modern web server (not running cgi) is not affected

http://jaxbot.me/articles/cases-where-bash-shellshock-is-safe-09-25-2014

Simply apply the current updates & keep monitor upcoming security news is what we can do now.

Reply Report
Submit an Answer

Looking for something else?

Ask a new question Search for more help