UKC

Calling all Unix, Linux and Mac users

New Topic
This topic has been archived, and won't accept reply postings.
 ByEek 25 Sep 2014
Looks like someone overlooked something in bash

http://www.bbc.co.uk/news/technology-29361794

A "deadly serious" bug potentially affecting hundreds of millions of computers, servers and devices has been discovered.

The flaw has been found in a software component known as Bash, which is a part of many Linux systems as well as Apple's Mac operating system.

Better get patching ASAP - just use the right patch!
Clauso 25 Sep 2014
In reply to ByEek:

> Better get patching ASAP - just use the right patch!

Such as installing Windows instead?
OP ByEek 25 Sep 2014
In reply to Clauso:

I must admit that I am flummoxed by the irony. Who would have though!?
 climbwhenready 25 Sep 2014
In reply to ByEek:
Although all bashes should be patched ASAP, my interpretation is that this should only affect computers running servers. The attacker needs some way of getting to bash.
Post edited at 15:00
 dread-i 25 Sep 2014
In reply to climbwhenready:

Its more of an issue for things like web servers. You can set environment variables as HTTP headers. When it shells out to bash, you can get it to execute your evil scripts.

 mattrm 25 Sep 2014
In reply to ByEek:

This kids, is why you should just use zsh and remove bash totally.

Newer Debian and Ubuntu machines don't use bash by default, so you're safe with them as well. Also most routers and the like which run linux, don't always run bash as it's too big. It's an excellent vuln, but I'm not sure it's quite worth the panic. Or a big splashy news article.
New Topic
This topic has been archived, and won't accept reply postings.
Loading Notifications...