Main Area and Open Discussion > General Software Discussion

Linux bash exploit discovered

<< < (6/7) > >>

Josh:

mwb1100:
Most of that video overstayed its welcome, but the bit at 0:25-0:32 is priceless.

Deozaan:
Why are they all pronouncing it "lye nucks"?

Innuendo:
Akamai has created a WAF rule to filter this exploit; see "For Web Applications" below for details."-mouser (September 24, 2014, 07:36 PM)
--- End quote ---

The way my mind works sometimes concerns me. The first thing that came to mind when I read this was why does Akamai have to worry about the wife approval factor when patching exploits?

ewemoa:
Regarding the plausibility of Fedora switching the system shell from bash (e.g. to dash), the following tidbit came up:

I switched a Fedora box to using dash as /bin/sh, and so far have only
logged one bug for something that broke, and it pretty much deserved
to break (BZ #1146733).

--- End quote ---

via http://www.openwall.com/lists/oss-security/2014/09/28/9

No idea whether that's typical...but note that the author may be an employee of RedHat.

Navigation

[0] Message Index

[#] Next page

[*] Previous page