Page 1 of 2 12 LastLast
Results 1 to 10 of 19

Thread: BASH bug

  1. #1
    Senior Member
    Join Date
    Dec 2012
    Posts
    152

    BASH bug

    Are we vulnerable to the recently announced BASH bug?

  2. #2
    Moderator Moderator
    Join Date
    Nov 2010
    Location
    Germany/ Dietzenbach
    Posts
    1,124

  3. #3
    Senior Member
    Join Date
    Dec 2012
    Posts
    152
    Thanks Werner.

    "Nothing is terrible except fear itself" (Francis Bacon), later shamelessly paraphrased by F. D. Roosevelt when he declared that "Only thing to fear is fear itself".

  4. #4
    Senior Member registered user
    Join Date
    May 2006
    Location
    Columbia, Maryland USA
    Posts
    1,631

    A test you might try

    .
    There is a test one may use, and I have, which tells you something about Knoppix 7.4.1
    This test is given in a zdnet article you may find at.
    http://www.zdnet.com/shellshock-how-...rs-7000034072/

    An excerpt of this article says.
    So, how do you know if your servers can be attacked? First, you need to check to see if you're running a vulnerable version of Bash. To do that, run the following command from a Bash shell:

    env x='() { :;}; echo vulnerable' bash -c "echo this is a test"

    If you get the result:

    vulnerable this is a test

    Bad news, your version of Bash can be hacked. If you see:

    bash: warning: x: ignoring function definition attempt bash: error importing function definition for `x' this is a test

    You're good. Well, to be more exact, you're as protected as you can be at the moment.
    FWIW, when I cut & paste the env x= ... line in a terminal, here's what I get.
    See the attached .png at full screen with Image Viewer.
    Attached Images Attached Images

  5. #5
    Moderator Moderator
    Join Date
    Nov 2010
    Location
    Germany/ Dietzenbach
    Posts
    1,124
    So, how do you know if your servers can be attacked?
    And? Has anyone in this forum a server running with Knoppix?

  6. #6
    Senior Member registered user
    Join Date
    May 2006
    Location
    Columbia, Maryland USA
    Posts
    1,631
    See the cited article.
    Summary: The Unix/Linux Bash security hole can be deadly to your servers.
    Here's what you need to worry about, how to see if you can be attacked,
    and what to do if your shields are down.

  7. #7
    Moderator Moderator
    Join Date
    Nov 2010
    Location
    Germany/ Dietzenbach
    Posts
    1,124
    Hello!

    Yes, I've read the article, but I cannot see any danger for me. I doesn't offer any services like httpd, ssh, nameserver. mailserver and so on outside of my LAN. All is restricted for locally use and within Knoppix this is also the default for any service.

  8. #8
    Senior Member registered user
    Join Date
    May 2006
    Location
    Columbia, Maryland USA
    Posts
    1,631
    Quote Originally Posted by Werner P. Schulz View Post
    I cannot see any danger for me.
    Hello, Werner.

    I believe you and Klaus K know you have no server worries with Knoppix.

    But, what should the amateur Knoppix user do to be as certain that
    he or she has not inadvertently enabled one or more vulnerable
    servers with their own peculiar choices of applications, usage and
    tweaks? And, is there an app for that?

    Respectfully.

  9. #9
    Moderator Moderator
    Join Date
    Nov 2010
    Location
    Germany/ Dietzenbach
    Posts
    1,124
    Hello!

    You cannot offer inadvertently a service like for example Apache worldwide without profound knowledge how to do it. And if somebody has this knowledge and offers those services worldwide, then it would be a very serious mistake to do it with a Live system, which doesn't has the ability for daily security updates.

    It's one thing, to run Apache for example within my home LAN or within the LAN for a computer course, and it is another thing to offer Apache service worldwide and clients from outside can attack my server.

    Therefore, keep calm and be pleased about some nice features, which you get with Bash and not Dash.

  10. #10
    Senior Member registered user
    Join Date
    May 2006
    Location
    Columbia, Maryland USA
    Posts
    1,631
    .
    One last question, then I'll stop pestering the moderator:

    Should I not worry about using cups, rsync, ssh and/or dhclient if
    these should 'serve' some purpose I don't presently need?
    If so, does this mean these are immune to bash bug vulnerability?

    Thanks in advance. I know all these uncertainties will vanish with 742,
    in any event.

Page 1 of 2 12 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  


Intel - Core i5-10400 10th Generation 6-Core - 12-Thread - 2.9 GHz (4.3 GHz T... picture

Intel - Core i5-10400 10th Generation 6-Core - 12-Thread - 2.9 GHz (4.3 GHz T...

$129.99



Intel - Core i7-12700K Desktop Processor 12 (8P+4E) Cores up to 5.0 GHz Unloc... picture

Intel - Core i7-12700K Desktop Processor 12 (8P+4E) Cores up to 5.0 GHz Unloc...

$379.99



Intel - Core i9-10900K 10th Generation 10-core - 20-Thread - 3.7 GHz (5.3 GHz... picture

Intel - Core i9-10900K 10th Generation 10-core - 20-Thread - 3.7 GHz (5.3 GHz...

$389.99



Intel Core i9-12900F Desktop Processor - 16 Cores (8P+8E) And 24 Threads picture

Intel Core i9-12900F Desktop Processor - 16 Cores (8P+8E) And 24 Threads

$489.00



Intel - Core i9-12900K Desktop Processor 16 (8P+8E) Cores up to 5.2 GHz Unloc... picture

Intel - Core i9-12900K Desktop Processor 16 (8P+8E) Cores up to 5.2 GHz Unloc...

$589.99



Intel - Core i5-12600K Desktop Processor 10 (6P+4E) Cores up to 4.9 GHz Unloc... picture

Intel - Core i5-12600K Desktop Processor 10 (6P+4E) Cores up to 4.9 GHz Unloc...

$279.99



Intel Core i5-11600K - 3.9 GHz Processor - Open Box picture

Intel Core i5-11600K - 3.9 GHz Processor - Open Box

$174.99



Intel Core i7-11700K Rocket Lake 3.6GHz 8-Core Processor - open box picture

Intel Core i7-11700K Rocket Lake 3.6GHz 8-Core Processor - open box

$239.99



Intel Core i7-4790 3.60GHz Socket LGA1150 Desktop CPU SR1QF picture

Intel Core i7-4790 3.60GHz Socket LGA1150 Desktop CPU SR1QF

$53.99



Intel Core i7-2600 3.4GHz Quad-Core SR00B CPU Processor picture

Intel Core i7-2600 3.4GHz Quad-Core SR00B CPU Processor

$36.99