Are we vulnerable to the recently announced BASH bug?
Are we vulnerable to the recently announced BASH bug?
Thanks Werner.
"Nothing is terrible except fear itself" (Francis Bacon), later shamelessly paraphrased by F. D. Roosevelt when he declared that "Only thing to fear is fear itself".
.
There is a test one may use, and I have, which tells you something about Knoppix 7.4.1
This test is given in a zdnet article you may find at.
http://www.zdnet.com/shellshock-how-...rs-7000034072/
An excerpt of this article says.
FWIW, when I cut & paste the env x= ... line in a terminal, here's what I get.So, how do you know if your servers can be attacked? First, you need to check to see if you're running a vulnerable version of Bash. To do that, run the following command from a Bash shell:
env x='() { :;}; echo vulnerable' bash -c "echo this is a test"
If you get the result:
vulnerable this is a test
Bad news, your version of Bash can be hacked. If you see:
bash: warning: x: ignoring function definition attempt bash: error importing function definition for `x' this is a test
You're good. Well, to be more exact, you're as protected as you can be at the moment.
See the attached .png at full screen with Image Viewer.
And? Has anyone in this forum a server running with Knoppix?So, how do you know if your servers can be attacked?
See the cited article.
Summary: The Unix/Linux Bash security hole can be deadly to your servers.
Here's what you need to worry about, how to see if you can be attacked,
and what to do if your shields are down.
Hello!
Yes, I've read the article, but I cannot see any danger for me. I doesn't offer any services like httpd, ssh, nameserver. mailserver and so on outside of my LAN. All is restricted for locally use and within Knoppix this is also the default for any service.
Hello, Werner.
I believe you and Klaus K know you have no server worries with Knoppix.
But, what should the amateur Knoppix user do to be as certain that
he or she has not inadvertently enabled one or more vulnerable
servers with their own peculiar choices of applications, usage and
tweaks? And, is there an app for that?
Respectfully.
Hello!
You cannot offer inadvertently a service like for example Apache worldwide without profound knowledge how to do it. And if somebody has this knowledge and offers those services worldwide, then it would be a very serious mistake to do it with a Live system, which doesn't has the ability for daily security updates.
It's one thing, to run Apache for example within my home LAN or within the LAN for a computer course, and it is another thing to offer Apache service worldwide and clients from outside can attack my server.
Therefore, keep calm and be pleased about some nice features, which you get with Bash and not Dash.
.
One last question, then I'll stop pestering the moderator:
Should I not worry about using cups, rsync, ssh and/or dhclient if
these should 'serve' some purpose I don't presently need?
If so, does this mean these are immune to bash bug vulnerability?
Thanks in advance. I know all these uncertainties will vanish with 742,
in any event.
Dell PowerEdge R7525 Server 24X2.5(8XNVME)+H745 2xEPYC 7302 CPU 128G RAM 2x2400W
$3350.00
Dell PowerEdge R620 Server 2x E5-2660 v1 2.2GHz 16 Cores 256GB RAM 2x 300GB HDD
$79.19
DELL PowerEdge R730 Server 2x E5-2690v3 2.6GHz =24 Cores 32GB H730 4xRJ45
$274.00
Dell PowerEdge R720XD Xeon E5-2680 V2 2.8GHz 20 Cores 256GB RAM 12x4TB
$510.00
Dell PowerEdge R730XD 28 Core Server 2X Xeon E5-2680 V4 H730 128GB RAM No HDD
$389.99
Dell PowerEdge R720 Server - 2x8c CPU,256Gb RAM, 128Gb SSD/3x900Gb SAS, Proxmox
$340.00
Dell PowerEdge R730, 2 sinks, SystemBoard, 8 trays,H330,Idrac 8 exp, 2x750w Psu
$135.00
DELL POWEREDGE T430 SERVER W/ DUAL XEON E5-2609 CPU & 16GB MEMORY
$329.00
DELL PowerEdge R630 8SFF Server 2x E5-2690v4 2.6GHz =28 Cores 256GB H730 4xRJ45
$600.00
Dell Poweredge R730xd 2.5in 2x E5-2690 v3 2.6ghz 24-Cores 64gb H730 2x 750w
$289.99