Index  | Recent Threads  | Unanswered Threads  | Who's Active  | Guidelines  | Search
 
World Community Grid Forums
  Category: Support
  Forum: Suggestions / Feedback
  Thread: New Bug Danger for Linux

Quick Go »
No member browsing this thread
Thread Status: Active
Total posts in this thread: 6
[ Jump to Last Post ]
Post new Thread
Author
Previous Thread This topic has been viewed 1342 times and has 5 replies Next Thread
Former Member
Cruncher
Joined: May 22, 2018
Post Count: 0
Status: Offline
Reply to this Post  Reply with Quote 
New Bug Danger for Linux
http://www.bbc.co.uk/news/technology-29361794
[Sep 25, 2014 11:52:50 AM]   Link   Report threatening or abusive post: please login first  Go to top 
Former Member
Cruncher
Joined: May 22, 2018
Post Count: 0
Status: Offline
Reply to this Post  Reply with Quote 
Re: New Bug Danger for Linux
A more technical take from ZDnet http://www.zdnet.com/unixlinux-bash-critical-...ole-uncovered-7000034021/

'So patch this bug now or you'll regret it.'

Fortunately, most live on ubuntu and it's variants, with auto-update on, patch will be delivered shortly, opposed to windows where you have to wait till next months patch tuesday, or thereafter.

'Of course, the real fix will be to replace the broken Bash with a new, secure one. As of the morning of September 24, Bash's developers have patched all current versions of Bash, from 3.0 to 4.3. At this time, only Debian and Red Hat appear to have packaged patches ready to go.'
[Sep 25, 2014 1:47:44 PM]   Link   Report threatening or abusive post: please login first  Go to top 
Former Member
Cruncher
Joined: May 22, 2018
Post Count: 0
Status: Offline
Reply to this Post  Reply with Quote 
Re: New Bug Danger for Linux
Infact, just hit synaptic's reload button and the bash patch was listed. Fixed, now version 4.3-7 on ubuntu 14.04 lts.
----------------------------------------
[Edit 1 times, last edit by Former Member at Sep 25, 2014 1:52:48 PM]
[Sep 25, 2014 1:50:27 PM]   Link   Report threatening or abusive post: please login first  Go to top 
Former Member
Cruncher
Joined: May 22, 2018
Post Count: 0
Status: Offline
Reply to this Post  Reply with Quote 
Re: New Bug Danger for Linux
Another version of bash update arrived, updating the 4.3-7 from ubuntu1.1 suffix to ubuntu 1.3. One site posted a test to see if vulnerable, apple even claiming if everything was left default there were no worries.

https://www.digitalocean.com/community/tutori...lshock-bash-vulnerability

This includes instruction how to force the bash updates for various linux flavors.
[Sep 27, 2014 9:25:53 AM]   Link   Report threatening or abusive post: please login first  Go to top 
ryan222h
Senior Cruncher
Joined: Sep 4, 2006
Post Count: 425
Status: Offline
Reply to this Post  Reply with Quote 
Re: New Bug Danger for Linux
I use a Linux Mint install specifically for the purpose of crunching here at WCG. How concerned should I be about this security issue? Thanks
----------------------------------------

----------------------------------------
[Edit 2 times, last edit by ryan222h at Sep 27, 2014 4:38:01 PM]
[Sep 27, 2014 4:36:35 PM]   Link   Report threatening or abusive post: please login first  Go to top 
Former Member
Cruncher
Joined: May 22, 2018
Post Count: 0
Status: Offline
Reply to this Post  Reply with Quote 
Re: New Bug Danger for Linux
Have you been bashing? Professionals would have picked up soon enough and those running servers and not picking up should be fired.

Would not be worried, just another 'stop the presses, look we found a bug' hyped event. You could always toy with the ugw firewall and set the 4-6 ips of wcg as the ones permitted through, default block for anything else.
[Sep 27, 2014 4:44:50 PM]   Link   Report threatening or abusive post: please login first  Go to top 
[ Jump to Last Post ]
Post new Thread