Shell Shock instalacja łatki: Różnice pomiędzy wersjami

Z ToProste
Skocz do: nawigacji, wyszukiwania
m (Utworzył nową stronę „== Patch dla Debian 6 == <syntaxhighlight lang="bash"> # check to ensure vulnerable env x='() { :;}; echo vulnerable' bash -c "echo this is a test" # make sure you are ...”)
(Brak różnic)

Wersja z 20:46, 25 wrz 2014

Patch dla Debian 6

# check to ensure vulnerable
env x='() { :;}; echo vulnerable' bash -c "echo this is a test"
# make sure you are on debian 6
cat /etc/issue
 
# add the LTS sec repo
echo "#LTS security" >> /etc/apt/sources.list
echo "deb http://http.debian.net/debian/ squeeze-lts main contrib non-free" >> /etc/apt/sources.list
echo "deb-src http://http.debian.net/debian/ squeeze-lts main contrib non-free" >> /etc/apt/sources.list
 
# update and install patched bash
apt-get update
apt-get install bash
 
# run a new shell
bash
# check patch success
env x='() { :;}; echo vulnerable' bash -c "echo this is a test"


Patch dla Debian 7

# check to ensure vulnerable
env x='() { :;}; echo vulnerable' bash -c "echo this is a test"
# make sure you are on debian 7
cat /etc/issue
 
# update and install patched bash
apt-get update
apt-get install bash
 
# run a new shell
bash
# check patch success
env x='() { :;}; echo vulnerable' bash -c "echo this is a test"


Patch dla Centos 6/7

# check vulnerability
env x='() { :;}; echo vulnerable' bash -c "echo this is a test"
 
yum -y install bash
or 
yum -y update
 
# check patch success
env x='() { :;}; echo vulnerable' bash -c "echo this is a test"
Źródło „http://to.proste.info.pl/index.php?title=Shell_Shock_instalacja_łatki&oldid=3657